Apple Safari Stylesheet Redirection vulnerability
There’s a 0-day vulnerability affecting Safari 4.x users, it’s not critical, but it is important to be aware of it.
<link rel="stylesheet" type="text/css" href="www.yahoo.com">
//setTimeout is used just to wait for page loading
Listing 01 – Apple Safari Stylesheet Redirection PoC
Cesar Cerrudo has discovered this vulnerability, and discussed that Safari wasn’t able to display the LINK specified in href value, instead it reads the stylesheets to redirect to a target URL.
Malicious user may take advantage of this vulnerability to steal sensitive information.
Be cautious when surfing the net!