XSS Vulnerability Found in Recording Industry Association of America Website

In the second week of May 2009, Vektor, a member of a group of security enthusiasts and programmers, Team Elite, said that the website of Recording Industry Association of America (RIAA) had suffered from security flaws, particularly the cross-scripting (XSS) vulnerability, as reported by SOFTPEDIA on May 6, 2009.

The new vulnerability discovered in the website (riaa.com) facilitates in the penetration of malware IFrames into the website's pages. If IFrames malware is present in a page, it helps to load content from outside servers and even load another page. It implies that when rough malware IFrames is penetrated into the page, it will allow the loading of content from any site (including clean one), but once the content is loaded, the page becomes malicious.

Commenting on the vulnerability in riaa.com, Richard Kirk, Fortify Director, said that sites like riaa.com were vulnerable to XSS attacks and the recent incident should not surprise anyone as some sites were poorly designed that opened them to such attacks, as reported by The Register on May 8, 2009.

In fact, Vektor also disclosed that it had found the XSS bugs in another websites managed by the Motion Picture Association of America (MPAA). Moreover, the association owned nearly 12 different domains that are linked to this website. Vektor further explained that the discovery of XSS bug in all these websites enabled smart marketers to raise the rating of any malicious Trojan and movie, as reported by SOFTPEDIA on May 6, 2009.

It has also been found that the RIAA websites suffered from the similar XSS malicious attack in 2008, but soon wiped clean. RIAA instantly reacted to the problem and fixed it within few hours. However, the company had failed to restore the lost content before the malware inserted into the systems of thousands of people.

Finally, it is also learnt that the members of Team Elite discussed the XSS flaw and other web vulnerabilities in many renowned websites. The list includes websites such as eBay, McAfee, Intel, ESET, Symantec, Kaspersky and Avira. XSS flaw was also reported in mpaa.org during the first week of May 2009.

» SPAMfighter News - 20-05-2009

SPAMfighter is a free spam filter for Outlook, Outlook Express,Windows Mail and Thunderbird

Optimize your Slow PC for better performance. Try FREE scan now

SPAMfighter Exchange Module is a Spam filter for Exchange server - Free 30 days trial

Remove Spyware with SPYWAREfighter - Free 30 days trial

Antivirus software for your Windows PC - Free 30 days trial

<<<

>>>

</p></div>  </div> </div>  </div>  </div> </div>  <div id="footer"> <div id="upper_corners"> <div class="bg_left_top"><img src="/i/new/corner_1_l.gif" border="0" alt=" " /></div> <div class="bg_right_top"><img src="/i/new/corner_1_r.gif" border="0" alt=" " /></div> </div> <div> <div id="footer_content"> <div class="footerlanguages"> Be all you can be, be a SPAMfighter <br /> Select language: <ul> <li><a href="/News_List_Spamfighter.asp" hreflang="en" >English</a></li> <li><a href="/Lang_DE/News_List_Spamfighter.asp" hreflang="de" >Deutsch</a></li> <li><a href="/Lang_ES/News_List_Spamfighter.asp" hreflang="es" >Español</a></li> <li><a href="/Lang_FR/News_List_Spamfighter.asp" hreflang="fr" >Français</a></li> <li><a href="/Lang_IT/News_List_Spamfighter.asp" hreflang="it" >Italiano</a></li> <li><a href="/Lang_PT/News_List_Spamfighter.asp" hreflang="pt" >Portuguese</a></li> <li><a href="/Lang_CS/News_List_Spamfighter.asp" hreflang="cs" >Čeština</a></li> <li><a href="/Lang_EL/News_List_Spamfighter.asp" hreflang="el" >Ελληνικά</a></li> <li><a href="/Lang_ZH/News_List_Spamfighter.asp" hreflang="zh" >中文（简体）</a></li> <li><a href="/Lang_TW/News_List_Spamfighter.asp" hreflang="tw" >中文 (繁體)</a></li> <li><a href="/Lang_VI/News_List_Spamfighter.asp" hreflang="vi" >Tiếng Việt</a></li> <li><a href="/Lang_JA/News_List_Spamfighter.asp" hreflang="ja" >日本語</a></li> <li><a href="/Lang_TH/News_List_Spamfighter.asp" hreflang="th" >ภาษาไทย</a></li> <li><a href="/Lang_RU/News_List_Spamfighter.asp" hreflang="ru" >Русский</a></li> <li><a href="/Lang_BG/News_List_Spamfighter.asp" hreflang="bg" >Български</a></li> <li><a href="/Lang_NL/News_List_Spamfighter.asp" hreflang="nl" >Nederlands</a></li> <li><a href="/Lang_PL/News_List_Spamfighter.asp" hreflang="pl" >Polski</a></li> <li><a href="/Lang_SV/News_List_Spamfighter.asp" hreflang="sv" >Svenska</a></li> <li><a href="/Lang_NO/News_List_Spamfighter.asp" hreflang="no" >Norsk</a></li> <li><a href="/Lang_DA/News_List_Spamfighter.asp" hreflang="da" >Dansk</a></li> <li><a href="/Lang_FI/News_List_Spamfighter.asp" hreflang="fi" >Suomi</a></li> </ul> </div> <div class="footerlanguages"> <ul> <li><a href="/Info_Privacy_Statement.asp">Privacy Statement</a></li> </ul> </div> <div class="copyright"> (C) SPAMfighter 2003-2010<br /> All rights reserved. </div> <div class="footerlanguages"> <a href="sitemap.asp" hreflang="en">Sitemap</a> </div> </div> <div id="bottom_corners"> <div class="bg_left_bottom"><img src="/i/new/corner_2_l.gif" border="0" alt=" " /></div> <div class="bg_right_bottom"><img src="/i/new/corner_2_r.gif" border="0" alt=" " /></div> </div> </div>  </div> </div>  <script language="JavaScript" type="text/javascript" src="http://analytic.spamfighter.com/s_code.js"></script> <script language="JavaScript" type="text/javascript"></script> <script language="JavaScript" type="text/javascript"></script><noscript><a href="http://www.omniture.com" title="Web Analytics"><img src="http://spamfightercomdev.112.2O7.net/b/ss/spamfightercomdev/1/H.9--NS/0" height="1" width="1" border="0" alt=" " /></a></noscript>  <script type="text/javascript"> var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www."); document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E")); </script> <script type="text/javascript"> try { var pageTracker = _gat._getTracker("UA-479797-1"); pageTracker._trackPageview(); } catch(err) {}</script>  </body> </html>