|The Mother Board
|Blog feeds may carry security risk
|Page 1 of 1|
|Author:||Oylpann [ Sun Aug 06, 2006 5:28 pm ]|
|Post subject:||Blog feeds may carry security risk|
LAS VEGAS â€” Reading blogs via popular RSS or Atom feeds may expose computer users to hacker attacks, a security expert warned.
The problem doesn't affect only blogsâ€”any kind of information feed using any kind of format could potentially be used to transmit malicious content to a subscriber, Auger said. Users, for example, could subscribe to mailing lists or news websites via RSS, he said, noting "this is about the entire concept of Web feeds."
Also, attackers could send malicious code to mailing lists that offer RSS or Atom feeds and commandeer vulnerable systems that way, Auger said. Feeds are popular because they let people consolidate information streams from multiple sites, such as blogs, in one application, called a feed reader, removing the need to surf to multiple sites.
"A large percentage of the readers I tested had some kind of an issue," he said. In his presentation Auger listed Bloglines, RSS Reader, RSS Owl, Feed Demon, and Sharp Reader as vulnerable.
|Page 1 of 1||All times are UTC - 8 hours|
|Powered by phpBB® Forum Software © phpBB Group