Yahoo said it has fixed a security vulnerability in its Yahoo Mail service that could have allowed malicious hackers to hijack accounts and harm users in a variety of ways. "We have developed a fix for this bug and have deployed it worldwide. Yahoo Mail users will not be required to take any action to be protected from this exploit," said Kelley Podboy, a Yahoo spokeswoman, via e-mail.
Nir Goldshlager and Roni Bachar from Avnet, a computer security company based in Israel discovered the vulnerability in early August.