Another XSS vulnerability

This time the vulnerability comes through Google’s hands, yes, The Google Appliance has a vulnerability that allows to steal cookies, sessions, etc,  the appliance is affected by everything you can do running a browser script, which is not very good for Google and for many organizations that use this device, for example the British MI-5, MI-6, and so on.

This vulnerability was discovered by “Mustlive” but if you are interested in this kind of Google Vulnerabilities the following links will help:

 Google Systems blog

ha.ckers.org

 The Metasploit Project

22 September, 2007
Categories: Vulnerabilities . . Author: David Lopez

1 Comment(s)

  1. Pingback by James Governor’s Monkchips » links for 2007-09-24 on 25 September, 2007 12:25 am

    [...] Another XSS vulnerability « The Gold Bug Security Blog The British Secret Services uses Google Search appliances? I did not know that. (tags: Google search) [...]

    Reply

Comments RSS TrackBack Identifier URI

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

Follow

Get every new post delivered to your Inbox.