Press Embargo until April 16, 2007
Rankings: Noobs: **** LOLs: ** 0wnz: **
The challenge is to make this useful for an attacker. This would likely involve some measure of social engineering to convince the victim to actually click on the "Back to Forum" link. Alternatively, an attacker could take advantage of an origin violation browser bug to automatically click on the link on the user's behalf.
Example link: http://forum.myspace.com/index.cfm?fusea
Unlike most of our other XSS advisories, this link will only work correctly if the victim is already logged in; thus, a cookie-stealing attack, in this case, is guaranteed to have immediately usable results.
Credit: Synthetic, who upon reflection has decided that listing a Myspace page as a contact point in a Myspace security advisory may not have been the wisest decision.