|
|||
Yahoo XSS exploits going for $700
From http://h-online.com/-1758147
Quote:
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump |
|
||||
Thanks for the heads-up.
I realize this deals with code stored on the same server, which sets it apart from a normal XSS attack, but am dubious as to how effective the exploit would be if you were using Firefox with it set to warn on redirection, with the NoScript extension, which provides some XSS protection, didn't have the site whitelisted, and didn't allow JS globally, but you can't be too careful. I do use Yahoo email but still use the old style form which doesn't require JavaScript to be enabled. |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Security 90% of popular SSL sites vulnerable to exploits, researchers find | J65nko | News | 0 | 26th April 2012 10:24 PM |
Yahoo updates YUI JavaScript framework | J65nko | News | 0 | 17th January 2011 06:16 PM |
Yahoo marking spam only from mutt | asemisldkfj | General software and network | 3 | 15th June 2010 10:37 PM |
Yahoo! related Pidgin problems... | BSDfan666 | General software and network | 10 | 28th September 2008 02:39 AM |
DNS Security: Old Vulnerabilities, New Exploits with Cricket Liu | crayoxide | Off-Topic | 8 | 23rd July 2008 08:09 AM |