‫ XSS Flaw discovered in Skype's Shop, user accounts targeted

ID: IRCNE2012021413
Date: 2012-02-25
According to "zdnet", the independent security researcher Ucha Gobejishvili has detected a cross site scripting (XSS) vulnerabilities affecting shop.skype.com and api.skype.com.
Upon successful exploitation the vulnerability allows an attacker to hijack cookies via required user interaction, leading to complete session hijacking and stealing of the account.
Skype has been informed of the vulnerabilities and is currently investigating.


بدون نظر
شما برای نظر دادن باید وارد شوید


تاریخ ایجاد: 6 اسفند 1390



امتیاز شما
تعداد امتیازها:0