Smokey's Security Weblog

veritas odium parit

Multiple Highly Critical Vulnerabilities in Apple Safari 3.x for Windows and Mac OS X

Multiple highly critical vulnerabilities are reported in Apple Safari 3.x for Mac OS’s and Safari 3.x for Windows XP and Vista, it concern all versions prior to 3.2

Impact of the vulnerabilities

– Multiple vulnerabilities exist in zlib 1.2.2, the most serious of which may lead to a denial of service.
– Processing an XML document may lead to an unexpected application termination or arbitrary code execution.
– Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution.
– Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution.
– Viewing a large maliciously crafted JPEG image may lead to an unexpected application termination or arbitrary code execution.
– Viewing a maliciously crafted image may lead to an unexpected application termination or arbitrary code execution.
– Sensitive information may be disclosed to a local console user.
– Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution.
– Visiting a maliciously crafted website may lead to the disclosure of sensitive information.

Original Advisory: Apple

Vendor patches to close these vulnerabilities are available, please update to version 3.2 asap.

Downloads

Safari 3.2 for Windows: here
Safari 3.2 for Tiger: here
Safari 3.2 for Leopard: here

Advertisements

November 15, 2008 - Posted by | Advisories, Alerts, Downloads, Friends, Malware, Recommended External Security Related Links, Uncategorized, Vulnerabilities | , , , , , , , , ,

1 Comment »

  1. […] StarOffice/StarSuite 7.x/8.x Multiple Highly Vulnerabilities reported After the Apple Safari 3.x alert, another alert […]

    Pingback by Sun StarOffice/StarSuite 7.x/8.x Multiple Highly Vulnerabilities reported « Smokey’s Security Weblog | November 15, 2008 | Reply


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: