2008-07-14 23:00:00
mitre
PUBLISHED
Opera allows web sites to set cookies for country-specific top-level domains that have DNS A records, such as co.tv, which could allow remote attackers to perform a session fixation attack and hijack a users HTTP session, aka "Cross-Site Cooking."