Please create an account to participate in the Slashdot moderation system

 


Forgot your password?
Close
typodupeerror
×
Security

Journal SkiifGeek's Journal: Safari - Remote Hacker Automatic Denial of Service

Journal by SkiifGeek

-- Products Affected --
        Safari on at least OS X 10.4.8

        -- Technical Description --
        A new denial of service type attack against Apple's Safari web browser has been disclosed, leading to a browser crash, and possible arbitrary code execution (claimed only at this stage).

        -- Description --
        A new issue with Apple's Safari Internet browser has been disclosed on a security mailing list. The disclosed vulnerability leads to an application crash in browsers that have JavaScript support enabled (by default), and it is claimed that it could lead to arbitrary code execution, though there is little evidence to support this claim at the moment (will be upgraded as circumstances direct).

        -- Recommended Action --
        Disable support for JavaScript (Safari->Preferences->Security->Enable JavaScript (deselect))

        -- Source --
        jbh_cg yahoo.fr

        -- Threat Matrix --
                        U O
        Home User 4 4 (Low - Moderate)
        Corporate 4 4 (Low - Moderate)

This discussion has been archived. No new comments can be posted.

Safari - Remote Hacker Automatic Denial of Service More

Safari - Remote Hacker Automatic Denial of Service

Comments Filter:

Slashdot Top Deals

One man's constant is another man's variable. -- A.J. Perlis

Close