01/13/2009, 10:10am, EST
Tuesday, January 13th
Safari RSS vulnerability affects Mac, Windows users
A vulnerability in both the Mac and Windows versions of Safari may present serious privacy concerns, says coder Brian Mastenbrook. The problem, said to have been confirmed by Apple, is specifically related to the application's built-in RSS reader, which may be exploitable to read the contents of a person's hard drive. The exploit is triggerable by visiting a malicious website, and could in theory allow access to items like e-mail and passwords.
The only Macs vulnerable are said to be those using Mac OS X Leopard, but the threat must then be averted by picking a new RSS reader from Safari's Preferences menu; simply avoiding Safari or even RSS feeds may not provide security. Windows users can simply turn to an alternate browser, such as Opera or Firefox.
Apple is said to have provided no information so far on when patches for the problem might be released.
Filed under: security, software
Other story tags: Safari, browsers
,
, 3
,
,
,
,
,
,

subscribe to comments
for this article
Omniweb?
Would Omniweb be immune or is it also effected? The site doesn't say.
RSS screensavers?Omniweb?
Would Omniweb be immune or is it also effected? The site doesn't say. It doesn't mention the RSS screen savers either.
omniweb
I would think it would be affected, because the way it is implied in the article, it somehow magically can still cause problems even if you don't use Safari (how in the hell that is brings up more questions).