The Register: Researchers at the YGN Ethical Hacker Group say that McAfee's Web site is vulnerable to cross-site scripting and other types of attacks. The group warned the security vendor of the problem on February 10, and McAfee says it is in the process of fixing the problems.
"McAfee is aware of these vulnerabilities and we are working to fix them," the company said in a prepared statement. "It is important to note that these vulnerabilities do not expose any of McAfee's customer, partner or corporate information. Additionally, we have not seen any malicious exploitation of the vulnerabilities."