|
|
|
|||||||
| Notices |
 |
|
|
Thread Tools | Display Modes |
07-07-2006, 02:26 AM
|
#1 |
|
ƒ(ψ)=ΘΊΧφ
 
Join Date: May 2006
Location: India
Age: 23
Posts: 6,621
Thanks: 19
Thanked 643 Times in 602 Posts
Rep Power: 87
  OS:
 |
Google fixes security flaw in Reader
Google said it fixed a security flaw in Google Reader on Wednesday that could have allowed a hacker to steal sensitive information from Web surfers.
A Google RSS feed addition tool was vulnerable to a cross-site scripting attack, a poster to the Ha.ckers.org blog wrote on Tuesday. Such attacks involve an attacker embedding HTML scripts in Web postings or input fields on a Web site. "What are the implications of this attack for Google?" the blog posting asked. "Well, for starters, I can put a phishing site on Google. 'Sign up for Google World Beta.' I can steal cookies to log in as the user in question...I can steal your phone number from the /sendtophone application...get your address because maps.google.com is mirrored....The list of potential vulnerabilities goes on and on. The vulnerabilities only grow as Google builds out their portal experience." Late Wednesday, Google issued a statement that said: "We learned of a minor security flaw in Google Reader earlier today and worked quickly to fix the problem, which has now been resolved. We encourage all vulnerability reporters to follow responsible disclosure practices and notify vendors first before making the vulnerability public." http://news.zdnet.com/2100-1009_22-6090974.html
__________________
Please don't click here |
|
|
|
07-07-2006, 01:01 PM
|
#2 |
|
Regular Member (100+)
Join Date: Apr 2006
Posts: 116
Thanks: 2
Thanked 10 Times in 9 Posts
Rep Power: 6
|
Quick fix . Impressed. Microsoft should study a lot from Google.
Last edited by Strider; 07-07-2006 at 03:36 PM.. |
|
|
|
|
07-07-2006, 03:06 PM
|
#3 | |
|
ƒ(ψ)=ΘΊΧφ
Join Date: May 2006
Location: India
Age: 23
Posts: 6,621
Thanks: 19
Thanked 643 Times in 602 Posts
Rep Power: 87
OS:
|
Quote:
|
|
|
|
|
|
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| IE 7 security flaw | jasy | Internet Explorer | 7 | 28-08-2007 09:02 PM |
| IE 7 security flaw | jasy | Internet Explorer | 3 | 28-08-2007 08:52 PM |
| URGENT: Security Flaw in IE 7 | Jasy | Windows Security | 6 | 28-08-2007 01:24 PM |
| URGENT: Security Flaw in IE 7 | Jasy | Windows Security | 6 | 28-08-2007 01:23 PM |
| Security Firm Releases Patch For Zero-Day IE Flaw | smartjean4u | Technical Discussions | 0 | 29-03-2006 07:33 PM |
< Windows Help - MS Office Help - Hardware Support >
| New To Site? | Need Help? |
Linear Mode
