3 matches found
Apple Safari Flaw from 2008 Still Open
After more than two years, Apple’s Safari browser for Macs remains vulnerable to attacks that allow websites to litter a user’s hard drive with thousands of malicious files. The “carpet bomb” vulnerability was publicly disclosed in May 2008 after members of Apple’s security team said they didn’t...
CVE-2008-2540
Apple Safari on Mac OS X, and before 3.1.2 on Windows, does not prompt the user before downloading an object that has an unrecognized content type, which allows remote attackers to place malware into the 1 Desktop directory on Windows or 2 Downloads directory on Mac OS X, and subsequently allows...
Privilege escalation
Apple Safari on Mac OS X, and before 3.1.2 on Windows, does not prompt the user before downloading an object that has an unrecognized content type, which allows remote attackers to place malware into the 1 Desktop directory on Windows or 2 Downloads directory on Mac OS X, and subsequently allows...