Jump to content
Sign in to follow this  
TCH-Thomas

Safari For Windows Multiple Vulnerabilities

Recommended Posts

From:

Secunia (secunia.com/advisories/30775/)

 

Rating:

Highly critical

 

Description:

Some vulnerabilities and a security issue have been reported in Apple Safari, which can be exploited by malicious people to disclose sensitive information or to compromise a user's system.

 

1) A boundary error within the handling of BMP and GIF images can be exploited to trigger an out-of-bounds read and disclose content in memory.

 

2) A security issue exists due to Safari automatically launching downloaded executable files from sites in a Internet Explorer 7 zone with the "Launching applications and unsafe files" option set to "Enable", or sites in the Internet Explorer 6 "Local intranet" or "Trusted sites" zone.

 

3) An unspecified error in the handling of Javascript arrays can be exploited to cause a memory corruption when a user visits a specially crafted web page.

 

Successful exploitation of this vulnerability may allow execution of arbitrary code.

 

The vulnerabilities are reported in Safari for Windows prior to version 3.1.2.

 

Solution:

Update to version 3.1.2.

apple.com/support/downloads/safari312forwindows.html

Or use the Apple Software Updater.

Share this post


Link to post
Share on other sites

Thanks Thomas. I use Safari sometimes, mainly to verify consistency in how a page displays in different browsers, so I'll Upgrade right away.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

×
×
  • Create New...