Ad: Manage updates with the Download App
  • CNET
  • All safari posts

safari

iPhone's Safari dialing feature can be hacked

Intended to be a convenience, the unique dialing feature included in the iPhone version of the Safari browser might soon become a nightmare.

SPI Labs' lead researcher Billy Hoffman says that the feature that is designed to dial any number displayed on a Web page after a user taps it is subject to various attacks, including cross-site scripting and drive-by downloads. This issue was first reported to Apple on July 6, but Hoffman believes the "unique urgency" and its potential to affect a large number of people warranted public disclosure.

Potential uses of this vulnerability cited by Hoffman … Read more

iPhone: EDGE vs. Wi-Fi test results

After two days of timing and comparing the iPhone's download speed between AT&T's EDGE network and Wi-Fi, our CNET Lab has just released its official results.

EDGE averaged a download time of 15.69 minutes for a 9.4MB file, while Wi-Fi required a mere 1.18 minutes. In the end, our test results indicate that the iPhone's Wi-Fi connection is about 13 times faster than using EDGE.

Tests were run at different points throughout the day to account for changes in network bandwidth, and the iPhone was reformatted after each download to ensure that … Read more

Apple rolls out web development guide for iPhone apps

Just in time for the iPhoneDevCamp this weekend (where Web developers will gather for a no-holds-barred effort to develop iPhone apps), Apple has released a Web development guide for the iPhone. The guide provides useful hints about the iPhone's abilities, how to integrate your app with the iPhone's phone, mail, and maps, the kinds of media types that the Safari browser supports, and more. Of course, there's also a link to the Safari for Windows beta, plus additional information about the Safari Webkit. If you're a potential iPhone developer, the guide is worth checking out. As … Read more

PicLens: Instant photo galleries off the Web

Galleries of images set off against a black background have become common as software and Web sites try to help people show off their photos better. Cooliris' PicLens offers a clever way to do set up such galleries from many Web sites on the fly.

The PicLens browser extension can convert a bunch of images from Google and Yahoo image search, Flickr, Picasa, Facebook and RSS Media-based sites and other locations into a full-screen gallery of pictures. The photos slide by at a stately pace or advance when the user clicks the keyboard's arrow key, and a handy filmstrip … Read more

Title buffer overflow in Safari 3.0.2 for Windows

Following last Friday's release of Safari 3.0.2 comes a brand-new Monday morning vulnerability. Researcher E. Azizov of ITdefence in Russia posted on the Bugtraq newsgroup a demonstration of a buffer overflow in the Windows XP version of Apple's browser. Specifically, the new vulnerability affects the title buffer in Safari bookmarks. If the title of a page you wish to bookmark in Safari 3.0.2 exceeds 1,024 bytes, as soon as you save the bookmark (Ctrl+D) your computer may become compromised.

Apple updates Safari with version 3.0.2 for Windows (beta)

Roughly one week after releasing Safari 3.0.1 for Windows (beta), Apple today released Safari 3.0.2 for Windows (beta). The Safari 3.0 beta patches issued today are for Apple Mac OS X as well as Windows XP and Windows Vista users, and basically piggybacks Apple Security Update 2007-006 intended only for Mac OS users who have installed Safari 3.0 beta.

Patch for Safari This patch affects users of Windows XP or Vista and does not affect Mac OS X, and addresses the vulnerability in CVE-2007-2398. In Safari Beta 3.0.1 for Windows, a timing … Read more

Let's do this thing

Well, the Macalope's faithful and well-groomed readers know that he doesn't suffer silly punditry lightly. And this may be only his second post over at his new digs (hey, did you check out the fussball table?!), but let's see if he's become a domesticated animal or if he still rolls the way he used to.

Before linking to the piece in question, let's take a look at a quote.

Apple excels in creative and innovative marketing. Often it's what they don't tell you that creates the most buzz. For example, we know next … Read more

Safari

Category: Browsing

Safari is Apple's Web browser. It's one of the more speedy browsers around, and it was one of the first Web browsers to introduce a built-in RSS reader. It's currently in its third iteration and recently went cross-platform--leaving its Mac-only status and adding the ability to work on Windows, too.

Safari began as an in-house replacement to Microsoft's Internet Explorer for Mac, which Microsoft didn't update or improve on at the same rate as as it did for its Windows counterpart--and eventually dropped shortly after the release of Safari.

Safari has recently gotten … Read more

iPhone apps: Try before you buy

You don't need an iPhone to try out iPhone apps. Since the application platform is just a browser, you can see right now how some of the apps that people are building will look on your phone.

We've covered Digg and OneTrip already, but to see even more iPhone apps all together on one page, check out iPhoneApplicationList. For best results you should use Safari, although I've also had good luck previewing iPhone apps in Firefox.

Since the apps are just Web pages, no doubt there will be many, many iPhone app directories springing up soon.

Via: … Read more

Yet another URL flaw for Safari 3.0 for Windows beta

Security researcher Robert Swiecki, who two days ago disclosed a URL vulnerability within the new Safari 3.0 for Windows beta, has another. The new flaw requires a user to visit a specially crafted Web page. There, an attacker can write whatever name in the URL toolbar and fill the client browser window with arbitrary content. He provides an example (link should be viewed within Safari).

In response to other Safari 3.0 vulnerabilities, Apple yesterday released an updated version that addresses three of the public vulnerabilities. Swiecki says he tested this latest vulnerability on Safari 3.0.1 (522.… Read more