Hijacking Safari 4 Top Sites

2009-08-12T14:27:13
ID THREATPOST:33AB97A4CED031DFD4E816EBE1304C07
Type threatpost
Reporter Dennis Fisher
Modified 2013-04-17T16:38:48

Description

This short video demonstration shows a new technique for exploiting a flaw in Apple Safari 4 that enables an attacker to hijack the Top Sites feature in Safari and replace the victim’s Top Sites with phishing sites. The vulnerability and attack were discovered by Inferno.