A few weeks ago, Apple released a patch for their Safari browser. The patch included a fix for a RSS feed handling vulnerability I had reported to them a while back. The advisory can be found here . This particular vulnerability is actually a variation of a previous RSS feed handling vulnerability …
Blogs / Billy (BK) Rios
Reader Reviews
Welcome to the Technorati blog page for "Billy (BK) Rios"! This page features information about the blogs that are in Technorati's community. Are you a reader or a fan of this blog? Have something to say about this blog? Write a review or a comment about it! You can write a review that will appear right here and, if you choose, in your twitter stream as well.
Latest posts
View all »-
Safari 3.2.2 Feed Protocol Handler Issues
http://xs-sniper.com/blog/2009/06/09/safari-322-feed-pr... -
Catching Up!
http://xs-sniper.com/blog/2009/03/30/catching-up/Whew! It’s been a busy couple of months for me. I’m always curious as to how I get so much on my plate. A quick recap of some of the stuff I’ve been working on / or have coming in the near future: 1) HITB Dubai is almost here! I’ve been selected to give two talks at HITB in Dubai. …
-
Stealing More Files with Safari
http://xs-sniper.com/blog/2009/02/13/stealing-more-file...Apple recently patched a vulnerability in Safari’s RSS feed handling mechanisms I reported to them. The advisory for Safari on OS X can be found here and the Safari for Windows advisory can be found here . As always, Apple was excellent in their handling of the issue. Two other researchers reported this same vulnerability to Apple (Clint Ruoho of Laconic Security and Brian Mastenbrook). …
34 blog reactions
View all »What are reactions? (more)
Blog Reactions are the number of links to the blog's home page or its posts from other blogs in the Technorati index. A subset of blog reactions, Technorati Authority is the number of unique blogs linking to this blog over the last six months. The higher the number, the more Technorati Authority the blog has. To see reactions to specific posts, you can find them listed on Technorati post pages.
-
Top Five Web Application Security Blogs
http://misc-security.blogspot.com/2009/06/top-ten-web-a... -
What Motivates Hackers? Why, Money of Course.
http://misc-security.blogspot.com/2009/05/what-motivate... -
Updates on the GIFAR vulnerability
http://riosec.com/updates-on-gifar-vulnerability -
Blog :: by Wade Woolwine
http://www.wadewoolwine.com
Top Tags
What this blog is about
- apple
- application security
- ar-15
- arp
- blended threat
- bluehat
- carpet bomb
- cleartext
- cookies. secure
- cross application
- defense
- dependencies
- document.cookie
- file theft
- firefox
- firefoxurl
- ghetto javascript
- gopher
- grey goose
- housekeeping
- insecure protocols
- internet explorer
- legacy
- mozilla
- network
- network security
- opera
- poison
- protocol handling
- pwnage
- safari
- security
- set-cookie
- side jacking
- surf jacking
- uri
- web application security
- wifi
- xss
- xss filter
No reader reviews yet.
Add a reader review