On BNET: Online porn struggles for profits

BNET Business Network:: BNET; TechRepublic; ZDNet

Zero Day

Ryan Naraine and Dancho Danchev

Get Zero Day via:: Mobile; RSS; Email Alerts
Bios:: Ryan’s Bio; Dancho’s Bio

June 11th, 2007

Safari on Windows could be big target for malware

Posted by Ryan Naraine @ 2:13 pm

Categories: Apple, Black Hat, Botnets, Browsers, Data theft, Exploit code, Firefox, Google, Hackers, Metasploit, Microsoft, Mozilla, Open source, Passwords, Patch Watch, Pen testing, Responsible disclosure, Spam and Phishing, Spyware and Adware, Viruses and Worms, Vulnerability research, Zero-day attacks

Tags: Security, Vulnerability, Crash, Malware, Microsoft Windows, Web Browser, Ryan Naraine

In Focus » See more posts on: Browsers, WWDC

The news that Apple’s Safari browser is coming to Windows (see Techmeme discussion) has raised eyebrows in the security research community and there’s already word that a memory corruption vulnerability has been discovered.

Apple is no doubt looking to take a bite out of that search-box advertising market that’s been so lucrative for Mozilla but if Safari on Windows is half as popular as iTunes, you can bet malware authors will be licking their lips.

Safari has not held up well to hacker scrutiny on the Mac platform. Tom Ferrris, a hacker who routinely finds Safari and Mac OS X vulnerabilities, once told me it’s “trivial” to trigger a crash on Safari. The reality is that every crash is a potential security vulnerability.

Just hours after today’s Apple announcement, Errata Security researcher David Maynor downloaded the beta code and found two potentially serious security issues.

Safari crash dump

“These are popping out like hotcakes,” Maynor said in a blog entry with screenshots of the Safari crash. Maynor does not report his discoveries to Apple because of the public discloure spat that erupted at last year’s Black Hat Briefings.

During HD Moore’s month of browser bugs project, details on two Safari vulnerabilities were released. According to Tom Ferris, there are several unpatched Safari flaws outstanding.

Safari on Windows puts the buggy browser before a bigger audience. You can bet your bottom dollar malware authors are paying close attention.

[UPDATE: June 11, 2007 @ 7:43 PM] Aviv Raff gets in on the fuzzing action and finds (another?) potentially exploitable memory corruption issue.

Ryan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.

Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?

Talkback
Most Recent of 53 Talkback(s)

Thread View
Flat View

I love this guy's site: Better than Mike Cox! (Read the rest); Posted by: An_Axe_to_Grind Posted on: 06/12/07 You are currently: a Guest | Log in | Terms of Use

Haha, did I call this or what? NonZealot | 06/11/07

This comes from a man/women Intellihence | 06/11/07

Haha, find 1 link NonZealot | 06/11/07

Where is your butt buddy Ye at ? Intellihence | 06/12/07

For a last note moron , this is just a beta . Intellihence | 06/11/07

Compared to IE, MS Office, Outlook, and Windows itself, the risks are DonnieBoy | 06/11/07

Given that you are right NonZealot | 06/11/07

Right, you can NOT uninstall IE. That is a real shame, because, as you DonnieBoy | 06/11/07

i have to agree NonZealot I'll stick with firefox apple software SO.CAL Guy | 06/11/07

its David Maynor... doh123 | 06/11/07

No he hasn't NonZealot | 06/11/07

Sure he has , he is a liar . Intellihence | 06/12/07

Safari IS Malware crescentdave | 06/11/07

Yes, so, Windows is malware, Outlook is malware, MS Office is malware, DonnieBoy | 06/11/07

Yes, so, Windows is malware, Outlook is malware, MS Office is malware SO.CAL Guy | 06/11/07

Maybe you haven't figured it out, but 99.9% of the viruses in the wild are DonnieBoy | 06/11/07

So if iTunes is mediocre on Windows go and buy yourself a Mac . Intellihence | 06/12/07

is malware only on windoze! Linux Geek | 06/12/07

Will Windows users even care? DannyO_0x98 | 06/11/07

Safari dies upon startup... astro_z | 06/11/07

To be fair, I installed it NonZealot | 06/11/07

It's beta Ryan Naraine

| 06/11/07

It still sucks NonZealot | 06/11/07

Man, give it a break. Wait until the final product comes out. Coming from a DonnieBoy | 06/11/07

Full remote code execution Ryan Naraine

| 06/11/07

Ok, but it is a beta, a test release, wait until the final release. DonnieBoy | 06/11/07

i came from a windows background and my stuff does not crash DonnieBoy SO.CAL Guy | 06/11/07

Right, viruses, crashes, and always some idiot claiming Windows does not DonnieBoy | 06/11/07

Right, viruses, crashes, and always some idiot claiming Windows does not SO.CAL Guy | 06/11/07

Message has been deleted. BFD | 06/11/07

You just proved my theory , GRACIAS . Intellihence | 06/12/07

Give me a break Rndmacts | 06/12/07

Message has been deleted. Intellihence | 06/12/07

must be you... doh123 | 06/11/07

Are you suggesting I'm lying? NonZealot | 06/11/07

Perhaps you aren't lying . Intellihence | 06/12/07

re: To be fair, I installed it M.R. Kennedy | 06/11/07

What's Safari's Plug-in Model? larry@... | 06/11/07

That's interesting anthony@... | 06/11/07

usly the public release is stable and it's the version right SO.CAL Guy | 06/11/07

Sucks to be you then tic swayback | 06/11/07

What? BFD | 06/11/07

What What? tic swayback | 06/12/07

HAHAHA!!! What a knockout!! NonZealot | 06/12/07

You truly are that stupid then . Intellihence | 06/12/07

It's a beta. duh. elvis2000hub-zdnet@... | 06/12/07

Maynor dahlenu | 06/12/07

Maynor has tons of credibility NonZealot | 06/12/07

Maynor has as much credibility as you do Zealot . Intellihence | 06/12/07

Safari is the one piece of good news from yesterday... KristolSeth | 06/12/07

Safari is junk on the Mac, why bother to make a PC version? K B | 06/12/07

READ THE TRUTH! An_Axe_to_Grind | 06/12/07

I love this guy's site An_Axe_to_Grind | 06/12/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Infrastructures for Innovation Qwest Communications "Nearly nine out of ten senior IT and business executives say that data ... Download Now
The Journey Along an Information-Led Transformation IBM Corp. The cost of embedding information technology into every device we ... Download Now
Software Trial: AdminStudio(r) Migrates MSIs to Windows(r) 7 and App-V(r) Fast Flexera Software AdminStudio? allows IT to quickly prepare reliable virtual and MSI ... Download Now

Click Here

Recent Entries

Blogs From Our Sponsors

Top Rated

And the most popular password is...+34 votes
Microsoft readies emergency IE patch to counter public exploits+33 votes
Report: 48% of 22 million scanned computers infected with malware+32 votes
Microsoft confirms 17-year-old Windows vulnerability+31 votes
Microsoft says Google was hacked with IE zero-day+31 votes
MS Patch Tuesday heads-up: 13 bulletins, 26 vulnerabilities+26 votes
Bogus IQ test with destructive payload in the wild+22 votes
Haiti earthquake themed blackhat SEO campaigns serving scareware+21 votes

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Archives

Favorite Links

41

ZDNet Blogs

White Papers, Webcasts, and Downloads

The Three Ps of Evaluating Managed Network Services Qwest Communications To reduce costs and keep IT resources focused on the core business, more ... Download Now
Twelve Ways to Reduce Costs with Microsoft(r) SQL Server(r) 2008 Microsoft Many organizations are finding themselves having to deal with difficult ... Download Now
Nucleus Research Guidebook: Leveraging Value from SAP with IBM Cognos IBM Are you an SAP user preparing to invest in business intelligence (BI) or ... Download Now

Popular Sanity Saver Videos

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More