June 15, 2007 11:55 AM PDT

Yet another URL flaw for Safari 3.0 for Windows beta

by Robert Vamosi

Security researcher Robert Swiecki, who two days ago disclosed a URL vulnerability within the new Safari 3.0 for Windows beta, has another. The new flaw requires a user to visit a specially crafted Web page. There, an attacker can write whatever name in the URL toolbar and fill the client browser window with arbitrary content. He provides an example (link should be viewed within Safari).

In response to other Safari 3.0 vulnerabilities, Apple yesterday released an updated version that addresses three of the public vulnerabilities. Swiecki says he tested this latest vulnerability on Safari 3.0.1 (522.12.12) running Windows 2003 SE SP2.

As CNET's resident security expert, Robert Vamosi has been interviewed on the BBC, CNN, MSNBC, and other outlets to share his knowledge about the latest online threats and to offer advice on personal and corporate security. Listen to his podcast at securitybites.cnet.com or e-mail Robert with your questions and comments.

Topics:: Security,; Apple

Tags:: security,; Apple,; Safari,; Windows

Share:: Digg; Del.icio.us; Reddit; Facebook

About News Blog

Recent posts on technology, trends, and more.

Add this feed to your online news reader

Inside CNET News

Scroll Left Scroll Right

Cutting Edge
Americans see science as lagging here
The public appreciates scientific advancement but thinks the U.S. has fallen from its pedestal, according to a new Pew survey. Scientists, ahem, disagree.
Gallery
Photos: The surface of the moon, here on Earth
The Open Road
Firefox, Mac OS 9, and the power of open source
One of the benefits of open source is that it gives users control of their destiny, as a port of Firefox to Mac OS 9, called "Classilla,'" suggests.
Beyond Binary
Microsoft hopes users see the (Silver) light
At an event in San Francisco, Microsoft launches the latest version of Silverlight, its would-be rival to Adobe's Flash.
Video
Video: iPhone 3G S launch in New York City
Digital Media
Flat panel revenue growth forecast as anemic
Revenue from sales of flat panel displays will rise only 1 percent annually from 2008 to 2016, DisplaySearch predicts. That compares with 20 percent annual growth over the past eight years.
Video
A recipe for high-tech chocolate
Geek Gestalt
Road Trip pic of the day, 7/10: What is it? Who made it?
This artwork is in Utah, near the Nevada border. For today's Road Trip picture of the day challenge, be the first to tell me what it is and who the artist is, and you win a prize.
Business Tech
VCs more confident about recovery
Silicon Valley Venture Capitalist Confidence Index sees second straight uptick since hitting five-year low in 2008.
Gallery
Images: The many faces of the smart grid
The 404
The 404 379: Where we have a ball with Steve Guttenberg
CNET official Audiophiliac Steve Guttenberg guest hosts today's ball-busting show. Steve brings his usual brand of random topics to the table today that include the most bizarre festival you'll never want to visit and the world's largest ketchup bottle. W
Green Tech
Chasing the Toyota Prius' 50-mpg nirvana
CNET News' Martin LaMonica, an early buyer of the 2010 Toyota Prius, finds that the car gets good mileage but there's clearly more to learn.