This time the vulnerability comes through Google’s hands, yes, The Google Appliance has a vulnerability that allows to steal cookies, sessions, etc, the appliance is affected by everything you can do running a browser script, which is not very good for Google and for many organizations that use this device, for example the British MI-5, MI-6, and so on.
This vulnerability was discovered by “Mustlive” but if you are interested in this kind of Google Vulnerabilities the following links will help:
1 Comment(s)
Comments RSS TrackBack Identifier URI
Leave a comment
[...] Another XSS vulnerability « The Gold Bug Security Blog The British Secret Services uses Google Search appliances? I did not know that. (tags: Google search) [...]