WHID 2007-69: The Orkut XSS Worm

Attack Information

WHID ID:

2007-69

Date Occured:

19 Dec 2007

Attack Method:

Cross Site Scripting (XSS)

Attack Method:

Worm

Outcome Information

Outcome:

Planting of Malware

Target Information

Attacked Entity Field:

Web 2.0

Attacked Entity Geography:

USA

A vulnerability in the social networking site Orkut that allowed users to inject HTML and JavaScript into their profiles set the stage for a persistent XSS worm that appears to have affected more than 650,000 Orkut users.

Additional information:

The Orkut XSS Worm [GNU Citizen, Dec 19 2007]
Orkut XSS [Sounds From The Dungeon, Dec 19 2007]
Orkut XSS worm in the wild [CGI Security, Dec 19 2007]
Orkut Worm Code (and why was Google so slow to respond?) [TechnoSocial, Dec 19 2007]

Add new comment

Latest Stories

WAFs are not perfect, but is any security tool perfect? (Feb 9th 2010)
Forrester estimates the WAF market to be $220M in 2010 (Feb 9th 2010)
ModSecurity exceptions for TYPO3 (Jan 20th 2010)
Presentation about WAFs in the cloud (Jan 15th 2010)
The curse of PCI for WAFs (Jan 11th 2010)
A New Year, a New Acronym (Jan 9th 2010)
A Remote Command Injection Vulnerability Applicure's dotDefender Site Management. (Dec 10th 2009)

Navigation

Subscribe:

Xiom is the place to find information about Web Application Firewalls (WAFs) including reviews, analysis, announcements and research. Tune to the RSS channel to get every bit of information or subscribe to the newsletter to receive only in depth articles.

Xiom also leasd and hosts the Web Hacking Incidents Database, a Web Application Security Consortium project aimed at maintaining a list of web applications related security incidents.

Xiom is a community web site lead by Ofer Shezaf.

WHID

The Web Hacking Incident Database

WHID 2007-69: The Orkut XSS Worm

The Web Hacking Incidents Database

WAF Resources

Latest Stories

Navigation