• info
• discussion
• exploit
• solution
• references

Google Talk 'http' and 'mailto' Remote Script Code Injection Vulnerability

Attackers can exploit these issues by crafting and submitting a malicious 'http' or 'mailto' URI through the application.