Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apple Fixes Safari "Carpet Bomb" Windows Vulnerability

Posted by kdawson on from the no-more-carpet-tax dept.

Titoxd writes "Apple has released a new version of Safari that fixes the carpet bomb vulnerability in Safari 3.1 for Windows. This comes in the heels of Microsoft recommending against using Safari in Windows, as well as the release of code exploiting this vulnerability."

12 of 99 comments (clear)

  1. But did they fix the real bug? by rustalot42684 · · Score: 5, Insightful

    Did they fix the bug where Safari installs as an iTunes update? I'd say that that is a fairly severe bug right there.

    1. Re:But did they fix the real bug? by 99BottlesOfBeerInMyF · · Score: 4, Insightful

      Last I checked the "new" software was still checked by default - and I really don't feel like installing anything that ASU comes with right now. So does anyone know if they finally fix THAT idiocy?

      Why would they need to "fix" it. It is operating as they prefer it, the same as all the software MS includes in Windows that most of us would prefer we did not have to install. Is it so difficult for you to uncheck that box if you're performing an update?

    2. Re:But did they fix the real bug? by torchdragon · · Score: 5, Insightful

      Yes.

      Recently, the Java update software has begun asking for the Open Office installer to be installed on the system during an update for Java. Several users at my company have clicked straight through and added more crap to their desktop/registry/uninstall information.

      Can we blame the users for not reading every detail and not unchecking a checkbox? Yes.
      Can we also blame software vendors who are relying on the aforementioned user behavior to add their software to your computer on the sly? Yes.

      Its a bad practice and it needs to stop.

      If something is required for the operation of a software package, default to selected.
      If something is optional or not required for the operation of a software package, default to unselected.

      Why are we allowing marketing to override good engineering?

      --
      "Don't feel bad for me child; I'm the monster that hides under your bed."
    3. Re:But did they fix the real bug? by lusiphur69 · · Score: 5, Insightful

      The real question is why are you defending Apple's unethical bundling - when the same is performed by Microsoft we criticize it. Call a spade a spade or you look foolish. Face it, this kind of practice is unacceptable, whether or not it comes from your favorite company.

      Is it so difficult for you to uncheck that box if you're performing an update? For me, no. For millions of uneducated end users, it is. Get it?
    4. Re:But did they fix the real bug? by Anonymous Coward · · Score: 4, Insightful

      No, it isn't like that. IE7 is an upgrade to something already installed and, to most end-users, in use. Safari is an entirely new piece of software. There's a difference, whether you like it or not.

    5. Re:But did they fix the real bug? by Calibax · · Score: 2, Insightful

      Nevertheless, IE7 broke a bunch of stuff at my company. The IT folks spent a considerable amount of time and and energy getting everything on the intranet working with it.

      I would strongly argue that IE7 was a new product with a similar name, and not an upgrade.

  2. What a stupid vulnerability by sakdoctor · · Score: 2, Insightful

    It's pretty common that some badly configured web server will send content to me that firefox will then ask if I want to download.

    Just letting it download and then moving on to the next file is...well such an obviously stupid behaviour.

    Also, please don't let carpet bombing become the next security buzzword along with bricking and zero-day.

  3. Did Microsoft fix the vulnerability in IE? by argent · · Score: 2, Insightful

    Did Microsoft fix the vulnerability caused by Internet Explorer running with its current directory set to the Desktop and its library search path going through the Desktop? Because until they do that, the actual vulnerability in Windows that Safari made slightly easier to exploit still exists.

    1. Re:Did Microsoft fix the vulnerability in IE? by The+End+Of+Days · · Score: 3, Insightful

      The actual vulnerability is that Safari downloaded files without the user's permission. Trying to make this a Windows issue smacks of fanboyism.

    2. Re:Did Microsoft fix the vulnerability in IE? by gad_zuki! · · Score: 3, Insightful

      How did safari even get on most of those computers. I think people are seriously missing the big issue here.

      Imagine if Netscape won the browser wars and you installed Windows Media Player which later on, in the middle of then night, downloaded and installed IE for you. If Office 2008 did this on OSX there would be riots in the street. When Apple does it, its of course Microsoft's fault.

      Granted, there's a lot of blame to go around, but claiming this is a MS problem is being pretty unfair and only shows up that Apple can do anything, and few will complain.

  4. Hmm? by koinu · · Score: 5, Insightful


    Safari downloads files (e.g. dynamic libraries) in user directories where the Internet Explorer could autoload them on start. Isn't the bigger problem within Internet Explorer? Why did Microsoft setup a library path to a user's directory at all?

  5. Amazed at the hubris in these comments by brunes69 · · Score: 2, Insightful

    While I am no Microsoft fan, I am amazed at the hubris of comments in this thread.

    Surely anyone with half a brain HAS TO ADMIT that the Safari vulnerability is FAR WORSE than IE setting it's current path to the windows desktop.

    In fact, the Safari vulnerability can be exploited for root access to the box without IE being in the equation AT ALL. Just pick some program or two that are likely to be installed on any user's computer ( iTunes, Firefox? ), and download .exe files with those names to the desktop. *BOOM*, next time someone wants to run iTunes or Firefox, if they click that exe by accident instead of their shortcut (how would they know any different? ), they're toast.