Safari 3.1.1 Still Not Safe
Its been weeks since Apple released the latest security patch of its native web browser, Safari. Safari 3.1.1 covered main issues, according to softpedia, that Safari users both Mac and Windows are facing another “less critical” vulnerability porentially allow malicious sites to spoof other websites.
Juan Pablo Lopez Yacubian reported the vulnerability to Secunia, adding that Safari 3.1.1 has a flaw that can be exploited by malicious people to display a fake URL in the address bar.
“The problem is that it is possible to hide the actual location of a page in the address bar via a specially crafted URL containing a number of certain special characters in the ‘user’ field before the ‘@’ character,” the security advisory noted. Both Mac OS X and Windows Vista users of Apple’s standard web browser are currently known for being affected, but other versions of the OS may very well be affected too, according to Secunia. The research site rates the flaw as “less critical”. However, Secunia warns that users should avoid untrusted websites and untrusted links nonetheless.
If you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future articles delivered to your feed reader.
Comments
No comments yet.
Leave a comment