Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Vulnerability warning on older versions of Safari for Mac

SecureMac : 11 June, 2009  (Technical Article)
Mac OS X and Windows users of Apple Safari are advised to update to the latest browser level to close malicious website vulnerability
Security researcher Chris Evans has documented and demonstrated a security vulnerability in Apple's Safari web browser prior to version 4 that effects both Windows and Mac OS X versions. The vulnerability allows a malicious website to access files on the Safari user's computer without any user interaction.

'Safari was vulnerable to an XXE attack against a relatively obscure area of XML parsing. As a recap, XXE (Xml eXternal Entity) attacks abuse a built-in feature of XML to fetch files (or network resources) and embed them in an attacker's document. XXE attacks are most common server-side; this advisory notes a client-side attack against the Safari browser.'


Users are recommended to upgrade Safari immediately or use an alternative web browser.
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo