Feet up!

Google's Holes

For as long as I can remember (which appears to be about 2.5 years), Jim Ley has been complaining to anyone who'd listen (which didn't include Google's security team) about script insertion flaws in Google's Javascript code.

Earlier this week Jim took the nuclear approach and released a working example of the exploit that looked like a classic phishing scam. Google finally noticed and took some action.

However, they don't appear to have done a great job in fixing the holes, as Jim's still seeing the exploit working, and Paul Mutton of Netcraft has discovered (and reported to Google) a number of other possible exploits. Google's a great search engine, but they really should have sorted this out faster and better.

[Thu, 21 Oct 2004 23:49] | [tech] | #

About
Jim Hughes
Wiki (updates)

RSS for Feet up!
link to FOAF file
Full of LOAF
Flookie Blog Search


Web Sites
Ben Hammersley
Diego Doval
Erik Thauvin
Ewan Spence
Frank Koehntopp
Gustaf Erikson
I Didn't Vote For Boris
Matt Croydon
Mark Pilgrim
Martin Little
MobHappy
Phil Wilson
The Register
Rui Carmo
Russell Beattie
Taptu's mobile chemistry blog
Tarek Abu Esber
techype
Terje Sørgjerd
Tom Hume
TPN Rock

pyblosxom logo

Archives
2008-Sep
2008-Aug
2008-Jul
2008-Jun
2008-May
2008-Apr
2008-Mar
2008-Feb
2008-Jan
2007-Dec
2007-Nov
2007-Oct
2007-Sep
2007-Aug
2007-Jul
2007-Jun
2007-May
2007-Apr
2007-Mar
2007-Feb
2007-Jan
2006-Dec
2006-Nov
2006-Oct
2006-Sep
2006-Aug
2006-Jul
2006-Jun
2006-May
2006-Apr
2006-Mar
2006-Feb
2006-Jan
2005-Dec
2005-Nov
2005-Oct
2005-Sep
2005-Aug
2005-Jul
2005-Jun
2005-May
2005-Apr
2005-Mar
2005-Feb
2005-Jan
2004-Dec
2004-Nov
2004-Oct
2004-Sep
2004-Aug
2004-Jul
2004-Jun
2004-May
2004-Apr
2004-Mar
2004-Feb
2004-Jan
2003-Dec
2003-Nov
2003-Oct
2003-Sep
2003-Aug
August 2003
July 2003
June 2003
May 2003
April 2003
March 2003
February 2003
January 2003
December 2002
November 2002
October 2002
September 2002
August 2002
July 2002
June 2002
May 2002

AAS Webring logo
Previous | Random | Next
Join | List | Home
Powered by RingSurf