Forgot your password?

Close
typodupeerror
Security

+ - McAfee sites vulnerable to XSS attack->

Submitted by Anonymous Coward
An anonymous reader writes "This weekend, ReadWriteWeb discovered a security hole on several of McAfee sites. From the post: "During tests this weekend, we discovered the company who claims to "keep you safe from identity theft, credit card fraud..." has several cross-site scripting (XSS) vulnerabilities and provides the bad guys with a brilliant — albeit ironic — launching pad from which to unleash their attacks" In the 'how to HTML Injection' the author provided the four steps needed to execute a simple, no brainer injection, but unfortunately, exposed a hole in New York Times website when they republished the article. While the author changed the offending text to an image, the NYT is still using the original story which redirects directly to RWW."
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

McAfee sites vulnerable to XSS attack More

McAfee sites vulnerable to XSS attack

Comments Filter:

% "Every morning, I get up and look through the 'Forbes' list of the richest people in America. If I'm not there, I go to work" -- Robert Orben

Close