There is a vulnerability in Apple Safari, that allows an attacker to
steal a cookie belonging to the arbitrary domain or/and fill the browser
window with an arbitrary content, whereas the url bar and the browser's
window title is derived from the selected domain.
The flaw exists in the
On Wed, 13 Jun 2007, Robert Swiecki wrote:
The flaw exists in the javascript's window.setTimeout() implementation.
Forgive me the rant, but... all other recently reported problems aside,
seeing this, I can only ask - which rock did Safari developers hide under
for the past 8 years or so?
I
curl 7.15.1 compiled from source on RHEL 4 is not affected. Can
anyone else confirm?
J
On Wed, 13 Jun 2007 06:34:42 -0400 Robert Swiecki
[EMAIL PROTECTED] wrote:
There is a vulnerability in Apple Safari, that allows an attacker
to
steal a cookie belonging to the arbitrary domain or/and fill