Focus on Apple
Apple releases Safari 3.2.1 for Windows Jun 19 2008 10:49PM
Todd Woodward (todd_woodward symantec com)
Apple today released "APPLE-SA-2008-06-19 Safari v3.1.2 for Windows".

It addresses the following issues:


Type: Inadvertent information disclosure; maliciously crafted BMP or GIF
Resolution: Additional BMP and GIF image validations
Credit: Gynvael Coldwind of Hispasec

Type: Arbitrary code execution; Untrusted downloaded code execution
Resolution: Change default download location and user prompts
Credit: Aviv Raff

Type: Execution of arbitrary code; Malicious website
Resolution: Prevent the automatic execution of downloaded files
Credit: Will Dormann of CERT/CC


Type: Unexpected application termination; Arbitrary code execution;
Malicious website; Memory corruption
Resolution: Improved bounds checking
Credit: James Urquhart

No Knowledge Base article has been published yet, but when published, it
should be linked from the following Knowledge Base article:


Todd D. Woodward
Technical Support Engineer
NetBackup Data Protection Group
Symantec Corporation
Springfield, Oregon

Office: 541-335-7441

[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus