• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Apple Safari Cross-Domain Dialog Box Spoofing Vulnerability

Solution:
Apple has released an advisory (APPLE-SA-2004-12-02) dealing with this and other issues. Please see the referenced advisory for more information.


Apple Safari 1.2.3

• Apple SecUpd2004-12-02Jag.dmg
  For Mac OS X v10.2.8:
  http://www.apple.com/support/downloads/SecUpd2004-12-02Jag.dmg


• Apple SecUpd2004-12-02Pan.dmg
  For Mac OS X v10.3.6:
  http://www.apple.com/support/downloads/SecUpd2004-12-02Pan.dmg


• Apple SecUpdSrvr2004-12-02Jag.dmg
  For Mac OS X Server v10.2.8:
  http://www.apple.com/support/downloads/SecUpdSrvr2004-12-02Jag.dmg


• Apple SecUpdSrvr2004-12-02Pan.dmg
  For Mac OS X Server v10.3.6:
  http://www.apple.com/support/downloads/SecUpdSrvr2004-12-02Pan.dmg