Google Desktop Cross-Site Scripting Weakness
BID:22650
Info
Google Desktop Cross-Site Scripting Weakness
| Bugtraq ID: | 22650 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-1085 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 21 2007 12:00AM |
| Updated: | May 12 2015 07:34PM |
| Credit: | This issue was discovered by Yair Amit with the cooperation of Danny Allan and Adi Sharabani. |
| Vulnerable: |
Google Desktop Search |
| Not Vulnerable: |
Google Desktop Search 5.0.701 .30540 |
Discussion
Google Desktop Cross-Site Scripting Weakness
Google Desktop is prone to a cross-site scripting weakness because the application fails to properly sanitize user-supplied input.
Successful attacks must exploit this weakness in conjunction with a latent cross-site scripting vulnerability in the 'google.com' domain.
Attackers may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow attackers to access the contents of the Google Desktop search index or potentially to execute arbitrary code.
Google Desktop is prone to a cross-site scripting weakness because the application fails to properly sanitize user-supplied input.
Successful attacks must exploit this weakness in conjunction with a latent cross-site scripting vulnerability in the 'google.com' domain.
Attackers may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow attackers to access the contents of the Google Desktop search index or potentially to execute arbitrary code.
Exploit / POC
Google Desktop Cross-Site Scripting Weakness
An attacker can exploit this issue by enticing an unsuspecting user to follow a malicious URI.
A demonstration of this issue is located at the following URI:
http://download.watchfire.com/googledesktopdemo/index.htm
http://127.0.0.1/path/search?q=%22%3E%3Cscript%3Ealert%28%27bl4ck%27%29%3C%2Fscript%3E
An attacker can exploit this issue by enticing an unsuspecting user to follow a malicious URI.
A demonstration of this issue is located at the following URI:
http://download.watchfire.com/googledesktopdemo/index.htm
http://127.0.0.1/path/search?q=%22%3E%3Cscript%3Ealert%28%27bl4ck%27%29%3C%2Fscript%3E
Solution / Fix
Google Desktop Cross-Site Scripting Weakness
Solution:
The vendor has address this issue in the latest version of Google Desktop.
Solution:
The vendor has address this issue in the latest version of Google Desktop.
References
Google Desktop Cross-Site Scripting Weakness
References:
References:
- Google Desktop Search Home Page (Google)
- I heard there was a recent security advisory regarding Google Desktop. Can you t (Google)
- Overtaking Google Desktop (Watchfire)
- Overtaking Google Desktop ("Yair Amit"
- Vulnerability Note VU#615857 - Google Desktop vulnerable to to cross-site script (US-CERT)