The latest Chrome version 220.127.116.11 and Safari 4.0 has fixed one of the vulnerabilities which was exploited in WebKit earlier this month.
As H Online describes: A vulnerability in WebKit can be exploited by an attacker to crash a tab or execute arbitrary code in Google Chrome due to a memory corruption issue in WebKit’s handling of recursion in certain DOM event handlers. For an attack to be successful, a victim must first visit a maliciously crafted website. The malicious code, however, will be sandboxed, limiting the damage that an attacker can do when exploiting the vulnerability.
Thanks to mabdul for sending this.
- WordPress users may want to avoid Microsoft’s new Internet Explorer 8
- Look out IE, Firefox, Chrome is getting much better
- Windows 7 gives Firefox 3, IE8 speed boosts, while Firefox 3.5 slows down
- Mozilla marks June for Firefox 3.5 release candidate
- Firefox Mobile (Fennec) Alpha Up for Windows Mobile Testing
- Google’s Chrome was ‘hackable’ at Pwn2Own contest
- Chrome-on-Mac precursor rough but workable
- Opera Employee Blogging Policies
- Your browser talks too much: How surfers can protect private info
- Should Microsoft even bother with Internet Explorer 9?
- Why Firefox Is My Preferred Browser
- 10 handy Firefox about:config hacks
- Mozilla ‘Prism’ Brings Web Apps to Desktop
- Safari, Opera Users Lag Behind in Security Updates
- Are Mobile Web Browsers Even Necessary?
- Mach5 Windows Mobile web browser gives Skyfire some competition
From .PDF (download)
“This year, Secunia published advisories for the four most widely used web browsers: Internet Explorer (IE), Safari, Opera, and Mozilla Firefox. 31 vulnerabilities were reported for Internet Explorer (IE 5.x, 6.x, and 7), including those publicly disclosed prior to vendor patch as well as those included in Microsoft Security Bulletins. Continue Reading
Continue reading at h online
Thanks to mabdul for a link.
- 10 IE Browser Settings for Safer Surfing
- 5 ways to power up Internet Explorer 8
- Microsoft Crawling All Over IE 8 Bugs
- Internet Explorer 8: Why make the leap?
- eBay launches bespoke version of IE8
- Find the right Firefox add-ons
- Safari hacker talks security
- The genius behind Google’s web browser
- Opera seeks dominance in world of widgets
- Opera Still Cooking With CSS3 On the Way
Now this is something new. According to NSSLabs, over 50% of malware infections occur via internet download. In the recent study they have tested 6 most popular web browsers to see how well they protect surfer against web based malware.
Effectiveness results (more is better)
Internet Explorer 8 (RC1) – 69%
Firefox 3.07 – 30% Continue Reading
“He won a cash prize and got to keep the hardware. Details of the vulnerability, which was described by contest sponsor TippingPoint ZDI as a “brilliant IE8 bug!” are being kept under wraps.
“Nils” also scored a clean hit against Apple’s Safari (he was the second hacker to exploit Safari) and, later in the afternoon, he exploited a Firefox zero-day flaw to claim the trifecta.”
In case you are interested, Mac was hacked in 10 seconds.
Nothing about Opera or Chrome yet.
“eBay scammers have been exploiting unpatched vulnerabilities in the Firefox and Internet Explorer browsers to deliver counterfeit pages that try to dupe people surfing the online auction house to bid on fraudulent listings.”
Continue reading at The Register