browser exploit which allows a site attacker to set a cookie for a browser into the cookie domain of another site server