• Total Posts: 28015
  • Total Topics: 8049
  • Online Today: 836
  • Online Ever: 51419
  • (01. January 2010., 09:27:49)

Author Topic: Flaws found in Safari browser  (Read 1852 times)

0 Members and 1 Guest are viewing this topic.


  • SCF Administrator
  • *****
  • Posts: 7151
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • - Samker's Computer Forum
Flaws found in Safari browser
« on: 27. March 2008., 08:49:20 »

An Argentinian security researcher has discovered two flaws in Apple's Safari for Windows browser.

Juan Pablo Lopez Yacubian said the vulnerabilities could allow hackers to remotely take control of a victim's computer.

He described the most serious flaw as a vulnerability in the Safari browser for Windows 3.1 which allows a hacker to “falsify the web address and enter another page or content".

This essentially means that even though you see a trusted URL in the browser address bar, the web page could be displaying unauthorised content that could put your PC at risk.

Security firm Secunia has given the flaws a 'highly critical' rating, the second highest rating on its scale.

The other flaw, said Secunia, is an error that occurs when downloading files with an overly long filename, which can be exploited to cause a memory corruption which could in turn allow a hacker to take control of the PC.

The problems are currently unpatched and Apple would not comment on the matter when approached by Web User.

The discovery follows criticism from Mozilla, developers of the Firefox browser, over the inclusion of the Safari browser in a software update issued by Apple to people who use iTunes on Windows-based PCs.

John Lilly, chief executive of Mozilla, said that it was "wrong" to push the browser on people who were simply trying to update iTunes.

"It undermines the trust relationship great companies have with their customers, and that's bad - not just for Apple, but for the security of the whole web," he wrote on his blog.

Safari version 3.1 was released by Apple last week.

(Copyright by IPC Media Limited)

Samker's Computer Forum -

Flaws found in Safari browser
« on: 27. March 2008., 08:49:20 »


With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters)

Enter your email address to receive daily email with ' - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising