iTWire - More Safari security bugs fixed

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

More Safari security bugs fixed

E-mail

by Stephen Withers
Monday, 25 June 2007
Apple has released a third beta of Safari 3, fixing three cross-platform vulnerabilities plus one that is Windows-specific. Featured Whitepaper 5 Best Practices for Smartphone Support The bug specific to the Windows implementation is in Apple's WebCore framework. It allows a web page to change the contents of the address bar without loading the corresponding page, providing a means to spoof another site. The cross-platform issues are a cross-site scripting vulnerability in Safari itself, another cross-site scripting vulnerability in WebCore, and an invalid type conversion in WebKit (the open source project on which Safari is based) that could cause memory corruption and hence either an unexpected termination or the execution of arbitrary code. The new version is available via the Apple Software Update utility or from Apple's web site. In related news, Security Update 2007-006 for Mac OS X 10.3.9 and 10.4.9 patches WebCore to address the cross-site scripting vulnerability and WebKit to remove the invalid type conversion. These are the same issues fixed by Safari 3.0.2, and so the update will not be automatically offered to Macs which have the Safari 3 beta installed. The update is available via Software Update or from Apple's web site.{moscomment} Tags See All Tags Apple Browsers Internet Macintosh Web Windows Powered By Joomla Tags Please enable JavaScript in your browser to post your comment!

< Next story in category		Previous story in the category >

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.