I almost skipped this article assuming it was one of these "hacks that's not a hack" kind of things. This is a pretty major security issue, especially since the hack is claimed to potentially expose email as well. The Exchange server integration means some pretty sophisticated phishing could be done to get access to confidential info. Hope Apple patches this flaw fast.
9 comments
[ 3.8 ms ] story [ 28.0 ms ] threadWorth noting that they didn't break out of the sandbox, an app downloaded from the App Store could get access to the same data they did.
http://vreugdenhilresearch.nl/Pwn2Own-2010-Windows7-Internet...