Title: Safari users still vulnerable to “carpet-bombing” attack Post by: HCK on September 14, 2010, 03:00:27 pm Safari users still vulnerable to “carpet-bombing” attack
Apple Safari carpet-bombing is a vulnerability that allows remote attacker via malicious website to silently download arbitrary files in users’ default download directory (~/Download). This issue became serious in Windows because the default download is in users’ Desktop. Attackers can craft any file to look like a link file (.LNK) and or image file (.JPEG) [...] http://ithreats.net/2010/05/26/safari-users-still-vulnerable-to-carpet-bombing-attack/ |