A recently-discovered bug in Apple's Safari browser potentially allows hackers to access files stored on your computer, including cached copies of passwords and other sensitive data. While this vulnerability isn't as severe as the one discovered in Microsoft's Internet Explorer last month, one that included the possibility for remote code execution, giving the hacker full control of your machine, this still has the potential for mayhem and identity theft.

The vulnerability exists in Safari's RSS feed reader, affecting both Mac and Windows versions of the software. You don't have to actually use the RSS reader to fall victim to an attack; rogue web pages could potentially trigger the bug without your knowledge. For Mac users, at least, there's a work-around. You can change the default RSS reader to a third-party program from within Safari's preferences menu. As long as it's not set to the Safari default, you should be safe. Apparently this method doesn't fix the problem with the Windows port, as the discoverer of the bug recommends its users switch to another browser for now if they wish to remain safe.

Apple is aware of the issue and confirmed that the bug exists. There is no word yet from the company on when patches will be available to correct the problem.

This story around the web: