It is possible. The details depend on what information the script that generated the cookie stored in it. Commonly it could be user/password of an account in plain text, encrypted in some way, or the session id that would match the user's resource-set on the server. Session ids would be a bit harder to exploit mainly because of their limited validity duration. For more information about sessions, have a look
I think that's enough for someone to watch out with his cookies.
One notice however, the fact that some people show ignorance or neglect in this recard, does not mean they are "stupid".. they just might have more important things to do -not *everything* is about computers-. That certainly doesn't give others the right to mess with their personal stuff.
Re: Random Cookie and Hacking
12 years 10 months ago #13202