Apple Safari 3.1 for Windows, new vulnerabilities

by certifiedbug on March 25, 2008

in Browser

Apple

Engineers designed Safari to be secure from day one.

Secunia Advisory: SA29483
Release Date: 2008-03-24
Safari Address Bar Spoofing and Memory Corruption Vulnerabilities

Highly critical
Impact: Spoofing
System access
Where: From remote
Solution Status: Unpatched

Description:
Juan Pablo Lopez Yacubian has discovered two vulnerabilities in Safari, which can be exploited by malicious people to conduct spoofing attacks or potentially compromise a user’s system.

1) An error when downloading e.g. a .ZIP file with an overly long filename can be exploited to cause a memory corruption.

Successful exploitation may allow execution of arbitrary code.

2) An error in the handling of windows can be exploited to display arbitrary content while showing the URL of a trusted web site in the address bar.

The vulnerabilities are confirmed in version 3.1 for Windows. Other versions may also be affected.

Tagged as: , , ,

{ 2 comments… read them below or add one }

1

Corrine 03.26.08 at 9:17 am

So much for “secure from day one”. I’d say this makes the “really bad idea” an even worse idea.

http://certifiedbug.com/blog/2008/03/24/a-really-bad-idea/

2

certifiedbug 03.26.08 at 10:51 am

Good point Corrine.

Leave a Comment

You can use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Older post: A really bad idea

Newer post: Firefox 2.0.0.13 released to patch vulnerabilities