- Dec 30, 2012
- 4,809
Summary: Dropbox has now patched a security vulnerability which could give third parties access to server data without authorization.
Dropbox has fixed a security vulnerability based on the sharing of user links to files in order to stop third parties from accessing data without consent.
The cloud storage company revealed in a blog post that a weakness based on referer headers could be exploited to expose information. A referer header is a protocol which lets a site learn where you've come from when you are browsing the Web, and the feature allows websites to understand traffic sources -- whether you visit a site from a search engine, bookmark or another website. However, in the following scene, this feature could be exploited via Dropbox to steal data:
More
Dropbox has fixed a security vulnerability based on the sharing of user links to files in order to stop third parties from accessing data without consent.
The cloud storage company revealed in a blog post that a weakness based on referer headers could be exploited to expose information. A referer header is a protocol which lets a site learn where you've come from when you are browsing the Web, and the feature allows websites to understand traffic sources -- whether you visit a site from a search engine, bookmark or another website. However, in the following scene, this feature could be exploited via Dropbox to steal data:
More
