Apple Safari Stylesheet Redirection vulnerability
There’s a 0-day vulnerability affecting Safari 4.x users, it’s not critical, but it is important to be aware of it.
<link rel="stylesheet" type="text/css" href="www.yahoo.com
//setTimeout is used just to wait for page loading
Listing 01 – Apple Safari Stylesheet Redirection PoC
Cesar Cerrudo has discovered this vulnerability, and discussed that Safari wasn’t able to display the LINK [...] http://ithreats.net/2010/01/25/apple-safari-stylesheet-redirection-vulnerability/