Monday, October 24, 2016
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Samsung Galaxy Note 7 Customers To Get New Galaxy Not 8 Or Galaxy S8 Smartphones Half Price
AT&T to Acquire Time Warner For $85.4B
Internet Disruptions Were Caused By Attacked Connected Devices
TSMC, GlobalFoundries/Samsung To Present Their 7nm Platforms At IEDM
Hon Hai Gains Apple Mac Orders From Quanta
AT&T In Advanced Talks With Time Warner On Merger
LG's Next Flagship G6 Smartphone Won't be Modular
Samsung to Exchange Galaxy Note 7 with New Galaxy S8
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > Twitter...
Last 7 Days News : SU MO TU WE TH FR SA All News

Wednesday, September 22, 2010
Twitter Resolves "onMouseOver" Flaw

Twitter on Tuesday was notified of a security exploit which was immediately fixed. However, some time later a related issue came up tied to hovercards, which was also fixed.

The security exploit that caused problems was caused by cross-site scripting (XSS). Cross-site scripting is the practice of placing code from an untrusted website into another one. In this case, users submitted javascript code as plain text into a Tweet that could be executed in the browser of another user.

Twitter discovered and patched this issue last month. However, a recent site update (unrelated to new Twitter) unknowingly resurfaced it.

Early on Tuesday, a Twitter user noticed the security hole and took advantage of it on First, someone created an account that exploited the issue by turning tweets different colors and causing a pop-up box with text to appear when someone hovered over the link in the Tweet. This is why folks are referring to this an "onMouseOver" flaw -- the exploit occurred when someone moused over a link.

Other users took this one step further and added code that caused people to retweet the original Tweet without their knowledge.

This exploit affected and did not impact the company's mobile web site or mobile applications. The vast majority of exploits related to this incident fell under the prank or promotional categories, Twitter said. Although users may still see strange retweets in their timelines caused by the exploit, the company is not aware of any issues related to it that would cause harm to computers or their accounts. Twitter says that there is no need to change passwords because user account information was not compromised through this exploit.

"We?re not only focused on quickly resolving exploits when they surface but also on identifying possible vulnerabilities beforehand. This issue is now resolved. We apologize to those who may have encountered it," Twitter added.

BlackBerry Tablet Device May Launch Next Week        All News        Sony's Slim External BDX-S500U Blu-ray Burner Released in the United States
Netflix Launches Canadian Service for Streaming Movies and TV Episodes Over the Internet     General Computing News      Zune to Expand Services Into International Markets

Get RSS feed Easy Print E-Mail this Message

Related News
Salesforce Will Not Bid for Twitter
Twitter's Periscope Extends Beyond Phones With Periscope Video Producer
Second Donald Trump-Hillary Clinton Showdown Was The Most Tweeted Debate Ever
Twitter to Decide On Possible Sale Proposals Very Soon
Disney Working On Potential Twitter Bid: report
Report Cites Google, Salesforce Interest For Twitter
Twitter Eases 140-character limit On Tweets
Twitter Introduces Apple TV, Amazon Fire TV, and Xbox One Apps for Live Streaming Video
Twitter Tool Lets Users Filter Higher 'Quality' Tweets
Twitter Denies Rumors of Shutting Down
Twitter's Video Advertising Expansion Remains Slow
Twitter Live Streaming To Include MLB Games, NHL Games and Nightly Highlights Program

Most Popular News
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2016 - All rights reserved -
Privacy policy - Contact Us .