Register Members List Search Today's Posts Mark Forums Read  
Computer Forums

Member Login

Remember Me? Sign Up! | Forgot Password
 
Slogan
 
Computer Forums > The World Wide Web > Browser & General Internet Questions » Firefox users: Beware of Gmail XSS Attack
Closed Thread
LinkBack Thread Tools Display Modes
 
Old 11-17-2007, 05:47 PM   #1 (permalink)
Osiris's Avatar
 

Join Date: Jan 2005

Location: Kentucky

Posts: 34,348

Osiris is just really niceOsiris is just really niceOsiris is just really niceOsiris is just really nice
Default Firefox users: Beware of Gmail XSS Attack
Firefox users: Beware of Gmail XSS Attack

An exploit for Firefox, reported 10 days ago and as of yet still not patched, is giving attackers access to Google accounts, including gmail.
Firefox users are advised to use NoScript or turn off javacript on unknown webpages and stay logged out of their Google Accounts until a fix is issued.

A 302 redirect error in Google, discovered by bedford.org's Morgan Lowtech aka tx, creates a domain-wide cross-site scripting attack allowing hackers to gain access and modify Google user accounts including e-mails, contact lists and online presence.

__________________
Osiris is online now  
Old 11-17-2007, 07:12 PM   #2 (permalink)
Trotter's Avatar
 


Join Date: Jan 2005

Location: The South

Posts: 21,341

Trotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to behold
Default Re: Firefox users: Beware of Gmail XSS Attack
Thanks for the heads up. NoScript should be a part of everyone's extension library.
__________________
R.I.P. Danny L. Trotter , 14 Nov 1945 - 4 Sept 2009




DFI LanParty-UT SLI-D - Windows 7 64-bit - AMD Athlon X2 4200+ w/CNPS9500
EVGA GTX 260 Core 216 - 4GB (4x1GB) - Razer Lachesis - Saitek Eclipse


>>>> Looking for two (2) AM2 dual cores, DDR2 RAM (1GB sticks) (link) <<<<

< < < < < If I've been helpful, rep me. . . .
Trotter is offline  
Old 11-20-2007, 02:51 PM   #3 (permalink)
Nick's Avatar
 
Courtesy of Mak.

Join Date: Feb 2007

Location: Chichester, England

Posts: 4,016

Nick is on a distinguished road
Default Re: Firefox users: Beware of Gmail XSS Attack
just when i was thinking how reliable firefox was
__________________
Every time I get Rep, I die inside.

Cisco Cert.
Nick is offline  
Old 11-20-2007, 03:55 PM   #4 (permalink)
Trotter's Avatar
 


Join Date: Jan 2005

Location: The South

Posts: 21,341

Trotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to beholdTrotter is a splendid one to behold
Default Re: Firefox users: Beware of Gmail XSS Attack
It still is, Nick. People are constantly looking for chinks in everything's armor. the good part is that it is known and there is a way to address it until it is officially sealed.

Javascript can do some amazing stuff, but it can also be used maliciously as we have seen here.
__________________
R.I.P. Danny L. Trotter , 14 Nov 1945 - 4 Sept 2009




DFI LanParty-UT SLI-D - Windows 7 64-bit - AMD Athlon X2 4200+ w/CNPS9500
EVGA GTX 260 Core 216 - 4GB (4x1GB) - Razer Lachesis - Saitek Eclipse


>>>> Looking for two (2) AM2 dual cores, DDR2 RAM (1GB sticks) (link) <<<<

< < < < < If I've been helpful, rep me. . . .
Trotter is offline  
 
Closed Thread

« Someone please explain this to me | How To Search Forums, Mailing Lists In Each Country? »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Firefox 2.0.0.9 is out Osiris Windows Operating Systems and Software 4 11-02-2007 11:33 AM
Mozilla Firefox May Disclose Files or Information to Remote Users Osiris Virus - Spyware Protection / Detection 2 10-20-2007 04:03 PM
Unholy trinity of flaws put Google users at risk Osiris Virus - Spyware Protection / Detection 1 09-25-2007 01:38 PM
Some Cool Firefox Tricks That Might Make You Crazy .. mantoadmire Browser & General Internet Questions 0 07-25-2007 06:44 AM
Firefox 2.0 users brrymnvette Computer Networking & Internet Access 9 06-07-2007 02:46 PM

Contact Us - Computer Technology Forums - Archive - Top

 

All times are GMT -5. The time now is 01:44 PM.
Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.3.2 Copyright ©2002-2009, Tech-Forums.net
vBulletin skin created by Baez & Baez Computers Inc.   |   Contact Management Software and AAOutlook 		Log Out Unregistered