All the latest UK technology news, reviews and analysis

Serious flaw found in Safari

by Iain Thomson

More from this author

14 Jan 2009

Be the first to comment

  • Tweet this
Apple Safari
A software developer has found a potentially serious flaw in Leopard and Safari for PC

A researcher has uncovered a flaw that could allow hackers to steal information from those using Mac OS X 10.5, also known as Leopard or Safari for the PC.

The flaw was found by open-source software developer Brian Mastenbrook. It occurs when the Safari browser interacts with RSS feeds and makes the personal information of the user vulnerable.

Further reading

"Safari is vulnerable to an attack that allows a malicious web site to read files on a user's hard drive without user intervention," Mastenbrook wrote on his blog.

"This can be used to gain access to sensitive information stored on the user's computer, such as emails, passwords or cookies, that could be used to gain access to the user's accounts on some web sites."

While Mastenbrook understandably does not go into detail, he said that people using OS X 10.5 are vulnerable no matter what browser they are using, and that PC users are at risk if using the Safari browser.

Mastenbrook has published a suggested workaround for Apple users but advises PC users of Safari to change browser for the moment.

The researcher is regarded as a reliable source who has in the past found other flaws with Apple's software.

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Software

iconcool

IconCool Studio 7.40

Related white papers

Related articles

Related jobs

Today's top stories

satellite

MPs demand better defence against space attacks on UK

A Huddle logo

Huddle launches Dropbox-style tool with intelligent syncing for businesses

Microsoft Windows 8 start screen

Microsoft turns SkyDrive into cloud computing storage tool for Windows 8

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

97%

1%

1%

0%

1%

Features

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

QA Engineer Uk to £35k

Roc Search (ISEB, Automation, QA, Agile, Manual, Automation...

Security Developer- Tim/Tam- Norwich-Tivoli,Java/J2EE

My Client is a reputable WORLD WIDE Systems Integrator...

Security Developer- Tim/Tam- Dorking-Tivoli,Java/J2EE

My Client is a reputable WORLD WIDE Systems Integrator...

API Support Developer-Chertsey 50k Java, .Net, API

My Client is a well funded specialist in delivering secure...

To send to more than one email address, simply separate each address with a comma.