Serious Flaw In Google Desktop

Now fixed.

Several flaws in the popular Google Desktop software could open PCs up to intruders and possible data theft, a security company has warned….It does not appear that anyone actually took advantage of the vulnerabilities and made attacks on Google Desktop users, both Watchfire and Google said…However, Google Desktop is still vulnerable to these cross-site scripting attacks, Allan said, because of the “poor architectural decision” to include a link from Google Web servers to the Google Desktop user’s PC“.

Leave a Reply