Gmail Vulnerability Reported

A vulnerability in Google"s Gmail may give remote users access to Gmail user information. The culprit is the Gmail CheckAvailability script. Remote users can apply the "/accounts/CheckAvailability" script repeatedly until the system returns another user"s information.

The only information that seems to be revealed are the user"s first and last name and desired Gmail account. Also, in order to access this information, the remote user must have a valid Gmail invite. While this may not be as much of a security caution as, say, revealing credit card information, it still causes a worry for users wishing to remain anonymous.

News source: webpronews.com

Report a problem with article
Next Article

Microsoft Research's Next Media Video

Previous Article

HijackClick 3 Exploit for Internet Explorer