Aviv Raff On .NET - Apple releases a fix for Safari

Thursday, June 14, 2007

Few hours ago, Apple released a new minor version (v3.0.1 Beta) of Safari for Windows.

From Apple's advisory:

CVE-ID:  CVE-2007-3185
Available for:  Windows XP or Vista
Impact:  Visiting a malicious website may lead to an unexpected
application termination or arbitrary code execution
Description:  An out-of-bounds memory read issue in Safari 3 Public
Beta for Windows may lead to an unexpected application termination or
arbitrary code execution when visiting a malicious website.  This
issue does not affect Mac OS X systems.

I've tested the new version by running Hamachi again. Apparently, this version fixes the vulnerability.

This patch also fixes the command injection vulnerability that was found by Thor.

Apple decided not to credit any of the security researchers in their advisory, and I don't think this is a smart move.

Thursday, June 14, 2007 4:56:04 PM UTC | Comments [1] | Security

Thursday, June 14, 2007 7:25:43 PM UTC

I've found some more bugs in the HTTP Auth dialogue: http://www.bitsploit.de/archives/435-HTTP-Auth-Bugs-in-Apples-Safari-3-Beta-Windows.html

(Currently not working due to a problem after a changed webroot. I hope, it'll be only the next days.)

Alex | blogAT NOSPAMbitsploit dot de

All comments require the approval of the site owner before being displayed.

Name
E-mail
Home page

	Remember Me
Comment (Some html is allowed: `a@href@title, b, blockquote@cite, em, i, strike, strong, sub, super, u`) where the @ means "attribute." For example, you can use <a href="" title=""> or <blockquote cite="Scott">.
Enter the code shown (prevents robots):
Live Comment Preview