A New Security Issue in Safari for Windows, NOT the "Blended Threat" Described in Microsoft Security Advisory 953818

Safari for Windows can download a fake icon(Shorcut dot LNK file) to Desktop. Then user might launch it because the icon can look legitimate. This results in command execution, which is as dangerous as remote code execution.

A mitigating factor is Safari's "Downloads" window will pop up and it shows the downloaded icon(Shorcut dot LNK file) - both its name and its look and the arrow(symbol of Shorcut dot LNK file). So user is well informed regarding it as Safari downloads it.

Please note this issue is NOT the "blended threat" described in Microsoft Security Advisory 953818 which Aviv Raff is working on with Microsoft.
Pagetop
next «  home  » prev

trackback


この記事にトラックバックする(FC2ブログユーザー)

Male Enlargement Pills

Hey, I appreiciate your website. The information is on target and answered some of my questions. Good job, keep it up because this is a good pge.
  • 2009-04-25 :
  • Male Enlargement Pills

credit repair company

I understand that FICO 08 will weigh the account balances more heavily than the previous FICO versions. It use to be a 30% weight – but now it is more.
  • 2009-08-07 :
  • credit repair company
Pagetop

comment

管理者にだけメッセージを送る

No title

thx for warn

Only the site author may view the comment.

Comment is secured, only the site author may view the comment.
Pagetop
« next  home  prev »
Pagetop
Profile

Author:LIUDIEYU
Welcome to FC2

Links
Add this blog to links
New Post
New Comment
New Trackback
Monthly Archive
Category
Search


RSS Feed