C-Note-07-009: Google Desktop vulnerable to cross-site scripting (02/23/07)
A cross-site scripting vulnerability exists in the Googld Desktop Search Application.
This vulnerability may allow an attacker to take any action on a vulnerable system that the Google Desktop Search can.
This advisory is posted at:
http://www.kb.cert.org/vuls/id/615857
CIAC would like to thank US-CERT for this information.