funsec mailing list archives
Tampering with OWA Cookie Data
From: Jeffrey Walton <noloader () gmail com>
Date: Sun, 25 Dec 2011 23:01:25 -0500
Hi All, I'm using Cookie Manager+ (https://addons.mozilla.org/en-US/firefox/addon/cookies-manager-plus/) to tamper with bits in Exchange's OWA cookies. Specifically, tampering with 'OutlookSession' does not cause an error (I've tried bit flipping, prepending, and appending data). Any ideas why Outlook would tolerate tampering with OutlookSession data? Jeff _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Tampering with OWA Cookie Data Jeffrey Walton (Dec 25)