Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Google rewards experts for XXE vulnerability in Toolbar Button Gallery

Google rewards experts for XXE vulnerability in Toolbar Button Gallery

2014/04/12

Softpedia - (International) Google awarded two Detectify researchers $10,000 after they identified and reported an XML External Entity (XXE) vulnerability in the Google Toolbar Button Gallery that could have allowed an attacker to gain access to data on the company's production servers. The vulnerability was closed soon after being reported.

Source: http://news.softpedia.com/news/Google-Rewards-Experts-for-XXE-Vulnerability-in-Toolbar-Button-Gallery-437290.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:19:53