A company has rolled out its first Web-based email system. After the user authenticates to the systems Web server, the server stores a cookie (called SessionCookie) in the users browser so that all subsequent requests from this user do not require authentication. Email messages are displayed in the users Web browser using the following HTML template:
< HTML >
< BODY >
- - - Headers appear here - - -
< DIV ID = "msg" >
- - - Email message is displayed here - - -
• Give an example of an email message that you could send to a user of this Web-based email system and that would allow you to read all of that users email.
• How would you modify the Web-based email system to prevent the attack you discovered in the first part?