Feb 22

Security Alert: Google Desktop XSS flaw

by wired4destruction
Add comments
Security vulnerability

A cross-site scripting (XSS) vulnerability has been found in the Google Desktop application. The flaw, first discovered in October 2006, enables an attacker to search for and steal data from a user’s system.

Google released an updated version of the Google Desktop client that fixes the flaw earlier this month. If you use Google Desktop, make sure that you are running the latest version, 5.0.701.30540. The latest version of Google Desktop can be downloaded from the Google Desktop site, http://desktop.google.com/.

For more details on the vulnerability, please see http://www.securityfocus.com/news/11443.

You have been warned.

Del.icio.us
Digg
Reddit
Technorati
This entry was posted on Thursday, February 22nd, 2007 at 23:10 and is filed under Security vulnerability. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Comment

Name (required)

Mail (will not be published) (required)

Website

Comment