Author Topic: Gmail vulnerability found  (Read 1392 times)

Offline Saxito Pau

  • Global Moderator
  • Akatsuki
  • *
  • Posts: 3848
  • Country: tt
  • Chakra 15
  • Worms will never die!
    • Original NES
  • Referrals: 2
    • View Profile
  • CPU: Intel Core i7-3770
  • GPU: EVGA GTX 970 SC ACX2.0
  • RAM: Crucial Tracer 16GB DDR3-1600
  • BattleNet ID: SaxitoPau#1996
  • Broadband: Flow 60Mbps
  • Steam: Saxito Pau
Gmail vulnerability found
« on: August 07, 2007, 12:45:46 AM »
http://blogs.zdnet.com/Google/?p=679

Quote
Though it’s not specific to Gmail, or easily exploitable by users outside your network, a session hijacking demonstration by Robert Graham showed hackers how to take over a users email account by simply sniffing network traffic and stealing cookies. In the demonstration, George Ou volunteered an email address he created to be hacked into — and it didn’t take long. Within seconds, the attacker was able to use a point-and-click interface to get access to this account and send a message from it.

The demonstration highlights how easy unsecure network traffic can make for some very simple session hijacking. One way you can avoid having your Gmail account taken over by people on your network is to use the SSL version — be warned though, any website that relies heavily on cookies for authentication remains vulnerable.

If you don’t have Greasemonkey installed, or you still use Internet Explorer, get used to typing “https://www.gmail.com” to check your email — doing this will safeguard yourself from prying eyes through network sniffing. If you have Firefox, you can install this Greasemonkey script to ensure your session always remains in “secure mode”.

sigh - W1nTry: Not a good idea to tell ppl that kinda info sax...
« Last Edit: August 07, 2007, 08:34:35 AM by W1nTry »
God is dead.

Carigamers

Gmail vulnerability found
« on: August 07, 2007, 12:45:46 AM »

Offline Grim Reaper

  • Village Idiot
  • Genin
  • *
  • Posts: 98
  • Chakra 191
  • Your Soul Is Mine!
  • Referrals: 0
    • View Profile
    • World Affairs Board (WAB)
  • CPU: Intel Core 2 Extreme Quad Core
  • GPU: NVIDIA GeForce 8800 Ultra SLI
  • RAM: 4GB DDR2 SDRAM
Re: Gmail vulnerability found
« Reply #1 on: August 07, 2007, 11:06:30 AM »
Very interesting, it's about time someone figured out such a flaw in Gmail.

Quote from:  Grim Reaper
I agree that a few US soldiers have done some horrible things to Iraqis. This is in turn should naturally make some Iraqi fearful of US troops and that's perfectly fine.

Carigamers

Re: Gmail vulnerability found
« Reply #1 on: August 07, 2007, 11:06:30 AM »

 


* ShoutBox

Refresh History
  • Crimson609: yea everything cool how are you?
    August 10, 2022, 07:26:15 AM
  • Pain_Killer: Good day, what's going on with you guys? Is everything Ok?
    February 21, 2021, 05:30:10 PM
  • Crimson609: BOOM covid-19
    August 15, 2020, 01:07:30 PM
  • Shinsoo: bwda 2020 shoutboxing. omg we are in the future and in the past at the same time!
    March 03, 2020, 06:42:47 AM
  • TriniXjin: Watch Black Clover Everyone!
    February 01, 2020, 06:30:00 PM
  • Crimson609: lol
    February 01, 2020, 05:05:53 PM
  • Skitz: So fellas how we go include listing for all dem parts for pc on we profile but doh have any place for motherboard?
    January 24, 2020, 09:11:33 PM
  • Crimson609: :ph34r:
    January 20, 2019, 09:23:28 PM
  • Crimson609: Big up ya whole slef
    January 20, 2019, 09:23:17 PM
  • protomanex: Gyul like Link
    January 20, 2019, 09:23:14 PM
  • protomanex: Man like Kitana
    January 20, 2019, 09:22:39 PM
  • protomanex: Man like Chappy
    January 20, 2019, 09:21:53 PM
  • protomanex: Gyul Like Minato
    January 20, 2019, 09:21:48 PM
  • protomanex: Gyul like XJin
    January 20, 2019, 09:19:53 PM
  • protomanex: Shout out to man like Crimson
    January 20, 2019, 09:19:44 PM
  • Crimson609: shout out to gyal like Corbie Gonta
    January 20, 2019, 09:19:06 PM
  • cold_187: Why allur don't make a discord or something?
    December 03, 2018, 06:17:38 PM
  • Red Paradox: https://www.twitch.tv/flippay1985 everyday from 6:00pm
    May 29, 2018, 09:40:09 AM
  • Red Paradox: anyone play EA Sports UFC 3.. Looking for a challenge. PSN: Flippay1985 :)
    May 09, 2018, 11:00:52 PM
  • cold_187: @TriniXjin not really, I may have something they need (ssd/ram/mb etc.), hence why I also said "trade" ;)
    February 05, 2018, 10:22:14 AM

SimplePortal 2.3.3 © 2008-2010, SimplePortal