Google Blogoscoped

Forum

Google XSS Exploit May Show Some Private Data  (View post)

LMZ [PersonRank 1]

Friday, September 28, 2007
7 years ago3,906 views

FireFox + Linux == Best FireWall!

Stephen Tordoff [PersonRank 10]

6 years ago #

Firefox nor Linux are a Firewall, and none of these would remove this vuln

Stephen Tordoff [PersonRank 10]

6 years ago #

Edit: Doesn't matter, I miss read the post, I've seen too much stuff like this recently

TOMHTML [PersonRank 10]

6 years ago #

LMZ > there is a better firewall when you live in China ;-)

James Xuan [PersonRank 10]

6 years ago #

HAHAHA!!!

Luka [PersonRank 10]

6 years ago #

Dial up connexions are good as firewall too...

Haochi [PersonRank 10]

6 years ago #

Well... The best "firewall" in this case would be NoScript.
addons.mozilla.org/en-US/firef ...

James Xuan [PersonRank 10]

6 years ago #

<<Dial up connexions are good as firewall too>>
:D!!!!

Caleb [PersonRank 0]

6 years ago #

So, ditch my firewall, move to China, get dial-up, install "no-script", then I'll be safe? =P

Juha-Matti Laurio [PersonRank 10]

6 years ago #

CSRF (Cross-site Request Forgery) vulnerability in Gmail is fixed now:
news.netcraft.com/archives/200 ...

Juha-Matti Laurio [PersonRank 10]

6 years ago #

New information:
Google AdSense suffers about the same CSRF vulnerability too.
Link to The Spanner post is
thespanner.co.uk/2007/09/27/go ...

Credits goes to person writing comment to this SecuriTeam post:
blogs.securiteam.com/index.php ...

James Xuan [PersonRank 10]

6 years ago #

<<So, ditch my firewall, move to China, get dial-up, install "no-script", then I'll be safe? =P>>

Sounds like a plan! Can I come? Pweeeeeease?

Juha-Matti Laurio [PersonRank 10]

6 years ago #

It appears that the post doesn't include information is this vulnerability fixed by Google yet?

Philipp Lenssen [PersonRank 10]

6 years ago #

Yesterday evening, I checked and it still wasn't fixed...

Juha-Matti Laurio [PersonRank 10]

6 years ago #

Okay, Thanks for sharing this information. Let's hope they will fix it ASAP

Tony Ruscoe [PersonRank 10]

6 years ago #

And it's still not fixed.

Philipp Lenssen [PersonRank 10]

6 years ago #

26 days & not fixed?!

James Xuan [PersonRank 10]

6 years ago #

tut,tut goole

This thread is locked as it's old... but you can create a new thread in the forum. 

Forum home

Advertisement

 
Blog  |  Forum     more >> Archive | Feed | Google's blogs | About
Advertisement

 

This site unofficially covers Google™ and more with some rights reserved. Join our forum!