Microsoft warns Windows users about Safari security flaw

by admin June 4, 2008 at 7:50 pm

Over two weeks ago, Nitesh Dhanjani told Apple about three security issues in the Safari browser, one of which the company agreed to fix, and two others which it decided were more feature requests than vulnerabilities (“Safari Carpet Bomb” and “Sandbox not Applied to Local Resources”). Safari Carpet Bomb, which affects Safari both on Windows and Mac OS X, is the only one that Dhanjani detailed thoroughly for two reasons: Apple said it was not critical enough to fix right away, and the code to reproduce the problem was very easy to demonstrate.

Full article: