Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

Yahoo fixes e-mail service security flaw

Dec 9, 2003 11:20PM PST

Yahoo has fixed a flaw in its Web-based e-mail service that exposed Yahoo Mail users to serious attacks, including potential interception of personal data, security company Finjan Software said Wednesday.

Yahoo's mail service contained a so-called malicious script execution flaw, according to Finjan. An attacker could send an e-mail containing malicious script and that code would automatically run once the user opened the message, the company said.

If successful, an attacker could delete files on a victim's computer, steal personal information such as usernames and passwords, credit card numbers and any other information a user inputs on his computer, according to Finjan.

http://www.nwfusion.com/news/2003/1210yahoofix.html


--
Donna
[]Security Software

Discussion is locked