Google plugs cross-scripting security hole
Google has fixed a cross-scripting flaw that opened user accounts to hijacking, the search giant confirmed Monday. According to Finjan Software, the bug in two unnamed Google sub-sites could have allowed attackers to grab a Google user's cookie.
By Gregg Keizer at Security Pipeline.
[ Read more ]