Google Gears WorkerPool API vulnerability reported

Forum

Google Gears WorkerPool API vulnerability reported
Juha-Matti Laurio	Tuesday, December 9, 2008 3 years ago • 904 views
Version 0.5.4 reportedly includes a fix: securityfocus.com/bid/32698/di ... <<Google Gears is prone to a vulnerability that allows attackers to violate the same-origin policy. This issue occurs because the application fails to properly enforce the same-origin policy when handling WorkerPool objects.>> [edit: snippet added. -Philipp]
This thread is locked as it's old... but you can create a new thread in the forum.

Blog | Forum more >> Archive | Feed | Google's blogs | About

This site unofficially covers Google™ and more with some rights reserved. Join our forum!