Featured Article: PowerSet Poised to Change Internet Searches
Mac Security Alert - Exploit May Cause Safari To Toss Its Cookies
by , 1:00 PM EST, November 26th, 2003
The information technology security company, Secunia, has released an advisory about a vulnerability in Safari, Apple's Web browser. The exploit can be used remotely to trick the browser into sending a user's private cookie information for a website. Cookies are bits of information stored on a person's computer that are pertinent to that specific person. Their main purpose is to identify visitors so a certain Web site can be customized for them. From the Secunia advisory page:
A vulnerability has been reported in Apple Safari, which can be exploited by malicious people to steal a user's cookies. The vulnerability is caused due to an error when handling URLs. This can be exploited to disclose a user's cookie information for an arbitrary website by including a NULL character ("%00") in the URL. The vulnerability has been reported in versions 1.0 (v85) through 1.1 (v100.1).
The vulnerability carries a threat level of 4 on a scale of 1-5. That level is characterized by the existence of easy to exploit flaws, no solutions being available, no public awareness or workarounds requiring high technical skills, and the exploit being out "in the wild."
Secunia suggests using another browser to avoid being exposed to the security hazard.
Observer Comments
Recent Headlines - Updated Friday, July 4th, 2008
- Fri., 7:30 AM
- Happy Fourth of July!
- Thu., 4:50 PM
- Apple Slashes $400 from SSD Drive in MacBook Air
- 4:05 PM
- It's Official - Firefox Sets Guinness Record for Downloads
- 3:30 PM
- Apple Files Patent for a Multi-touch Gesture Language
- 2:20 PM
- Editorial - Mac's Market Share and the Cascade Failure of Windows
- 1:35 PM
- iPodObserver - Apple Slurps Up Samsung's NAND Flash for iPhone 3G
- 1:05 PM
- WSJ: Tips for Switching from Windows to Mac
- 12:05 PM
- iPodObserver - Google Intros Google Talk for iPhone
- 11:35 AM
- iPO Just a Thought - iPod nano Versus iPhone: Decisons, Decisions...
- 10:55 AM
- YouTube Ordered to Turn Over All User Records to Viacom
- 10:10 AM
- Hot Forum Topic - Apple vs. Cell Carriers: Who's Winning the Game
- 9:25 AM
- iPodObserver - Rumor: Best Buy, Radio Shack to Sell iPhone 3G
- 8:45 AM
- .Mac Bookmark Sync Deadline Extended to July 6
- 8:10 AM
- Adobe Reader 9 Hits the Streets
The Mac Observer Reader Specials
- Download Typestyler, still the Ultimate Styling Tool for Internet, Print and Video Graphics. Works great in Classic with a Native OS X Version on the way. Free Tryout: www.typestyler.com
- OWC: NewerTech NuPower Batteries for iBook and PowerBooks Designed+Built in USA to run longer, LAST LONGER TOO! Free Battery Recycling Return Label; Quality High-Capacity from $99.95
MacPro Memory 667Mhz With Apple Spec Heat Sink 2GB $90 / 4GB $134 / 8GB $264. Click to Maximize your Macs...
Mac observers can now play Party Poker for Mac as well as Mac casino games by going to MacPokerOnline.com.
RamJet Memory: MacBook 1Gig $39, 2Gig $78, 4Gig $195! Mac Pro 2Gig $115, 4Gig $189! 500G Seagate SATA II $139! Click hereFor the latest Apple products use Ciao a comparison website to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate cell phones.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.
Overstock.com: $10 Off Orders of $150 or More - New Customers Only 
Harman Kardon EP 730 In-ear Noise Isolating Earphones With Volume Control: $52.99 Delivered 
Archos 604 30 GB Ultraslim Portable Digital Media Player and Recorder: $169.99 Delivered 
Western Digital 320GB My Passport Essential USB 2.0 Portable Hard Drive: $128.99 Delivered 
Cavalry 1TB Hard Drive - RAID 1 (500GB Mirrored) - Interface (USB 2.0) External Hard Drive: $189.99 
