Slashdot Mirror


Yahoo and Hotmail Filter Flaw

gandam writes "Israeli computer security firm GreyMagic Software has detected a serious security flaw in Yahoo's Web e-mail service and Microsoft Corp.'s Hotmail service, which could allow hackers to run malicious scripts on users' computers. I tried sending a mail to my yahoo account and it never reached my mailbox. According to the website, all attempts to contact Yahoo unfortunately failed. Mail was sent to security and secure at yahoo.com and at yahoo-inc.com. No replies were received to date. Works only in IE5, though."

8 of 250 comments (clear)

  1. FIRST NAKED HERMIONE POST by Anonymous Coward · · Score: -1, Troll

    GET ON THAT, HARRY!

  2. 4th by Anonymous Coward · · Score: -1, Troll

    harz

  3. here ya go by Anonymous Coward · · Score: -1, Troll

    Here is a site with step by step instructions. Pretty neat:Here

  4. Troll by Anonymous Coward · · Score: -1, Troll
  5. So what? by Coyote67 · · Score: 0, Troll

    I propose reform at Slashdot right now!
    Last time I checked the latest version of IE was 6. I say this my friens, lets not use this as an excuse to attack Microsoft. Instead lets argue and attack about users who need to update. Whos with me? ARE YOU WITH ME? Wooooooo!

  6. BSD is dying? by rice_burners_suck · · Score: -1, Troll
    Hotmail and Yahoo! both run on FreeBSD. It must mean the BSD's are dying...

    Disclaimer: I run FreeBSD. I know Hotmail no longer runs on FreeBSD. But it runs on Windows, which is probably just a BSD fork with added bugs, vulnerabilities, and security holes. (I haven't used Windows in a few years though, so don't take my word for the BSD clone thing.)

  7. Re:Works only in IE5, though? by Anonymous Coward · · Score: 0, Troll

    But, like any sensible Mac user, I use Safari these days.

    That's wonderful if you just want to read online books, but it doesn't really help you browse the web.

  8. Re:Works only in IE5, though? by bellings · · Score: -1, Troll
    You are widening the goddamn page! Don't do this!
    Page widening is not a bug in slashdot.
    It is a bug in your browser. WWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWW
    Similarly, Cross Site Scripting is not a bug in Yahoo or Hotmail.
    It is a bug in IE5.
    --
    Slashdot is jumping the shark. I'm just driving the boat.