Newsletters Welcome, Guest Log In | Register
News:

Vendors and Markets

< Previous | Next >

Subscribe

Sign up now and get the best business technology insights direct to your inbox.

  • Daily Edge
  • CTO Edge Update
  • Business Tools & Templates
  • Aligning IT & Business Goals
  • Maximizing IT Investments

0

Researchers Post Details About Google Vulnerabilities

Posted by Kara Reeder Oct 14, 2008 2:34:11 PM

Two security researchers have posted information about Google security vulnerabilities linked to cross-domain Web application sharing that could put users at risk, according to eWEEK.

 

Security researcher Aviv Raff has provided details about a cross-domain Web application sharing flaw that affects several Google applications, including Gmail, Google Maps, Google News and Google search. Raff says he told Google about the vulnerability that could allow Google accounts to be hijacked, but has received no word on a fix.

 

Meanwhile, researcher Adrian Pastor has posted proof-of-concept code that shows how attackers can inject their own pages that still seem to show the Google domain in the address bar. This flaw could trick users into entering log-in information, notes InformationWeek.

 

Google says it is investigating Raff's information and is aware of the potential for the frame injection attack demonstrated by Pastor.

Related Content

Add a comment Leave a comment on this blog post.

There are no comments on this post

Premium Tools

Browse

The IT Service Catalog Management Toolkit

Bridge the it-business gap once and for all! A well documented IT services catalog is the conduit for IT services to the rest of the company.

Learn more >

All About Reducing Your IT Costs

Looking to cut costs? Use this research-driven Excel tool to pinpoint which IT cost reduction measures best fit your needs.

Learn more >

Related Content

Browse

Topic: Google

Out to "organize the world," Google, which started as a search engine, is well on its way

Blog: Google and How Bad Hiring Practices Can Kill a Company

Article: Make Sure Social Media Metrics Are Meaningful

News: Chrome OS 101

Related Topics

Vulnerabilities and Patches, Web Applications

Featured White Papers

Browse

Lowering Your IT Costs with Oracle Database 11g Release 2

This white paper identifies the key capabilities a database management solution needs to successfully deliver more information with higher quality of service, make more efficient use of IT budgets, and reduce the risk of change in data centers.

Software Forum: Information On Demand Virtual Experience

This interactive virtual forum presents leading IT experts providing the insights you need to turn your information into a strategic driver for innovation, business optimization and competitive differentiation.

Resource Centers

Browse

Cost Cutting through Server Consolidation

Products, management tools, and industry insights that enhance the value of virtualization for your business.

Featured Whitepapers

The Business Case for Virtualization

Greening IT with Server Consolidation

Learn how virtualization reduces the TCO of managing your date, while contributing towards your sustainability efforts.

Featured Whitepapers

Faster, Cheaper and Easier to Maintain: Can You Afford Not to Upgrade Your Servers to Today's Advanced, Energy-Efficient Technologies?

Information Management

Tools, tips and solutions to help you manage your data more efficiently to tackle today's challenging economic environment.

Featured Whitepapers

From Business Intelligence to Business Optimization

Tape Storage

Disaster recovery and business continuation that includes encryption, all at a manageable TCO.

Featured Whitepapers

The Truth about Tape - Nine Myths to Reconsider