June 15, 2007 11:55 AM PDT

Yet another URL flaw for Safari 3.0 for Windows beta

Security researcher Robert Swiecki, who two days ago disclosed a URL vulnerability within the new Safari 3.0 for Windows beta, has another. The new flaw requires a user to visit a specially crafted Web page. There, an attacker can write whatever name in the URL toolbar and fill the client browser window with arbitrary content. He provides an example (link should be viewed within Safari).

In response to other Safari 3.0 vulnerabilities, Apple yesterday released an updated version that addresses three of the public vulnerabilities. Swiecki says he tested this latest vulnerability on Safari 3.0.1 (522.12.12) running Windows 2003 SE SP2.

As CNET's resident security expert, Robert Vamosi has been interviewed on the BBC, CNN, MSNBC, and other outlets to share his knowledge about the latest online threats and to offer advice on personal and corporate security. Listen to his podcast at securitybites.cnet.com or e-mail Robert with your questions and comments.

Topics:: Security,; Apple

Tags:: security,; Apple,; Safari,; Windows

Share:: Digg; Del.icio.us; Reddit; Facebook; Twitter

About News Blog

Recent posts on technology, trends, and more.

Add this feed to your online news reader

Inside CNET News

Scroll Left Scroll Right

Nanotech - The Circuits Blog
Dell laptop using Intel Core i3
In the latest pre-CES leak, a Dell laptop based on Intel's just-announced Core i3 processor appears on a Costco site.
Gallery
En route to GPS-based air traffic control (images)
Technically Incorrect
Apple pulls iPhone app that upset Hollywood
An app that features a less than entirely honest Hollywood wheeler-dealer has been removed from Apple's App Store after a complaint from a super agent.
Beyond Binary
Visual Studio launch delayed by 'a few weeks'
Microsoft says it's still working to resolve some performance issues related to the Visual Studio 2010 developer tool suite, which was slated for a March release.
Video
Deep-sea volcanic explosion--part 2 (video)
Digital Media
China arrests thousands in Web porn crackdown
The Chinese government says it arrested more than 5,000 people in 2009 in an effort to crack down on Web porn use, according to Reuters.
Video
Deep-sea volcanic explosion--part 1 (video)
The Social
For eBay sellers, a holiday hamster hangover
The gift frenzy over Zhu Zhu Pets leaves some power sellers feeling like they've just run a marathon--but the steep price tags driven by scarcity lead to some impressive profits.
Cutting Edge
NASA's next frontier: Venus, the moon, or an asteroid
Agency selects three finalists in a competition to help determine where to focus its attention to get the most scientific value out of research into our solar system.
Gallery
NASA trains WISE eye on the sky (photos)
Crave
Samsung finally makes NX10 official
Samsung's debut of its interchangeable lens, somewhat compact camera pits a larger, APS-C-size sensor, but with a proprietary Samsung NX lens mount against Olympus and Panasonic's smaller Four Thirds sensor combined with its standard Micro Four Thirds len
Green Tech
Green-tech venture investing cools off in 2009
Green tech is still attracting billions of dollars a year, but the amount of money has shrunk significantly as investors began to focus on start-ups with the most potential.