Yahoo! fixes bug that gave free rein to user accounts

by admin June 18, 2007 at 11:37 am
0 Comment

All hail the power of the XSS error!

Yahoo! has plugged a site-wide coding error that made it possible for miscreants to gain complete access to a user’s account simply by convincing the holder to click on a booby-trapped link.

The security defect is the latest to affect a large website, which consumers and businesses are increasingly entrusting with a plethora of sensitive information, such as email, address books and calendar entries. Yahoo patched the vulnerability, which was the result of a cross-site scripting (XSS) error, hours after the Net Cooties blog first reported it on Thursday.

Full story: theregister.co.uk

Related Content
Realme C15 Launching in India on August 18: Everything We Know So Far
Facebook’s CEO to meet PM Modi today
Firefox 4 Beta 1: A Visual Tour
Now, access Facebook on mobile devices for free
more news from the blog
RecentFilesView 1.10
Microsoft appeals record European Commission fine
EQO 1.6.1
Apple goes all out for video
Haihaisoft DRM-X Audio/Video Packager 1.0.0.2
Skype for Windows 4.2.0.141 Beta
ImageTasks 1.6
TVUPlayer 1.1.4 for Mac OS X
Veejay 1.0
Napster Relaunches as a Web-based Service
Salesforce, Google Extend Flights on The Cloud
IdleWeb 2.0
Unofficial Win98 SE Service Pack 3.0 Beta 3
Regtickpro 0.23
DriveSentry 3.1
Get ready to buy your own work PC
Security experts warn of possible worm hitting Vista
HDClone Free Edition 3.9.2
MegaIRC 3.97
iPhone Push Notifications Here at Last
PHP, Windows: Not an Oxymoron?
Seashore 0.1.9 for Mac OS X
Free Software Foundation releases GPLv3
Google offers free printable books
7-Data Photo Recovery 1.4
Windows 7 ISO Verifier 1.0
PalCrypt 2.1.1.9 Build 2018
WinSockFix 1.2
JkDefrag 3.36
ATPad 1.5.105
$7.5 Million: Wikipedia Reaches Fundraising Goal
Recuva 1.37.488
SiteShoter 1.38