funsec mailing list archives
Reported Google Vuln
From: nodialtone <nodialtone () comcast net>
Date: 23 Feb 2006 00:26:55 -0500
Google funzies. [Snip] I. DESCRIPTION Google Reader (http://www.google.com/reader/) helps organise the contents of those rss or atom feeds for which the user is interested in or subscribed to. The user instead of continuously checking his/her favorite sites or discussion groups for updates, (s)he can let Google Reader do it for them.
From news sites to your friends' blogs, Google Reader helps stay
up-to-date with all the online information that matters most to the user. II. VULNERABILITY DETAILS Google reader is supposed to display only those contents which the user has subscribed to however two vulnerabilities has been identified which may allow an attacker to entice it's victim (using google reader service) to view unwanted web contents carrying malicious payloads. [snip] Reference: http://seclists.org/lists/fulldisclosure/2006/Feb/0553.html -- -nodialtone http://www.iatechconsultng.com _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Reported Google Vuln nodialtone (Feb 22)