Exploit May Cause Safari To Toss Its Cookies
Mac Security Alert - Exploit May Cause Safari To Toss Its Cookies
by , 1:00 PM EST, November 26th, 2003
The information technology security company, Secunia, has released an advisory about a vulnerability in Safari, Apple's Web browser. The exploit can be used remotely to trick the browser into sending a user's private cookie information for a website. Cookies are bits of information stored on a person's computer that are pertinent to that specific person. Their main purpose is to identify visitors so a certain Web site can be customized for them. From the Secunia advisory page:
A vulnerability has been reported in Apple Safari, which can be exploited by malicious people to steal a user's cookies. The vulnerability is caused due to an error when handling URLs. This can be exploited to disclose a user's cookie information for an arbitrary website by including a NULL character ("%00") in the URL. The vulnerability has been reported in versions 1.0 (v85) through 1.1 (v100.1).
The vulnerability carries a threat level of 4 on a scale of 1-5. That level is characterized by the existence of easy to exploit flaws, no solutions being available, no public awareness or workarounds requiring high technical skills, and the exploit being out "in the wild."
Secunia suggests using another browser to avoid being exposed to the security hazard.
Observer Comments
Comments are currently closed. Please email the author instead.
Recent Headlines - Updated May 21st
- Mon, 10:29 AM
- News - Apple, Samsung CEO Patent Settlement Talks Start Today
- 10:02 AM
- Hot Forum Topic - Reader Discussion: Predicting Apple Television Features
- 9:27 AM
- Product News - GraphicConverter 8 Gets 64-bit Support, More
- 8:43 AM
- News - Apple Moves for U.S. Galaxy Tab 10.1 Ban
- Sat, 1:09 PM
- MacOS KenDensed - MacOS KenDensed: Killing Off Unlimited Data & Big iPhone Rumors
- Fri, 8:58 PM
- News - Sprint Offers $100 Credit for iPhones From Other Carriers
- 7:50 PM
- Free on iTunes - A Free Art Exhibit App for iPad
- 7:41 PM
- The Back Page - Apple Could Use 7” iPad Pricing to Punish Competitors
- 5:41 PM
- TMO Appearances - John Martellaro Talks on Tech Night Owl: Competing with Apple
- 4:25 PM
- Particle Debris - Yes, But Will Anyone Actually BUY an Apple HDTV?
- 3:47 PM
- Deal Brothers - 13” MacBook Air 1.86 GHz Intel Core 2 Duo: $999
- 1:15 PM
- Product News - DropKey goes Free on Mac App Store through Sunday
The Mac Observer Reader Specials
Macsales.com for the Right Mac Memory. Most Popular: 16GB from $128; 8GB from $50. MacBook Pro & Mac mini Kits up to 16GB. iMac up to 32GB & Mac Pro now up to 128GB. - Macsales.com
Mac RAM Upgrades: MacBook Pro 16GB kits $475, 8GB Kits for $119.99! iMac 16GB RAM Kits (4x 4GB) for $229.99! Mac Pro Memory 32GB Kit for $399.99, 64GB Kit for $889.99! Mac Hard Drives 2TB Seagate SATA II for $249.99! Click Here!
If you're using a Mac, then you've gotta check out PokerOnAMac.com. Online casinos and poker rooms are literally giving away cash and the casino sites at Poker on a Mac do the unthinkable, they actually reward! Join today, the download is free! 
Looking to find online casinos for mac? We can help you find the best real money casino sites where you can play your favorite casino games including blackjack and slots. -
-
-
-
-
-
