On TechRepublic: 12 tech terms that make you sound old
BNET Business Network:
BNET
TechRepublic
ZDNet

July 28th, 2008

Safari browser flaw: Session fixation attacks possible

Posted by Ryan Naraine @ 6:41 pm

Categories: Apple, Botnets, Browsers, Data theft, Denial of Service (DoS), Exploit code, Hackers, Malware, Open source, Passwords, Patch Watch, Pen testing, Vulnerability research, Zero-day attacks

Tags: Apple Safari, Web Browser, Attack, Flaw, Web Browsers, Security, Internet, Ryan Naraine

Another day, another unpatched Safari browser vulnerability.

According to this flaw warning found on the NVD (National Vulnerability Database), Apple’s flagship browser is vulnerable to session fixation attacks because of the way it handles cookies in country-specific top-level domains.

[ SEE: Microsoft issues Safari-to-IE blended threat warning ]

Heise Security breaks down the attack vector:

 Apple’s Safari web browser, when handling cookies in multipart top level domains (TLDs), contains a vulnerability that potentially allows attackers to access the web services used by the victim. Safari handles multipart TLDs like .co.uk or .com.au differently from normal TLDs like .de or .com. According to a report, this allows attackers to inject the browser with a cookie which Safari will subsequently use for log-in authentication at other servers in the same TLD.

Alex “Kuza55,” a hacker who appeared at Microsoft’s Blue Hat summit, is credited with discovering this Safari vulnerability. It carries a CVSS Base Score of 6.8.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 14 Talkback(s)
True, but ...
at least it gives NonZealot an opportunity to flaunt his
relentless AABM (anti anything but MS) zealotry!... (Read the rest)
Posted by: rahbm Posted on: 08/02/08 You are currently: a Guest | | Terms of Use
Oh, but "Apple engineers designed Safari to be secure from day one."  PB_z | 07/28/08
Ryan, change the title, you'll get more hits  NonZealot | 07/29/08
Thats awesome  daMan25 | 07/29/08
That was VERY funny!  rahbm | 08/02/08
Never a big believer in throwing stones..  croberts | 07/29/08
Apple's greatest flaw...  eMJayy | 07/29/08
Exactly right  croberts | 07/29/08
More ambulance chasing...  The Rationalist | 07/29/08
True, but ...  rahbm | 08/02/08
RE: Safari browser flaw: Session fixation attacks possible  Chiatzu | 07/30/08
More like 3.5%  Surur | 07/30/08
RE: Safari browser flaw: Session fixation attacks possible  tgardley | 07/30/08
RE: Safari browser flaw: Session fixation attacks possible  tgardley | 07/30/08
RE: Safari browser flaw: Session fixation attacks possible  tgardley | 07/30/08

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

Enterprise Applications

  • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
  • New Online Dashboard
  • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline