Aviv Raff On .NET
If at first you don't succeed; call it version 1.0
Monday, June 11, 2007
Apple Safari for Windows - Out with a crash

Apple has just released a public beta of its Safari browser for Windows.

On the download page Apple write: "Apple engineers designed Safari to be secure from day one".

 

So, I've decided to take it for a test drive, and ran Hamachi. I wasn't surprised to get a nice crash few minutes later...

A first glance at the debugger showed me that this memory corruption might be exploitable. Although, I'll have to dig more to be sure of that.

Again, this is just a beta version.. But, don't you hate those pathetic claims?

[UPDATE]: David Maynor and Thor Larholm have found several more security vulnerabilities in Safari for Windows. I guess we can now call it "Day zero"...


Monday, June 11, 2007 9:19:46 PM UTC | Comments [1] | Security#
Wednesday, January 30, 2008 1:52:35 AM UTC
I've never really been a huge fan of Safari, however how do you rate its "overall security" against some of the more popular browsers such as Opera, Firefox & IE7? Are people less likely to go after exploits since it's basically a Mac Port?

Regards
Stuart
Stuart | stuartAT NOSPAMearnersblog dot com
     All comments require the approval of the site owner before being displayed.
Name
E-mail
Home page

Comment (Some html is allowed: a@href@title, b, blockquote@cite, em, i, strike, strong, sub, super, u) where the @ means "attribute." For example, you can use <a href="" title=""> or <blockquote cite="Scott">.  

Enter the code shown (prevents robots):
Live Comment Preview
Subscribe: RSS 2.0 Atom 1.0
Copyright 2008 Aviv Raff, אביב ראף
newtelligence dasBlog 2.0.7226.0
Contact Me
Blogroll
 ælij arbel
 Avi Dardik
 Browser Fun
 Info Pull
 Itay Sagui
 Metasploit
 SkyLined
Archive
May, 2008 (2)
April, 2008 (1)
January, 2008 (7)
December, 2007 (1)
November, 2007 (1)
October, 2007 (2)
September, 2007 (2)
August, 2007 (2)
July, 2007 (1)
June, 2007 (3)
March, 2007 (4)
January, 2007 (5)
December, 2006 (2)
November, 2006 (2)
October, 2006 (2)
September, 2006 (1)
August, 2006 (3)
July, 2006 (1)
June, 2006 (1)
April, 2006 (3)
March, 2006 (3)
February, 2006 (2)
January, 2006 (1)
December, 2005 (4)
October, 2005 (2)
September, 2005 (12)
Admin Login
Sign In
Disclaimer
The opinions expressed herein are my own personal opinions and do not represent my employer's view in anyway.