1. Orkut fails to expire the orkut_state session cookie from the server side even when the
user logs off from Orkut upon clicking "Sign-Out" from the application. The cookie is
cleared from the client side (browser), but is not cleared from the server side. If reused,
it provides access to the user's Orkut account.

2. Upon logging in again, a new orkut_state session cookie is created, but the old session
cookies still stay active on the server side. Therefore, any session cookie can be reused
to gain access to the user's Orkut account.

DETAILS:

when any user log into orkut account,one cookie has been generated on the server and this cookie data packet will be sent back to user after successful authentication process.

if some hacker come to know about this cookie data then he/she can access victim's account without knowing id & password.

The new version of orkut website allows to post html scraps in the scrapbook of any user on orkut.i have made small script which when post to victim's account,it will capture the cookie data of victim as soon as he/she runs this script.

After getting the data of cookie,hacker will edit the cookie and he/she can have an access to victim's account without User Name & Password.

After an access to victim's account,one can edit his/her social,personal,professional,contact profiles,one can also have an access to his/her albums,videos,testimonials.one can even stop victim to access his/her account by editing the contact email.

My aim is not to hack the anyone's orkut account and damaged any victim's data by providing such information,but to create awareness among the people about the security risks over social networking websites.

LATEST NEWS: I have sent an advisory to orkut about this bug. i have already got the reply.they have reported this bug in their site.