This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Shared Objects

From OWASP
Revision as of 13:26, 29 January 2008 by EoinKeary (talk | contribs) (New page: OWASP Code Review Guide Table of Contents__TOC__ Shared Objects are designed to store up to 100kb of data relating to a users session. They are dependant on host and domain name and s...)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

OWASP Code Review Guide Table of Contents

Shared Objects are designed to store up to 100kb of data relating to a users session. They are dependant on host and domain name and swf movie name.

They are stored in binay format and are not cross-domain by default. Shared objects are not automatically transmitted to the server unless requested by the application.

It is worth noting that they are also stored outside the web browser cache: 

C:\Documents and Settings\<USER>\Application Data\Macromedia\Flash Player\#Shared Objects\<randomstring>\<domain>

In the case of cleaning the browser cachc Flash sharedobjects susvive such an action.

Shared objects are handler by the Flash application and not the clients web browser.

Retrieved from "https://wiki.owasp.org/index.php?title=Shared_Objects&oldid=24819"