Ad: Manage updates with the Download App

Another flaw within Safari 3.0 for Windows beta

Researcher finds a basic cookie-handling error that could compromise Windows PCs.

by Robert Vamosi

June 14, 2007 3:07 PM PDT

Security researcher Robert Swiecki disclosed yesterday another vulnerability within the new Safari 3.0 for Windows beta, bringing the total of public vulnerabilities to nine. The latest flaw allows an attacker to steal a cookie. The flaw exists in the Javascript's window.setTimeout()implementation where the content timer-triggered function is processed after window.location property is changed.

In response to other Safari 3.0 vulnerabilities, Apple today released an updated version that addresses three of the nine public vulnerabilities.

Apple Byte

The latest iWatch, iPad, and MacBook rumors

What's holding up Apple's iRadio service, highlights from Tim Cook's Senate hearings, and the latest product rumors.

Play Video

Member Comments

Add Your Comment

Click Here!

Featured Posts

Xbox One's unexpected pitch: It's the Dad Box
Reviews - Games and Gear
In risky new tack, Microsoft stacks Surface against iPad
Microsoft
Samsung Galaxy S4 edges out iPhone 5 in camera test
Mobile
iPhone 5S and low-cost iPhone said to be multicolored
Apple
Two-factor authentication: What you need to know (FAQ)
Security & Privacy

Most Popular

Girl's winning Google Doodle shows her dad home from war
870Facebook Likes
Google's conversational search arrives with new Chrome
347Tweets
If Earth had rings like Saturn, the sky would look like this
318Google Plus Shares

Connect With CNET

Hooked Up

The fame. The fans. The tech.

The promo image for The fame. The fans. The tech.

Christina Milian and the gadgets she loves