logo
Published on FierceCIO (http://www.fiercecio.com)

Apple patches three Safari flaws in Windows

By
Created Jun 13 2007 - 8:01pm

Well, that was fast. As you'll recall, Apple released a beta of Safari 3.0 for Windows on Monday and before the day was out, hackers had released details on a number of security flaws in the browser [1]. A mere three days later, however, Apple has released a fix for at least one of those flaws, a remote code execution bug found by Danish hacker Thor Larholm, as well as two previously unknown flaws (it's worth noting that none of these flaws affect the OS X versions of the browser). While this is certainly an encouraging turn of events (given the usual 2-3 month wait for IE patches), we shouldn't forget that four denial-of-service bugs and two remote execution vulnerabilities, discovered by "MacBook hacker" David Maynor [2], still remain. Will Apple be able to keep up with Windows hackers? Stay tuned.

For more on the patches:
- see this ZDnet article [3]

Source URL:
http://www.fiercecio.com/techwatch/story/apple-patches-three-safari-flaws-in-windows/2007-06-14

Links:
[1] http://www.dailytechrag.com/story/safari-3.0-for-windows-blazing-fast-yet-insecure/2007-06-12
[2] http://www.dailytechrag.com/story/macbook-hack-finale-redux/2007-03-02
[3] http://blogs.zdnet.com/security/?p=300