Unholy trinity of flaws put Google users at risk

by admin September 25, 2007 at 3:29 pm
0 Comment

Doomwatchers count the ways

If you use Google to send email, organize photos or help administer your website, doomwatchers have cataloged three new ways to steal your data and compromise the security of your users. All three of the techniques rely on cross site scripting, or XSS, in which hackers inject unauthorized code by making it appear as if it’s hosted by a trusted website.

The most serious vulnerability resided in the so-called polls application, a part of Google Groups. It made it possible to steal contacts and messages from Gmail accounts. A Google spokesman on Monday afternoon said the flaw had been fixed.

Read more: theregister.co.uk

Related Content
Realme C15 Launching in India on August 18: Everything We Know So Far
Facebook’s CEO to meet PM Modi today
Firefox 4 Beta 1: A Visual Tour
Now, access Facebook on mobile devices for free
more news from the blog
Windows Easy Transfer 6.0
Apple prepping movie download service?
Dooble 1.20
AT&T, Google trade barbs over Google Voice while FCC listens in
Radeon Omega Drivers 4.8.442
Flickr Uploadr 3.1 Beta
MusicIP Mixer 1.8.1 Beta
Fact200 1.10
Auto TaskKiller 0.02
sqlDESKTOP 3.00
Google trademark grab defies mounting lawsuits
W32.Mytob@mm Removal Tool 1.25.0
Active Directory Explorer 1.2
iPad Goes From Zero to 1 Million in 28 Days
Virtual magnate shares secrets of success
Unauthorized Mac clone maker Psystar throws in the towel
ASUS Eee adds two letters: XP
Vmware Workstation 10
Advanced Renamer 2.61
Shrink Pic 1.8.0
Marxio Login Logger (MLL) 1.4
Repair IE 2.2
Google offers free printable books
Intel buys OpenHand in netbook move
Win TempCleaner 1.3
Fsum Frontend 1.5.4
Mono 2.6
Vista-inspired Windows Mobile 6 spied on web
Beware fake YouTube video scam
Winamp Essentials Pack 5.55
PowerFolder 4.0.2
ActivIcons 3.37
BlackBerry Gets Bolder With Onyx 9600