Watchfire Discovers Google Desktop Vulnerability
For those of you who are currently running Google Desktop on their box, beware: The folks at Watchfire have just discovered a new cross-site scripting vulnerability in the application that could let an attacker search for sensitive data on your network.
As much as I dig Google, I've always felt a little leery about Google Desktop. I mean, why would I want to make my computer searchable from the Web? It sounds more scary than beneficial. Turns out, my worst nightmares about Google Desktop came true. Good thing I didn't install it.