Getbig.com: American Bodybuilding, Fitness and Figure

Getbig Main Boards => Gossip & Opinions => Topic started by: GRACIE JIU-JITSU on July 23, 2010, 07:40:58 AM

Title: We're Apple we dont have virus. -Just holes-
Post by: GRACIE JIU-JITSU on July 23, 2010, 07:40:58 AM

A vulnerability in Apple's Safari browser exposing users' personal information has been revealed by a security researcher. Jeremiah Grossman of White Hat Security, Inc. discovered that an AutoFill feature - which is enabled by default in Safari. - can be used to obtain a user's name, company, address, and email, as well as the content of other fields that begin with a letter. The weakness also exists in earlier versions of Microsoft's Internet Explorer. Grossman has a proof-of-concept web page up that will let users check to see if they are vulnerable.

Basically, the exploit involves using JavaScript to simulate keypresses from A to Z on hidden fields with titles like “Name,” “Company,” “Address,” and “Email.” When the "AutoFill using info from my Address Book card" default option is left enabled, Safari auto-completes the field and the info is sent to the attacker. As Grossman states in his blog post describing the vulnerability, "the entire process takes mere seconds," and enables attackers to capture information for further mayhem, "including email spam, (spear) phishing, [and] stalking." Getting creative, Grossman even notes the possibility for "blackmail if a user is de-anonymized while visiting objectionable online material," presumably with a bogus site containing adult content which would include the AutoFill exploit. The vulnerability only exists if the first character in the field is a letter; numbers won't work.

Grossman says he reported the vulnerability to Apple on June 17, in accordance with standing policy among good-guy hackers to let a company fix its flaws before making them public. However, he says, Apple hasn't responded in any way at all, other than an automated acknowledgement that his email was received. After a follow-up message, Grossman says he got no response whatsoever, "human or robotic.” He's releasing this information now to warn users about the vulnerability, so they can protect themselves by disabling the default feature.

Title: Re: We're Apple we dont have virus. -Just holes-
Post by: JOHN MATRIX on July 23, 2010, 10:28:44 AM

you cant even flush a shit down the toilet these days without some asshole being able to get your personal info from it.

Title: Re: We're Apple we dont have virus. -Just holes-
Post by: El Diablo Blanco on July 23, 2010, 11:15:34 AM

Correction.

Apple users are Assholes

Title: Re: We're Apple we dont have virus. -Just holes-
Post by: epic_alien on July 23, 2010, 01:24:10 PM

we dont like being told what to do

Title: Re: We're Apple we dont have virus. -Just holes-
Post by: Army of One on July 23, 2010, 01:33:05 PM

Quote from: GRACIE JIU-JITSU on July 23, 2010, 07:40:58 AM

we dont have virus. -Just holes-

Apple lifted this statement from every pornstars Resume