Microsoft urges Safari caution
By Stuart Turton
Posted on 2 Jun 2008 at 10:48
Microsoft is advising users to restrict their use of Apple's Safari browser, until a patch becomes available to plug a potential vulnerability.
Safari doesn't require a user to give permission to download certain files, a fact which independent security researcher Nitesh Dhanjani predicted could lead to a "carpet-bombing" attack whereby attackers populate websites with malicious code Safari would automatically download to the desktop.
In a security advisory Microsoft says the flaw is also dependent on a vulnerability in how XP and Vista handle executable files on the desktop. Microsoft says it's not aware of any example of the flaw being exploited, but is working on the issue.
The advisory goes on to suggest, that people "restrict use of Safari as a web browser until an appropriate update is available from Microsoft and/or Apple."
Apple has not responded to our request for comment.
PC Pro's Five Biggest Stories
- Tech City: Easy to score when you move the goalposts
- How to remove SkyDrive from the Windows 8.1 Explorer
- Switching from iPhone to Android? Switch off iMessage
- Why is Google pumping more money into Firefox?
- Sky Broadband Shield review
- Samsung Galaxy S4: how to double your battery life
- Motorola Moto G review: first look
- IBM Watson meets Willy Wonka
- Google’s support policies shove users towards Chrome
- Lenovo Yoga Tablet review: first look
- The importance of load balancing
- Windows Phone App Studio: an easy way to create your first Windows Phone 8 app
- The end of Windows XP support: what it really means for businesses
- Don't rely on Chrome's password vault
- Using Buffer to manage your social media
- Microsoft needs its own Steve Jobs
- Forget credit cards: hackers want your Facebook account
- Can't get fast enough broadband? Here's what to do
- Leap Motion and the battle against UI stagnation
- How to build a really bad network