777pirat
About
- Username
- 777pirat
- Joined
- Visits
- 0
- Last Active
- Roles
- member
- Points
- 2
- Badges
- 0
- Posts
- 1
Reactions
-
Apple has closed an ancient macOS Safari security hole
coolfactor said:I'm a bit confused why this is a browser fix and not a lower system-level fix?
I've installed the update on macOS and can still access 0.0.0.0 since I have nginx running locally. It just loads the default nginx splash page. The article says that Safari would block access to any 0.0.0.0 requests, but that's apparently not the case.
Any experts out there?
It's because it's not fixed yet. Seems to be fixed in iOS 18.x releases. (Which beats me - why they don't roll-out a sec.fix asap to this)