Tag Archive for 'gmail'

Vulnerability in Gmail

Published on 5 years, 11 months ago in Browsing Habits.... 0 Comments Tags: , , , , .

I was recently attempting to mail some javascript code from my yahoo account to my gmail when I came across this vulnerability.

Apparently javascript will run if it is withing the preview of the message.

I only tested this sending from a yahoo account. Sending gmail to gmail appears to filter this out.

This is what the message has to compose of

* A short subject to increase the ammount of code to run

* A short bit of text in the body so that the code isn’t treated as quoted text

* And your code

My simple test was : Subject: a Body: asdfasdf<script>alert(“asdF”);</script>

Here is a screen: http://www.ipnow.org/vulnerability.png

This vulnerability could be used to gather email addresses. Or even possibly to compromise the account.

A 14 year old, Anthony discovered this vulnerability. Right now this has been fixed by Google but no statement has been issued by them regarding this.

Read Anothony’s Blog

Coming Soon…Chat in GMail

Published on 5 years, 12 months ago in Browsing Habits.... 2 Comments Tags: , , , , , , .

Chat in GMail

What’s new?Gmail learned to Talk. Now Gmail accounts are automatically enabled with chat features. You don’t have to do anything special, it just works. See when your friends are online and decide for yourself how you want to get in touch with them. Email and instant messaging don’t have to be so different. And why should you always have to remember whether something important was said over email or IM? We’ve made it easy for you to save chats, so you can search for them, print them, even reply to one over email.

Well not yet, but it will be coming soon. Chat feature in Mail thats the latest buzz from GMail and I am excited :)
Read More about it