Content from CNET tagged with

XSS

Show Results by: View by image View by list View by:; Show All; News (11); Downloads (5)

Narrow Your Results: security (11); vulnerability (9); flaw (6); attacker (6); Microsoft Corp. (5); server (5); cookie (5); Google Inc. (5); Microsoft Internet Explorer (4); attack (4); Web browser (4); Web application (3); e-mail (3); script (3); link (3)

Product Reviews, Downloads, News Stories

Showing 1-16 of 16 results found

News
Gmail cookie vulnerability exposes user's privacy
September 27, 2007 Program developed by "ethical hacking" group takes advantage of cross-site scripting vulnerability to steal contacts, forward e-mail. TAGS: Gmail, XSS, cookie, vulnerability, organization, attacker, hacking, Google Inc., password, security, e-mail
News
The security risk in Web 2.0
July 28, 2006 Security has become a no-brainer for desktop software, but the same doesn't hold true for the booming world of Web applications. TAGS: AJAX, Web 2.0, XSS, Web application, desktop software, expert, Time Warner Inc., programming, Yahoo! Inc., JavaScript, security, house, MySpace, Google Inc.
News
Symantec warns of router compromise
January 24, 2008 Security company says it has seen an attack using a cross-site scripting flaw in 2Wire DNS routers. TAGS: Symantec Corp., e-card, 2Wire, XSS, router, attack, domain name, DNS, HTTP, IP address, IP, security
News
Google plugs account hijack holes
January 16, 2007 If left unpatched, the vulnerability could let hackers modify third-party documents and view e-mail subjects, search history. TAGS: XSS, vulnerability, Google Inc., hacker, cookie, security, e-mail
News
Acrobat flaw could spawn Web attacks
January 4, 2007 Vulnerability in ubiquitous Acrobat Reader software could be a boon for cybercrooks and spark a rise in Web-based attacks, experts warn. TAGS: iDefense, VeriSign Inc., Adobe Acrobat, XSS, Adobe Acrobat Reader, Adobe Systems Inc., attack, Symantec Corp., Adobe PDF, flaw, security, link, Web browser
News
Firefox, IE vulnerable to fake login pages?
November 22, 2006 Flaw could enable attackers to compromise usernames and passwords, security researcher warns, citing exploit on MySpace. TAGS: XSS, MySpace, username, flaw, Firefox, attacker, exploit, Firefox 2.0, attack, Mozilla Corp., password, blog, Microsoft Internet Explorer, security, server, Web browser
News
Serious flaw in Google Desktop gets fix
February 21, 2007 Google plugs security holes in popular desktop search software that could open up data on a PC to intruders. TAGS: Watchfire, Google Desktop, Google Inc., XSS, vulnerability, flaw, security company, attack, security, PC, link
News
Mozilla issues security updates
December 20, 2006 "Critical" updates cover flaws in Firefox, Thunderbird and SeaMonkey that could allow for cross-site scripting and remote execution of code. TAGS: security update, Mozilla Corp., Mozilla Thunderbird, flaw, XSS, Firefox, security
News
Google flaw adds phishing hole to Web sites
November 28, 2006 Google's search appliances could expose Web sites that use the products to information-stealing phishing attacks. TAGS: search appliance, Google Search Appliance, Google Mini, phishing, appliance, flaw, Google Inc., vulnerability, XSS, Google Search, spokesman, security, link, e-mail
News
JavaScript bug-hunting tool demonstrated
March 24, 2007 Security researcher says his company won't let him release Jikto, which turns PCs of unknowing Web surfers into crawlers. TAGS: SPI Dynamics, JavaScript, Web security, researcher, XSS, security, Web browser, PC
News
Tool turns unsuspecting surfers into hacking help
March 21, 2007 With Jikto, JavaScript on a Web site can turn PCs into a bug-hunting tool, thus doing a hacker's dirty work. TAGS: Web security, Web surfer, JavaScript, attacker, hacking, hacker, SQL injection, creator, XSS, Web application, flaw, vulnerability, bot, SQL, researcher, security
Downloads
Microsoft IIS4 "Cross-Site Scripting" Vulnerability Patch (MS00-060)
Eliminate security vulnerabilities in the Microsoft Internet Information Server. TAGS: vulnerability, Microsoft IIS Server, XSS, CSS, Microsoft Corp., server
Downloads
ThreatSentry IIS Web Application Firewall (64-bit) 4.1.8
Stop SQL Injection and delivers compliance for PCI DSS. TAGS: Web application, intrusion prevention, Microsoft IIS Server, XSS, 64-bit
Downloads
Microsoft Internet Explorer 5.01 SP2 Cumulative Patch Q321232
Security update TAGS: attacker, vulnerability, cookie, script, XSS, HTML, file system, Web server, Microsoft Internet Explorer, server, Microsoft Corp.
Downloads
Microsoft Internet Explorer 5.5 SP1 Cumulative Patch Q321232
Security update TAGS: attacker, vulnerability, cookie, script, XSS, HTML, Web server, file system, Microsoft Internet Explorer, server, Microsoft Corp.
Downloads
Microsoft Internet Explorer 5.5 SP2 Cumulative Patch Q321232
Security update TAGS: attacker, vulnerability, cookie, script, XSS, HTML, Web server, file system, Microsoft Internet Explorer, server, Microsoft Corp.

Sponsored matches for "XSS"