Hi,
have done some more digging into the NVT and this is my current state:
if(sslRes && "Set-Cookie:" >< sslRes){
cookies = egrep(string:sslRes, pattern:"Set-Cookie:.*");
if(cookies){
Lst = split(cookies, sep:'\n', keep:0);
for(i=0; i<max_index(Lst); i++){
if(!(Lst[i] =~ "; [S|s]ecure?[^a-zA-Z0-9_-]+")){
security_hole(data:Lst[i] + '\n' + desc, port:port);
}
}
}
}
which replaces the part in the NVT beginning at:
if(sslRes && "Set-Cookie:" >< sslRes)
I'm still not sure if the:
"; [S|s]ecure?[^a-zA-Z0-9_-]+"
regex is the best solution but at least it detects the correct cookies set via
PHP.
Any opinions / improvements etc. are welcome.
_______________________________________________
Openvas-plugins mailing list
[email protected]
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
