The Latest in IT Security

TweetDeck vulnerability lets attackers execute code remotely

11
Jun
2014

A newly discovered vulnerability in TweetDeck for Chrome is allowing attackers to remotely execute javascript code through an unpatched vulnerability. Users have reported seeing random pop-up windows reading Yo! or Please close now TweetDeck [sic], it is not safe. The vulnerability is believed to be confined to web version of TweetDeck, but other users have reported similar attacks in TweetDecks Windows app. Twitter says that they have fixed the vulnerability, and users can apply the fix by logging out of TweetDeck and logging back in. Researchers have reported XSS problems from TweetDeck in the past, most notably from Mikko Hypponen in 2011, but developers reported the vulnerability as fixed the following day, and most believed it to be a closed issue.

Related posts:
  1. Today’s TweetDeck collapse may have been triggered by an Austrian teen
  2. Tweetdeck Flaw Allows Malicious JavaScript Tweets
  3. TweetDeck XSS worm goes viral
  4. TweetDeck Briefly Shuts Down in Response to Security Flaw
  5. Security Flaw Takes Down Twitter’s TweetDeck

Tags:  
Written by The Verge
0 Comments
Comments are closed.

Categories

SUNDAY, FEBRUARY 23, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments