Topic | v1 | created by jjones |

CRIME (Compression Ratio Info-leak Made Easy) is a security exploit against secret web cookies over connections using the HTTPS and SPDY protocols that also use data compression. When used to recover the content of secret authentication cookies, it allows an attacker to perform session hijacking on an authenticated web session, allowing the launching of further attacks. CRIME was assigned CVE-2012-4929.


is Security exploit

An exploit (from the English verb to exploit, meaning "to use something to one’s own advantage") is a...

Edit details Edit relations Attach new author Attach new topic Attach new resource