Home page logo

bugtraq logo Bugtraq mailing list archives

Re: [Full-disclosure] Apple Safari: urlbar/window title spoofing
From: Robert Swiecki <jagger () swiecki net>
Date: Fri, 15 Jun 2007 01:31:39 +0200

There is a vulnerability in Apple Safari...

Here's another one. With a specially crafted web page, an attacker can
fill the client browser window with an arbitrary content, whereas window
title and the content of the urlbar are freely settable.

Tested with shiny, new, patched Safari 3.0.1 (522.12.12) on Windows 2003


Robert Swiecki

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]