Monday, November 30, 2015
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Google Outlines The Gifts We're Searching For This Holiday
Microsoft Launches New Office 365 Enterprise Capabilities, Dynamics CRM 2016 and Introduces PowerApps
BlackBerry is Exiting Asian Country Following Government Pressure
TDK To Buy Semiconductor Factory From Renesas Electronics
Swatch Parners With Visa On Pay-by-the wrist Payments
Amazon Unveils New Drone For Prime Air Delivery
Google Glass Evoluion Could Be A Monocle
NSA's Phone Surveillance Program Changes
Active Discussions
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
How to burn a backup copy of The Frozen Throne
Help make DVDInfoPro better with dvdinfomantis!!!
Copied dvd's say blank in computer only
menu making
Optiarc AD-7260S review
 Home > News > General Computing > Researc...
Last 7 Days News : SU MO TU WE TH FR SA All News

Tuesday, May 11, 2010
Researchers Reveal Important Safari Vulnerability

Danish vulnerability tracker Secunia found a vulnerability and a security issue in Apple's Safari browser.

According to Secunia, the security issue can lead to exposure of sensitive information and the vulnerability can be exploited by malicious people to compromise a user's system.

An error in the handling of parent windows can result in a function call using an invalid pointer. This can be exploited to execute arbitrary code when a user e.g. visits a specially crafted web page and closes opened pop-up windows, Secunia announced.

The security issue is caused due to Safari including HTTP basic authentication credentials in an HTTP request if a web page that requires HTTP basic authentication redirects to a different domain (e.g. via a "Location" header).

The vulnerability and the security issue are confirmed in Safari version 4.0.5 for Windows.

The company recommends users not to visit untrusted web sites or follow links from untrusted sources. In addition, users should not authenticate to sites that use HTTP basic authentication and use redirections to different domains.

US-CERT also confirmed the vulnerability affecting Apple Safari.

"By convincing a user to open a specially crafted web page, an attacker may be able to execute arbitrary code. Exploit code for this vulnerability is publicly available," US-CERT said.

US-CERT encourages users and administrators to disable JavaScript until a fix is provided by Apple.

Sharp Develops 3D Camera Module for Mobile Devices Capable of Capturing HD 3D Video        All News        Report: $51 Billion Lost to Software Piracy in 2009
US Patent Office Affirms i4i Patent - Rejects Microsoft Challenge     General Computing News      Report: $51 Billion Lost to Software Piracy in 2009

Get RSS feed Easy Print E-Mail this Message

Related News
Apple To Brings Apple Pay To China
Apple To Shut Down Beats Music
Apple Plans To Offer Person-to-person Payment Service: report
Apple Announces 1000 New In Ireland, Gets Ready For Tax Ruling
iPad Pro Available to Order Online Wednesday
iPhone, Apple Watch And App Store Drive Apple's Revenue Growth
Apple To Promote Low-Carbon Manufacturing in China
Tim Cook Talks About Apple Music, Apple TV And Apps
Apple Faces Damages Over Chip Technology Patent Infringement
Apple Ads Retina Displays To All iMac Family
Apple Removes Apps From Online Store
Apple's iBooks To Offer Enhanced Editions of Harry Potter Series

Most Popular News
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2015 - All rights reserved -
Privacy policy - Contact Us .