|
-
March 23rd, 2004, 09:10 PM
#1
Yahoo, Hotmail Open to Attack
Again, or still, security flaws open your online mail accounts to exploits.
The vulnerability was discovered in an Internet Explorer feature used to process extensions to HTML called HTML + TIME. The security hole could allow attackers to steal log-in and password information, or browse the contents of an e-mail account, according to an advisory released by GreyMagic Software.
The company tested the vulnerability against Yahoo and Hotmail, but it could affect other e-mail services, GreyMagic said.
Hotmail and Yahoo filter incoming HTML-format e-mail messages for malicious code. However, the filtering, combined with support for HTML + TIME, makes it possible to inject malicious script into incoming e-mail messages, GreyMagic said
They are using a flaw in IE, but I am wondering if other browsers could be exploited in the same way.
SOURSE
\"Life should NOT be a journey to the grave with the intention of arriving safely in an attractive and well preserved body, but rather to skid in sideways, Champagne in one hand - strawberries in the other, body thoroughly used up, totally worn out and screaming WOO HOO - What a Ride!\"
Author Unknown
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote