[Full-disclosure] Google / GMail bug, all accounts vulnerable
Aaron Katz
atkatz at gmail.com
Fri Dec 7 20:04:20 GMT 2007
Note that, by editing NoScript's whitelist, removing google.com, and
adding mail.google.com, I can browse to
http://www.kristian-hermansen.com without having my cookie killed.
On Dec 7, 2007 2:59 PM, Aaron Katz <atkatz at gmail.com> wrote:
> Oh! OK. In that case, yeah, I can reproduce it, no problem :)
>
>
>
> ---------- Forwarded message ----------
> From: Ed Carp <erc at pobox.com>
> Date: Dec 7, 2007 2:57 PM
> Subject: Re: [Full-disclosure] Google / GMail bug, all accounts vulnerable
> To: Aaron Katz <atkatz at gmail.com>
>
>
> Oh! You need to go to the actual site: http://www.kristian-hermansen.com
>
Full-Disclosure is hosted and sponsored by Secunia.