This bug has already been corrected, that's why it's been published. In this manual you will see step by step how to exploit Gmail's vulnerability, that gave you access to any account, reported by Anelkaos, colaborator of elhacker.net's forum and patched by Google by October 18. Due to the bug's gravity (that allowed in a few simple steps to login in any Gmail account), it was decided not to publish this document while the bug was still active. Motives are more than obvious because ALL Gmail accounts was vulnerable to the bug.
Google hasn't declared definitively this topic, and they seem not to have intention to publish the bug. The veracity of the failure was demonstrated to the editors of the Magazine "Seguridad0", logging into an account created for that purpose, just as described in
http://www.elistas.net/lista/inform...ice/61/msg/79/. They also "dare" to publish this news in CyruxNET and PCWorld.
The bug was discovered in October 14 and it was patched in October 18 because ANELKAOS decided to conctact GMail instead of publishing the bug in a list of security, and lamentably we couldn't do more demos in other sites that we sent the news, and because we're not HBX Networks, all the people claimed for a "hacking' test".
Source : El Hacker
You can click here to see
Today's Posts
|
Most Active Topics
|
Posts Since Last Visit
Printable Version
All Forums >> [News Around The Web] >> Security News >> Gmail Bug Fixed But Not Disclosed ! 
Gmail Bug Fixed But Not Disclosed ! - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread