The exploit being sold for $700 by an Egyptian hacker on cybercrime forum, targets a "cross-site scripting"(XSS) in Yahoo! and that lets hackers steal cookies from Yahoo! Webmail users.
An attacker sends a malicious link to an unsuspecting user, if the user clicks the link, the script is executed, and attacker can access cookies,session tokens
Hacker posted the following video to demonstrate the Exploit on YOUTUBE
About the Author
Samad Khan is a Web Programmer and certified Ethical Hacker in WebSecurity. and Founder of 4Hak Web Security Team! he also work for other companies.
No comments:
Post a Comment