Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - Another Google cross-domain vulnerability fixed (

mr_mischief writes: The Register reports that a vulnerability allowed exploiting Google Docs to access information stored in users' GMail accounts. The bug is said to be fixed now. It was possible using proof-of-concept code to grab Gmail contact lists as witnessed by the reporters. The developer of the PoC says he could just as easily grab actual email messages or other user data on Google's servers until the hole was closed.
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Another Google cross-domain vulnerability fixed

Comments Filter:

As in certain cults it is possible to kill a process if you know its true name. -- Ken Thompson and Dennis M. Ritchie