CVE-2009-0123

Name of the Vulnerable Software and Affected Versions Apple Safari on Mac OS X 10.5 and Windows

Description The issue is related to the handling of RSS feed URLs in Apple Safari, allowing remote attackers to read arbitrary files on a client machine. This can be exploited to gain access to sensitive information or execute arbitrary script code in the local security zone. The vulnerability is associated with the feed, feeds, and feedsearch URL types for RSS feeds.

Recommendations For Apple Safari on Mac OS X 10.5 and Windows, consider disabling the handling of RSS feed URLs as a temporary workaround until a patch is available. Restrict access to sensitive information and avoid using Safari for handling RSS feeds until the issue is resolved.