فا

‫ XSS Flaw discovered in Skype's Shop, user accounts targeted

ID: IRCNE2012021413
Date: 2012-02-25
According to "zdnet", the independent security researcher Ucha Gobejishvili has detected a cross site scripting (XSS) vulnerabilities affecting shop.skype.com and api.skype.com.
Upon successful exploitation the vulnerability allows an attacker to hijack cookies via required user interaction, leading to complete session hijacking and stealing of the account.
Skype has been informed of the vulnerabilities and is currently investigating.

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 6 اسفند 1390

دسته‌ها

امتیاز

امتیاز شما
تعداد امتیازها: 0