Newly found Vulnerabilities 03/15/08:
Search Engine IFRAME Injection Attacks
We have seen reports of attacks using specially crafted URLs
that inject IFRAME’s as terms into search engines on legitimate websites.
The affected URLs include popular search terms, and may be returned as high
ranking results in internet search engines. If the site hosting the search
engine is vulnerable to cross-site scripting, users who follow the affected
URLs may be unknowingly redirected to malicious websites. These sites may then
attempt to exploit web browser vulnerabilities, entice users to download and install
malicious code, or display unsolicited advertisements.
We encourage users to do the following to help mitigate the risk of this and
similar attacks:
Regularly
apply software updates and patches provided by vendors.
Disable
JavaScript and ActiveX