InformAction Forums

... if you use Mac OS X: http://arstechnica.com/security/2016/02 ... s-elusive/

The auto-update library depends on WebKit?! Why?!

The auto-update library depends on WebKit?! Why?!

Have you ever run, what should be stand-alone applications, that do embed the IE rendering engine within, thereby making that application susceptible to IE exploits.



Mozilla [had] run into similar a long time back, Bug 435743 - Extension manager should load updates served from https signed by any installed CA.

And Malwarebytes has something going on currently, Malwarebytes Anti-Malware Vulnerability Disclosure.

And Mozilla may currently have an issue with "fonts", Vulnerability Spotlight: Libgraphite Font Processing Vulnerabilities.

therube wrote:Have you ever run, what should be stand-alone applications, that do embed the IE rendering engine within, thereby making that application susceptible to IE exploits.

...

therube wrote:And Mozilla may currently have an issue with "fonts", Vulnerability Spotlight: Libgraphite Font Processing Vulnerabilities.

According to that link, Mozilla doesn't anymore, but latest stable release SeaMonkey does...

therube wrote:Have you ever run, what should be stand-alone applications, that do embed the IE rendering engine within, thereby making that application susceptible to IE exploits.

Yes, it's called Windows Explorer, but I would have thought that Apple would have known better than that.

Sparkle isn't made by Apple.

Oh, true, I missed that.