General
|
Written by Daniel
|
Tuesday, 25 November 2008 11:31 |
A known cross-site scripting glitch could let an attacker hijack messages sent to the victim's Gmail account by redirecting specific messages, says a security researcher.
By Thomas Claburn InformationWeek November 24, 2008 07:20 PM
A possible Google (NSDQ: GOOG) Gmail vulnerability that could allow an attacker to turn Gmail's filtering mechanism into a tool for covert information theft appears not to be directly related to a Gmail security flaw that Google fixed last year, according to Google.
In a post on the GeekCondition.com blog, Web developer Brandon Partridge on Sunday warned that an attacker can force an unsuspecting Gmail user to create a malicious message filter without his or her knowledge. [Comments...]
|