CRIME


Topic | v1 | created by jjones |
Description

CRIME (Compression Ratio Info-leak Made Easy) is a security exploit against secret web cookies over connections using the HTTPS and SPDY protocols that also use data compression. When used to recover the content of secret authentication cookies, it allows an attacker to perform session hijacking on an authenticated web session, allowing the launching of further attacks. CRIME was assigned CVE-2012-4929.


Relations

is Security exploit

An exploit (from the English verb to exploit, meaning "to use something to one’s own advantage") is a...


Edit details Edit relations Attach new author Attach new topic Attach new resource