Cenzic's web application security report for the first half of the year blames WebKit problems and phone software bugs for Safari and Chrome flaws. WebKit is a layout engine designed to allow web browsers to render web pages.
WebKit provides a set of classes to display web content in windows, and implements browser features. It was originally created as a fork of KHTML as the layout engine for Apple's Safari, but is now portable to many other computing platforms and is used in Google's Chrome Browser.
The "Cenzic Q1,Q2 2010 Trends Report" (http://www.cenzic.com/downloads/Cenzic_AppSecTrends_Q1-Q2-2010.pdf) saw a reduction in web application related vulnerabilities as a percentage of total reported vulnerabilities in commercial products. Web vulnerabilities were at about 66% of total reported vulnerabilities of 4,...| Read more »