XSS and Cookie Handling Vulnerabilities Identified on HTC Website, Allows Attacker to Hijack Account | Turorial Grapich Design and Blog Design

Home
Drop menu
- Menu 1
- Menu 2
- Menu 3
- Menu 4
- Menu 5
Drop menu 2
- Menu 1
- Menu 2
- Menu 3
  - Menu 3.1
  - Menu 3.2
  - Menu 3.3
  - Menu 3.4
- Menu 4
- Menu 5
Drop menu 3
- Menu 1
- Menu 2
- Menu 3
- Menu 4
- Menu 5
Instruction to Use
Free Template

25 February 2014
WINDOWS XP Support Ends April 8, 2014
25 February 2014
Are you a VICTIM of WORKPLACE BULLYING?
25 February 2014
Bitcoin Foundation Announces Bitcoin 2014 Event in Amsterdam
25 February 2014
Photography Hint, It's All About The Lighting
26 February 2014
Check Out Toolz Beautiful & Sexy New Photos
26 February 2014
Photos:- Actress Fathia Balogun Shows Off Her Adorable Kids & Mum
26 February 2014
Incredible: Boy sold in exchange for 2 bags of rice in Lagos (PICTURED)
26 February 2014
Photo: Actress Rukky Sanda shines in all white ensemble
26 February 2014
PSqaure Debuts Cartoon Series Called 'The Alingos'
26 February 2014
Federal Government Increases International Passport Fee By 50% [READ DETAILS]
26 February 2014
Super Eagles player, Kalu Uche and wife welcomes baby boy (LOOK)
25 February 2014
The Great BITCOIN CRASH
25 February 2014
WINDOWS XP Support Ends April 8, 2014
25 February 2014
Are you a VICTIM of WORKPLACE BULLYING?
25 February 2014
Bitcoin Foundation Announces Bitcoin 2014 Event in Amsterdam
25 February 2014
Photography Hint, It's All About The Lighting
26 February 2014
Check Out Toolz Beautiful & Sexy New Photos
26 February 2014
Photos:- Actress Fathia Balogun Shows Off Her Adorable Kids & Mum
26 February 2014
Incredible: Boy sold in exchange for 2 bags of rice in Lagos (PICTURED)
26 February 2014
Photo: Actress Rukky Sanda shines in all white ensemble

Home » HTC , Security , Vulnerability , XSS » XSS and Cookie Handling Vulnerabilities Identified on HTC Website, Allows Attacker to Hijack Account

XSS and Cookie Handling Vulnerabilities Identified on HTC Website, Allows Attacker to Hijack Account

Written By Unknown on Friday, 28 December 2012 | 10:54

16-year-old security researcher Thamatam Deepak has identified a number of three cross-site scripting (XSS) vulnerabilities and a cookie handling flaw on the website of world-renowned smartphone manufacturer HTC.

The expert said the vulnerabilities – which affected pages such as product security, account information, and smartphone presentation – have been addressed by HTC after he notified them, according to The Hacker News

If unfixed, the XSS vulnerabilities could have been leveraged by a remote attacker to inject arbitrary content, while the cookie handling flaw might have been exploited to hijack user accounts.

This isn’t the first time when security experts find XSS bugs on HTC’s website. Back in April, researcher Shadab Siddiqui identified similar flaws and reported them to the company.

However, at the time, they failed to respond to his notifications and the vulnerabilities remained unfixed for months.

Share this article :

Post a Comment

Support : Creating Website | Johny Template | Mas Template
Copyright © 2011. Turorial Grapich Design and Blog Design - All Rights Reserved

Template Created by Creating Website Published by Mas Template
Proudly powered by Blogger