Yahoo fixes email hole

Written on August 18, 2006 – 1:29 am | by GoogleBot |

Malicious HTML attachment could reveal recipient’s mail cookie

Yahoo has fixed a potential security flaw in its email service that could have allowed hackers to hijack Yahoo email accounts.

The problem was discovered earlier in August by Nir Goldshlager and Roni Bahar of Israeli security company Avnet.

The security hole required hackers to create an HTML attachment with different encoding schemes to bypass Yahoo Mail’s security filter and then execute JavaScript code to download the recipient’s mail cookie.

Once acquired, the cookie would provide access to the email session and hence the email inbox to read, send and delete emails.

Read more: vnunet.com

Related Posts

Post a Comment

Comment spam protected by SpamBam

About this site

Welcome to Techbeta. Techbeta is a site focussed on tech news, and freeware/open source software for Windows, Mac OS X, Pocket PC and Linux. More

Want to subscribe?

 Subscribe in a reader Or, subscribe via email:
Enter your email address:  
Find entries :