|
Apple Fixes Safari Carpet Bomb Windows Vulnerability: related news
Tags:
apple bomb carpet fixes safari vulnerability windows
Titoxd writes "Apple has released a new version of Safari that fixes the carpet bomb vulnerability in Safari 3.1 for Windows. This comes in the heels of Microsoft recommending against using Safari in Windows, as well as the release of code exploiting this vulnerability."
in Web Developer
via Slashdot @ 10:36 21st Jun
- Related
SecureThroughObscure writes "Just a short time after Apple's recent acknowledgment of and patch for the Safari Carpet Bomb 'blended' IE flaw, Microsoft researcher Billy Rios shows that Safari is still useful in a blended attack, this time with Firefox 2/3. (ZDNet's Nate McFeters also spread the word.) Rios claimed that he is able to use Carpet Bomb, despite the recent patch, to steal arbitrary files from victims who also have Firefox 2/3 installed. Both Rios and McFeters pointed out that Apple, which took some heat for not originally patching, actually did a good job of addressing the issue, as the code execution angle was not originally understood (the details came out later). Rios is withholding details of the new attack vector until Apple has had time to patch or respond to this issue.
in Web Developer
via Slashdot @ 12:04 22nd Jun
- Related
Adobe Apple Apple iCal Apple iPhone Apple iPod Apple iTunes Apple Mac Apple Macintosh Apple QuickTime Apple Safari California Canada FileMaker Firefox 3 Gmail Google Instant Messengers Internet Explorer Limit Point Software Linux Mac Macintosh Mac OS X Mac OS X Leopard Macworld Microsoft Microsoft Windows Mobile Devices Mozilla Mozilla Firefox Novell Open Source Opera Operating Systems PDF Red Hat Solaris - OpenSolaris - Project Indiana SuSe Ubuntu Web Browser Web Browsers Web Services Windows Vista Windows XP Yahoo
in Search Engines
via TechWhack @ 15:18 5th Jul
- Related
Lawrence Person writes "Mac Daily News was one of many Apple-followers to note that Apple Inc.'s market capitalization exceeded Google today. That means that the combined value of all Apple's outstanding shares of stock exceeded the combined value of all Google's outstanding shares of stock. Apple's stock is worth $157 billion and change vs. Google's $156 billion. Other companies Apple has surpassed in market cap include Cisco, HP, and Intel. Also, Apple is now worth 3 times the value of Dell Computer, despite Dell's founder and CEO declaring over a decade ago that if he ran Apple, he'd 'shut it down and give the money back to the shareholders.'"
in Web Developer
via Slashdot @ 10:04 14th Aug
- Related
An anonymous reader writes "Two separate Apple security talks have been nixed at the last minute from next week's Black Hat security conference in Las Vegas. The Washington Post's Security Fix blog reports that Apple researcher Charles Edge was to present on flaws in Apple's FileVault encryption plan, but asked Black Hat to cancel the talk, citing confidentiality agreements with Apple. Then on Friday, Apple pulled its security engineering team out of a planned public discussion on the company's security practices — which would have been a first for Apple. 'Marketing got wind of it, and nobody at Apple is ever allowed to speak publicly about anything without marketing approval,' a Black Hat spokesman said."
in Web Developer
via Slashdot @ 8:14 4th Aug
- Related
Apple released iPhone version 2.0.1 update via iTunes Monday evening. The 242MB update contains various "bug fixes," according to Apple's installation note. The update "supercedes all previous versions" of iPhone software. There's no word yet if the update contains any additional features. In addition, Apple also unveiled the iPod touch 2.0.1, most likely containing similar bug fixes. As with all previous versions of the iPhone and iPod touch operating systems, the update is available through iTunes.
in Handhelds
via MacNN @ 11:56 5th Aug
- Related
On Friday, Apple posted the Safari 3.1.2 for Windows update, which patched the Safari + Internet Explorer "blended" carpet bombing attack.
in Open Source
via Insanely Great Mac @ 18:10 22nd Jun
- Related
Platforms: Windows 2000, Windows 2003, Windows 95, Windows 98, Windows ME, Windows NT, Windows XP, Windows Vista
in Robotics
via CWSApps @ 14:27 2nd Jul
- Related
You may remember a couple months ago there was some contention whether Safari or Firefox had the fastest JavaScript performance. Apple had claimed Safari 3 was the fastest when compared to Firefox 2, though improvements in Firefox 3 betas had narrowed or eliminated that gap. Zimbra, a company that makes a web-based collaboration suite, has now performed some new benchmarks that show Safari on top. Zimra's results, based on testing using its own tools, shows Safari 3.1 with a clear lead over Firefox 3.0.
in Open Source
via ArsTechnica @ 13:19 24th Jun
- Related
An anonymous reader writes "Firefox 3.0.1 was released today. It fixes 3 security vulnerabilities, including a critical issue reported by Billy Rios, Ben Turner, and Dan Veditz. The issue could be combined with an issue in Apple's Safari browser to read data from the user's disk or to execute arbitrary code. This issue was previously discussed on Slashdot. The release also fixes a remote code execution bug involving the CSS reference counter, reported by the Zero-Day Initiative (previously discussed on Slashdot here), as well as a Mac-only potential code execution bug involving GIF image rendering, reported by Drew Yao of Apple Product Security."
in Web Developer
via Slashdot @ 21:28 17th Jul
- Related
It looks a like a week's worth of bad press has finally worn down Apple (AAPL: sentiment, chart, options) bulls, as the shares are poised to close today with a loss of nearly 2%. Meanwhile, the media's full-court press isn't letting up. In the latest report to seek answers in regard to the company's response to growing concerns about the iPhone 3G's connection issues, all ABC News was able to get from Apple was "No comment." What's more, the issues are starting to take a toll on die-hard Apple fans, with ABC quoting one loyal user as saying, "I am a true Apple fan, so this is nothing to make Apple look bad. ... I think Apple should come out and tell people what's going on with these phones."
in Handhelds
via Schaeffers Research @ 21:26 15th Aug
- Related
6/12/08 - iCloseBy.com announces the latest release of iFob, a popular Wi-Fi hotspot application that helps singles hookup with other singles looking for action while on the go. As an accepted member of both the Apple Developer Network and Apple's iPhone Developer Program, iCloseBy.com has used the Apple iPhone SDK and has developed iFob 2.0 for Apple's consideration. iFob 2.0, including all of the functionality of the earlier versions of iFob (still available free download for Windows PCs), now has the unified look-and-feel of other Apple native iPhone software apps, as well as a newly added ability to 'real-space-real-time' locate other willing iFob users from GPS-like cell-tower triangulation.
in Handhelds
via Broadband Wireless Exchange Magazine @ 11:20 13th Jun
- Related
We’ve long recommended that customers use the Windows Firewall to protect SQL Server installations. Starting with Windows XP/SP2, and continuing with Windows Vista, the firewall has been enabled by default on Windows client operating systems. Windows Server 2008 marks the first time this protection has been extended to a Windows Server OS.
in Computer Security
via ActiveWin.com @ 4:38 5th Jul
- Related
We've long recommended that customers use the Windows Firewall to protect SQL Server installations. Starting with Windows XP/SP2, and continuing with Windows Vista, the firewall has been enabled by default on Windows client operating systems. Windows Server 2008 marks the first time this protection has been extended to a Windows Server OS.
in Computer Security
via Bink.nu @ 17:14 3rd Jul
- Related
Apple had recently filed a patent with the United States Patent and Trademark Office (USPTO) to bring Windows Media content and Flash to the iPhone. Top iPhone News shows a webpage with Flash and Windows Media support. Apple may never bring the technology to the iPhone, but the methodology exists should the firm bring this support.
in Handhelds
via Pocketnow.com @ 6:13 29th Jul
- Related
mjasay writes "At OSCON this year, MySQL's Brian Aker made this bold statement: 'Microsoft is irrelevant ... We're more worried about Apple.' The Free Software Foundation appears to have caught the hint, and has turned its attention to all-things-Apple with a 'denial of service' attack on the Apple Genius Bars. The idea is to completely book all Genius Bars and then ask the 'geniuses,' over and over again, a few questions about Apple's proprietary ways (while, apparently, real customers with support issues are left to flounder). Lost in this anti-Apple fervor, however, is the Free Software Foundation's complete and conscious failure to protect the web. Richard Stallman has long felt that software that doesn't sit on his desktop doesn't affect his freedom, but isn't the opposite true? Why is the FSF focused on Apple when the bigger concern
in Web Developer
via Slashdot @ 22:22 26th Jul
- Related
Apple's apparently so fed up with the high pricing that Rogers is shoving into Canadian iPhone owners' faces that there will be no iPhone 3Gs sold at Apple Stores in Canada this Friday. This follows up Apple's previous action of diverting stock from Canada to Europe, and really sets the tone that they're unhappy with Rogers' $60 for 150 minutes, 75 SMS messages and 400MB data plan. So what's the deal? Canadians who still want one will have to line up early to get one of the 10-20 units per store that Rogers is getting. If we were you, we'd stay home and wait for Rogers to admit defeat, stop slapping its customers in the face and lower its prices. [Apple Insider]
in Handhelds
via Gizmodo @ 19:48 8th Jul
- Related
This Update supports Apple's free Remote application (allows your iPhone or iPod touch to control iTunes on a Mac, Windows PC, or Apple TV) and Apple's new Mobile Me service.
in Gadgets
via Mac Daily News @ 18:52 10th Jul
- Related
Apple has released iTunes 7.7.1, an update that Apple says “includes fixes to improve stability and performance. The update is available via Apple’s Software Update application or as a downloadable installer at the iTunes web site Apple iTunes web site
in MP3
via Macsimum News @ 5:06 1st Aug
- Related
recoiledsnake writes "The connection between Apple and Steve Jobs is unlike any other brand and CEO relationship in corporate America, maybe the world. While Bill Gates has successfully transitioned himself away from his day job at Microsoft, can Apple do without Jobs at all? Once word started circulating that Jobs may be ill, Apple stock took a considerable hit, dropping more than $10 a share. And when Mr. Jobs was absent from last week's quarterly earnings conference call, the questions started again — and the stock fell again. What does this mean for corporate users of Apple for whom switching costs are high? Can Apple continue innovating in Job's absence?"
in Web Developer
via Slashdot @ 16:01 28th Jul
- Related
Steve Shockley notes an article up at TidBITS on Apple's unexplained failure to patch the DNS vulnerability that we have been discussing for a few weeks now. "Apple uses the popular Internet Systems Consortium BIND DNS server which was one of the first tools patched, but Apple has yet to include the fixed version in Mac OS X Server, despite being notified of vulnerability details early in the process and being informed of the coordinated patch release date."
in Web Developer
via Slashdot @ 22:09 28th Jul
- Related
99BottlesOfBeerInMyF writes "AppleInsider is running an article about Apple's new SproutCore Web application development framework, utilizing Javascript and some nifty HTML 5 to offer a 'Cocoa-inspired' way to create powerful Web applications. Apple built on the OSS SproutIt framework developed for an online e-mail manager called 'Mailroom.' Apple used this framework to build their new Web application suite (replacing .Mac) called MobileMe. Since SproutCore applications rely on JavaScript, it seems Apple had good reason to focus on Squirrelfish for faster JavaScript interpretation in Webkit. Apple hosted a session last Friday at WWDC introducing SproutCore to developers, but obviously NDAs prevent developers from revealing the details of that presentation.
in Web Developer
via Slashdot @ 10:42 17th Jun
- Related
Apple on Monday released iPhone 2.0.2, an update to its second-generation software for the original iPhone and iPhone 3G. The update is about 242MB and first appeared via iTunes just after 5PM EST. As is usually the case with iPhone updates, Apple provided few details, saying simply that the update contains "bug fixes," and links to existing online iPhone support resources. Over the weekend the company seeded iPhone v2.1b4, a private beta, to developers, but removed the much anticipated 'push" feature that would allow applications to respond to internet triggers (new email, an IM, etc.) without being open. The major software update along with the unique "push service" was announced in June 2008 at Apple's WWDC and was expected to launch in September, according to Apple CEO Steve Jobs.
in MP3
via MacNN @ 21:16 18th Aug
- Related
Search took 0.53 seconds.
|
|
