Re: Exploiting the Google toolbar (GM#001-MC)
From: http-equiv@excite.comDate: 08/11/02
- Previous message: Russ: "Alert: Microsoft Security Bulletin - MS02-041"
- Maybe in reply to: GreyMagic Software: "Exploiting the Google toolbar (GM#001-MC)"
- Next in thread: GreyMagic Software: "Re: Exploiting the Google toolbar (GM#001-MC)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 11 Aug 2002 18:07:30 -0000 From: "http-equiv@excite.com" <http-equiv@MALWARE.COM> To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
"GreyMagic Software" <security@greymagic.com> wrote
> #2. Control all visual configuration options.
> ---------------------------------------------
>
> The method of registering changes in options to the Google toolbar
is very
> insecure. The toolbar is using a special URL to inflict the changes,
> "http://toolbar.google.com/command?
doesn't let
> the changes occur if the current document is outside of google.com
or the
> special res:// protocol.
Looks like you can set the user's preferences remotely too.
Preferences include:
Interface Language
Search Language
Safe Search Filtering
Perhaps the only concern would be resetting the Safe Search Filter:
Do not filter my search results.
'containing explicit sexual content from appearing in search result'
hmmm...
Quick and dirty demo. May be a language constraint:
http://www.malware.com/google.html
-- http://www.malware.com
- Previous message: Russ: "Alert: Microsoft Security Bulletin - MS02-041"
- Maybe in reply to: GreyMagic Software: "Exploiting the Google toolbar (GM#001-MC)"
- Next in thread: GreyMagic Software: "Re: Exploiting the Google toolbar (GM#001-MC)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
