Microsoft warned on Friday that Apple’s Safari Web browser for Windows exposes PCs to a security hole that permits potentially malicious files to be downloaded to a user’s machine and run without prompting the user.
“Apple does not feel this is a issue they want to tackle at this time,” Security Researcher Dhanjani wrote on his blog. “In my most recent email to Apple, I suggested that they incorporate an option in Safari so the browser can be configured to ask the user before anything is downloaded to the local file system. Apple agreed it was a good suggestion:
Dhanjani further said that he has brought three security vulnerabilities to Apple’s attention and that Apple said it plans to fix one of the issues reported, an undisclosed Safari vulnerability that could allow a remote attacker to steal files from the user’s system.
Apple received considerable criticism in March when it opted to make its Safari Web browser available to Windows users by default, as part of an iTunes update. Mozilla CEO John Lilly said Apple’s decision to do so “borders on malware distribution practices.”
Source: Washington PostFiled under Enterprise Software, Security | Tags: Apple, Microsoft, MS Windows, safari, Security Flaw, Washington post | Comment Below