 | |
| |||||||
| Home | Register | Projects | Blogs | FAQ | Calendar | Search | Today's Posts | Mark Forums Read | Free Directory | Free DNSReport | Tags |
| Notices |
| Advisories Discuss about all newly security flaws classed by CVE entries and reviewed by security experts |
CVE-2007-6536 (Google Toolbar)This is a discussion on "CVE-2007-6536 (Google Toolbar)" within the Advisories part of the Computer Security: Discussions section; The Custom Button Installer dialog in Google Toolbar 4 and 5 beta presents certain domain names in the (1) "Downloaded from" and (2) "Privacy considerations" sections without verifying domain names, which makes it easier for remote attackers to spoof domain ... |
 |
| | LinkBack | Thread Tools | Display Modes |
28-12-07
| |||
| |||
 CVE-2007-6536 (Google Toolbar) The Custom Button Installer dialog in Google Toolbar 4 and 5 beta presents certain domain names in the (1) "Downloaded from" and (2) "Privacy considerations" sections without verifying domain names, which makes it easier for remote attackers to spoof domain names and trick users into installing malicious button XML files, as demonstrated by presenting www.google.com when the button was downloaded from an arbitrary site through an open redirector on www.google.com. More...  |
| Sponsor | ||
| ||
| |
|
| | |
| cve20076536, google, toolbar | |
| Thread Tools | |
| Display Modes | |
Linear Mode
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Microsoft Service Packs Going Out of Support - May 2007 | class101 | Security discussions | 0 | 02-05-07 00:08 |
