CRIME

CRIME (Compression Ratio Info-leak Made Easy) is a security vulnerability in HTTPS and SPDY protocols that utilize compression, which can leak the content of secret web cookies.^[1] When used to recover the content of secret authentication cookies, it allows an attacker to perform session hijacking on an authenticated web session, allowing the launching of further attacks. CRIME was assigned CVE-2012-4929.^[2]

^ Cite error: The named reference fisher2012-09-13 was invoked but never defined (see the help page).
^ "CVE-2012-4929". Mitre Corporation.

[fisher2012-09-13-1] Cite error: The named reference fisher2012-09-13 was invoked but never defined (see the help page).

[:0-2] "CVE-2012-4929". Mitre Corporation.

[1]

[2]