spridgets
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Of Interest to G Mail Users, No LBC

from [Unknown] [Permanent Link][Original]
To: bushwacker4@zoomtown.com
Subject: Re: Of Interest to G Mail Users, No LBC
Date: Fri, 14 Jan 2005 09:31:43 -0600
Cc: spridgets@Autox.Team.Net
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=XMk+M0Zi8l9nGNxQmJzpzRBvuZwTc7DDc/BXkNd6xy6lR5mBowcic/pVPpaISKLaTQQ8l5OnKGgX89U5NIFSEmi5Ud2v99Wx8JrPWHtrxzynUC6AWzmdNPEeADrEbtNOE8Kv+i2BMuAZQmcbNd4MCkqu0PGEG2CsSbpa4UcDB00=
References: <20050114143901.PDHP4914.gx5.fuse.net@smtp.fuse.net> 
Thanks, Kent...   But:

****Quick to respond, Google acknowledged the problem late Wednesday
and has since corrected the problem for all users, a company source
said.***

Looks like the problem was fixed two days ago.  

Still...  It gives one pause, doesn't it.  It's damned frightening
knowing that someone out there now knows what weight of motor oil I'm
now using in my Midget!!!     ;-)

Cheers!!
Jim - who knows nothing worth hacking in Dodge City
-- 
1964 R60/2
1968 MG Midget
1976 R90/6
1990 K100LT
**Don't underestimate the power of stupid people in large groups.**

On Fri, 14 Jan 2005 14:41:03 +0000, bushwacker4@zoomtown.com
<bushwacker4@zoomtown.com> wrote:
> I got this off a Yahoo Group... Don't know anything more than what it says. 
>Since a bunch of you use it, I thought you would want to know.
> 
> Kent
> 1960 Bugeye
> 
> Gmail Bug Exposes Mail to Hackers
> Whoops! Do you use Google's Gmail? If so, better not be hiding anything 
>confidential in there. It seems that a bug leaves users' mail files wide open 
>to any hacker with the key. Our story details what the bug is, how it works 
>and what Google is going to do.
> 
> http://www.eweek.com/article2/0,1759,1750785,00.asp
> 
> UNIX developers HBX Networks have stumbled upon a bug within Google's Gmail 
>that allows access to other users' personal e-mails.
> By altering the "From" address field of an e-mail sent to the service, 
>hackers could potentially find out a user's personal information, including 
>passwords.
> 
> At first glance, to the average user the e-mail would appear normal. But by 
>clicking "show options" within the Gmail interface, the "Reply-To" field will 
>show HTML code that is actually a formatted version of another user's e-mail, 
>HBX wrote on its Web site.
> 
> HBX said that they think a missing character is tripping up Gmail and causing 
>it to print whatever is in its cache, or memory, into the Reply-To field.
> 
> The group did say much of what they saw was spam. However, what troubled them 
>was in at least one case they were able to see a user's password.
> 
> http://www.betanews.com/article/Gmail_Bug_Exposes_Emails_to_Hackers/1105561408
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Friday humor again, Unknown
Next by Date:  Re: Huh? what?, Unknown
Previous by Thread:  Of Interest to G Mail Users, No LBC, Unknown
Next by Thread:  Friday humor again, Unknown
Indexes:  [Date] [Thread] [Top] [All Lists]