RSS RSS Twitter Twitter
troubleshooting/tutorials/security

12/22/2005, 10:35am, EST

Thursday, December 22nd

Security issue in Apple's Safari?

An alleged security issue in Mac OS X affects Apple's Safari browser and TextEdit applications under all versions of Mac OS X and could allow malicious users to crash the running applications and possibly compromise the system. Security Protocols, which rates the flaw with 'medium' severity', reveals that "denial of service vulnerability exists within the KHTMLParser on Mac OS X 10.4.3 and all prior versions which allows for an attacker to cause the application which uses this class to crash, and or execute arbitrary code on the targeted host." The report says that when running a specially crafted .html file, the "khtml::RenderTableSection::ensureRows" inproperly parsers the data and causes the crash. The Website provides an example of the code and also says that Apple has been notified. Earlier today, we noted that Symantec admitted that its NAV solution has an exploitable flaw that could allow users to attack any Mac system with the software installed. [updated 12:05 pm ET]

Update: One MacNN reader, however, says that the flaw is no more than a bug: "It is a crashing bug, but certaily does not look line a security issue in any way, shape or form. A better way to write it would be: 'A maliciously constructed web page giving a preposterous rowspan in a table can cause the KHTML parser to crash.'" The reader says that a maliciously crafted HTML page would cause a large enough array to crash the application ("in true Unix fashion"), however, it is unclear if--or how--it could allow execution of arbitrary code."


Filed under: troubleshooting

, , 10comments, del.icio.us, slashdot, digg, buzz , Twitter



10 comments
Reader Reactions (Please use <i></i> for italic text)

subscribe to comments
for this article




Expand All   Global Settings
Horsepoo!!!
This one was fixed...
0
12/22, 11:24am, EST
This one was fixed not long ago in the nightlies...if I'm not mistaken. I'm guessing it was an easy fix.
Banned
Joined Jun 2003
User is offline
Deal
In other words...
0
12/22, 11:25am, EST
The Mac is safer without third party virus protection ;)
Mac Enthusiast
Joined Apr 2001
User is offline
ebow
Nightlies?
0
12/22, 11:45am, EST
What nightlies are you talking about? Safari has 'em? This isn't some SourceForge project we're talking about here...
Fresh-Faced Recruit
Joined Oct 2001
User is offline
sapridyne
Google it
0
12/22, 11:56am, EST
Google is your best friend, ebow.

apple safari nightly

-Sapridyne
Fresh-Faced Recruit
Joined Jun 2003
User is offline
ebow
Of coource
0
12/22, 12:02pm, EST
I knew that, I knew that... Just, er, testing you. http://nightly.webkit.org/builds/
Fresh-Faced Recruit
Joined Oct 2001
User is offline
sdf
Interesting
0
12/22, 12:17pm, EST
If it is already fixed in the nightlies, it was probably "discovered" by someone watching the WebKit-Dev list where a crasher was discussed recently.

If this is the same flaw, I find it terribly funny that someone rushed out to get "credit" for it.
Fresh-Faced Recruit
Joined Aug 2004
User is offline
Feathers
True MacNN
0
12/22, 1:06pm, EST
Well, MacNN never lets the facts get in the way of a good (or old) story! Sigh!
Forum Regular
Joined Oct 1999
User is offline
testudo
Re: interesting
0
12/22, 2:07pm, EST
If it is already fixed in the nightlies, it was probably "discovered" by someone watching the WebKit-Dev list where a crasher was discussed recently.

If this is the same flaw, I find it terribly funny that someone rushed out to get "credit" for it.

Why is it 'funny'. It isn't important to tell people of a possible security flaw, just because its been fixed in a set of code only few people get? I guess we should find it funny for any Windows XP flaws that were fixed in the Vista software, because, hell, its basically fixed!

Oh, and just because they're in the nightlies doesn't mean that they'll be in the next release of 10.4. It may take months to see a fix, if one is ever released. (Hard to say with Apple, since they're response to security is usually a mumbled "Hey, we've fixed some bugs" followed by a "What? 10.3? We might make a fix for it, but don't hold your breath").
Fresh-Faced Recruit
Joined Aug 2001
User is offline
nitram_again
Geocities site
0
12/22, 3:04pm, EST
I hit a link to take me to a Geocities site the other night. The damn thing crashed Safari repeatedly, screwed up the prefs and even turned off Cocoa Gestures. Never seen anything like it before. Hope I never see it again.
Fresh-Faced Recruit
Joined Nov 2001
User is offline
sdf
Yes, funny.
0
12/22, 3:21pm, EST
With an update expected in only a few weeks, and the crash not a security flaw, I find it funny... yes, funny... that someone would run to the press with it, claim to have discovered it and claim it's a security flaw.
Fresh-Faced Recruit
Joined Aug 2004
User is offline
Your Comments

In order to post comments: If you are a registered member, please login with your MacNN Forums username and password otherwise please uncheck the checkbox below.


Registered Member?
macnn forums login:

macnn forums password:

Not a member of the MacNN forums? Register now for free.

MacNN iPodNN Electronista
top searches
1. apple
2. iphone
3. apple TV
4. ipod
5. mac
6. BBC
7. icons
8. icon
9. macbook
10. leopard
search for more ..
RSS Feeds

Have the latest content delivered to your desktop via RSS. Use the links below to get access to a specific blog, news, or reviews feed.



  MacNN -all

  MacNN Reviews

  MacNN Podcasts

  iPodNN

  Electronista

  Left Lane News
Want To Sell Your Laptop? Any Condition - receive Top Cash. Get an instant quote. Free shipping www.CashForLaptops.com

Internet Marketing School - 100% Online: Master SEO, SEM, E Commerce, Media & More with a U of San Francisco Certificate.

Buy from The Apple Store, iTunes.com, Amazon.com, TechDepot, OfficeDepot, Computers4Sure, or donate.