http://www.eweek.com/article2/0,1759,17441...3119TX1K0000594
Web search powerhouse Google has acknowledged—and patched—a security vulnerability in its desktop search utility that opens the doors for man-in-the-middle data leak attacks.
The Google fix was issued after a pair of Rice University graduate students discovered that two different attack scenarios could be used to exploit the Google Desktop vulnerability.
The students, Seth J. Fogarty and Seth Nielson, made the discoveries during a security audit of the search tool. The audit was part of a final project in the students' Computer Systems Security course.
Archived topic from Anythingforums, old topic ID:1483, old post ID:19057