Expert Finds RCE Flaw in Yahoo After Logging in with “Admin/Admin” Credentials

19

Mar

2014

Security researcher Behrouz Sadeghipour has identified a number of vulnerabilities on a Hong Kong subdomain of Yahoo (hk.yahoo.net). Fortunately, Yahoo has rushed to address the security holes reported by the expert.

According to Sadeghipour, he came across the vulnerabilities while analyzing a cross-site scripting (XSS) issue. While looking at the HTTP headers, he came across an administrator login page for the hk.yahoo.net domain.

He simply tried to log in with the …

Tags: [Softpedia][Yahoo]Behrouz Sadeghipour

Written by Softpedia

0 Comments

Comments are closed.

Archives

Archives

About Us

Our mission is to help users and also IT security passionate to reach relevant information related to cyber security.

This publication contains a lot of information and guidance on how to better protect your IT systems, data and activities from malicious factors, and also on how to safely navigate the Internet.

We look forward to hearing from you about cyber safety. Please let us know if there’s something specific you’re interested in learning about.

Contact Us

Name *
Your name is required

E-mail *
Email address entered is invalid

Please enter a message

Incorrect security code

The Latest in IT Security

Expert Finds RCE Flaw in Yahoo After Logging in with “Admin/Admin” Credentials

Categories

Featured

Archives

Latest Comments

About Us

Contact Us