Source |
The Hacker News |
Identifiant |
269180 |
Date de publication |
2016-12-08 10:30:41 (vue: 2016-12-08 10:30:41) |
Titre |
Yahoo Flaw Allowed Hackers to Read Anyone\'s Emails |
Texte |
Yahoo has patched a critical security vulnerability in its Mail service that could have allowed an attacker to spy on any Yahoo user's inbox.
Jouko Pynnönen, a Finnish Security researcher from security firm Klikki Oy, reported a DOM based persistent XSS (Cross-Site Scripting) in Yahoo mail, which if exploited, allows an attacker to send emails embedded with malicious code.
In
|
Envoyé |
Oui |
Condensat |
allowed allows any anyone attacker based code could critical cross dom emails embedded exploited finnish firm flaw from hackers has have inbox its jouko klikki mail malicious patched persistent pynnönen read reported researcher scripting security send service site spy user vulnerability which xss yahoo |
Tags |
|
Stories |
Yahoo
|
Notes |
|
Move |
|