SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Welcome to SecurityTracker!
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Sign Up!





Category:  Application (Generic)  >  Google Desktop Search Vendors:  Google
Google Desktop Search Discloses Local Search Integration Results to Remote Users
SecurityTracker Alert ID:  1012624
SecurityTracker URL:  http://securitytracker.com/id?1012624
CVE Reference:  GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Dec 20 2004
Impact:  Disclosure of system information, Disclosure of user information
Fix Available:  Yes   Vendor Confirmed:  Yes  
Version(s): prior to 121004
Description:  A vulnerability was reported in Google Desktop Search. A remote user can access the local search integration results on the target user's system.

Dan Wallach reported that a remote user can create a Java applet that, when loaded by the target user, will execute queries to the remote server that served the Java applet that appear to the Google Desktop Search application to be valid Google queries, causing the search application to integrate the local search results with the information returned by the remote server that served the Java applet. The applet running on the target user's system will then have access to the integrated local search results and can forward those results to the remote server.

A similar exploit method exists using Javascript instead of Java.

These attacks work only if the target user has enabled local search integration (via the Preferences menu).

The flaw was discovered as part of a research project by Seth Fogarty and Seth Nielson (Rice graduate students), advised by Dan Wallach (a Rice professor).

The original technical report is available at:

http://seclab.cs.rice.edu/gdesktop-tr-dec04.pdf
Impact:  A remote user can access the local search integration results on the target user's system.
Solution:  The vendor has released a fixed version (121004) as of December 10, 2004.
Vendor URL:  desktop.google.com/ (Links to External Site)
Cause:  Access control error
Underlying OS:  Windows (Any)

Message History:   None.

 Source Message Contents
Date:  Mon, 20 Dec 2004 05:31:14 -0500
Subject:  http://seclab.cs.rice.edu/

 
 
http://seclab.cs.rice.edu/gdesktop-tr-dec04.pdf
 
A vulnerability was reported in Google Desktop Search.  A remote user can access
small portions of information (the local search integration results) on the target 
user's system.
 
Versions prior to 121004 are affected.
 
A remote user can create a Java applet that, when loaded by the target user, will 
execute queries to the host that served the Java applet that appear to the Google
Desktop Search application to be valid Google queries, causing the search application
to integrate the local search results with the information returned by the host that
served the Java applet.  The applet running on the target user's system will then have
access to the integrated local search results.
 
A similar exploit method exists using Javascript instead of Java.
 
These attacks work only if the target user has enabled local search integration (via
the Preferences menu).
 
The flaw was discovered as part of a research project by Seth Fogarty and Seth Nielson 
(Rice graduate students), advised by Dan Wallach (a Rice professor).


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2004, SecurityGlobal.net LLC