[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Google / GMail bug, all accounts vulnerable

To: "Porco Graxa" <porco.graxa@xxxxxxxxx>
Subject: Re: [Full-disclosure] Google / GMail bug, all accounts vulnerable
From: coderman <coderman@xxxxxxxxx>
Date: Tue, 11 Dec 2007 19:10:28 -0800

On Dec 11, 2007 12:28 PM, Porco Graxa <porco.graxa@xxxxxxxxx> wrote:
> ... Ask the google for "Gmail logout CSRF" or "Google
> logout csrf" and approximately 9 billion query results come
> immediately.

lolz; csrf has as many moves as web 2.0 has slutty ports (listening on :80)

csrf with static get hrefs alone not wow'ing us ...
persistent xss with csrf for session hijacking (that's a tasty cookie
you got there, boy) a bit more fun ...
multi-platform / persistent session hijacking via external plugins /
handlers for vulnerable mime types has potential (particularly when
target is connected to a proxy that would otherwise filter such
attempts)... how many more variations?  i'm seeing stars in the sky...

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- Re: [Full-disclosure] Google / GMail bug, all accounts vulnerable
  - From: Porco Graxa

Prev by Date: Re: [Full-disclosure] Google / GMail bug, all accounts vulnerable
Next by Date: Re: [Full-disclosure] Google / GMail bug, all accounts vulnerable
Previous by thread: Re: [Full-disclosure] Google / GMail bug, all accounts vulnerable
Next by thread: Re: [Full-disclosure] Google / GMail bug, all accounts vulnerable
Index(es):
- Date
- Thread