nvreloader wrote:
What does this mean "Cross site scripting", my AV program is sending me this info. Does this mean this site has a virus etc??
What should I be aware of, when this flag pops up?? Safe to continue viewing the site??
Tia,
Don
Cross site scripting(XSS) is typically malicious Javascript code embedded in a link which exploits a vulnerability in some websites. A common use is to steal account session credentials(cookie) such as for email.
Yahoo apparently had
XSS vulnerability for some time, and I actually got caught one time myself.
I was logged into my Yahoo Mail account, and visited another software website that was apparently infected with an XSS code. The hacker from an Eastern European country, was able to extract my Yahoo login cookie, and use it to spoof me to get access to my account. Then sent out Spam email to all My Contacts list, probably through an automated script. Doesn't explain why Yahoo servers couldn't deduce why I would now be in a known hacker country, half way around the world, when all my account activity has previously been exclusively in the U.S.?
Luckily, I don't normally use Yahoo Mail, just basically for Groups access, so few Spam emails were sent out. Mostly to other email accounts I have. I assume Yahoo has fixed these flaws by now, but still prefer not to use their email service.
In fact, I wrote a post about this XSS flaw in Yahoo some time ago, and suggested that you do not keep logged into Yahoo when visiting other websites. Basically, use Mail or Groups, then log out. No login session cookies can be stolen.
You must be using some good AV software to flag XSS exploit sites, which was likely among the top methods hackers use to gain access to vulnerable email accounts? I wouldn't advise visiting websites that are flagged for XSS. But, if unavoidable, just make sure you are not actively logged into your accounts on other websites.
