This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects attempts to exploit a cross-site scripting vulnerability in the Google Desktop Search application.
Google Desktop Search is a utility designed to facilitate the searching of files, emails, and Web pages accessed or edited on a user's computer. It is freely available for the Microsoft Windows platform.
Google Desktop Search is reportedly affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize HTML tag content.
The problem reportedly presents itself when an unsuspecting user running Google Desktop Search follows a malicious link to an arbitrary Web site. It is possible for an attacker to embed arbitrary script code on the 'meta' parameter of any arbitrary URI. Apparently the Google Desktop Search application executes the script code while presenting the target site to the user. Any arbitrary Web site may be targeted by an attacker exploiting this issue.
An attacker may leverage this issue to execute arbitrary client-side script code in an unsuspecting user's browser, facilitating theft of cookie-based authentication credentials and other attacks.
- Google Desktop Search BETA
Currently there are no known patches or workarounds for this vulnerability. It is recommended that users upgrade to the latest version of the application and contact the vendor for more details.