Those of you who downloaded the the Windows Safari 3.0 genus Beta earlier this calendar week should maneuver on over tothe download siteand take hold of the new 3.0.1 . Or even easy , just use the motorcar - updater included with Safari . It patches anumber of security cakehole found this week(listed after the parachuting ) , and should probably be put in as apace as possible . This is only for Windows , btw . Macs do n’t have those problems . ( distinctive . )
https://gizmodo.com/safari-for-windows-bugs-a-plenty-268149
Download Page[Apple ]
The Safari 3 Public Beta was release on June 11 for Mac OS X and Windows XP / Vista . This beta software package is for trial purposes and intended to gather feedback prior to a full release . As with all our products , we encourage security system researchers to report offspring to[email protect ] .
Safari 3.0.1 Public Beta for Windows is now useable and addresses
the following return in Safari 3 Public Beta :
CVE - ID : CVE-2007 - 3186
uncommitted for : Windows XP or Vista
shock : shoot the breeze a malicious internet site may lead to arbitrary code
implementation
verbal description : A mastery injection exposure exist in the window
reading of Safari 3 Public Beta . By enticing a substance abuser to visit a
maliciously craft WWW Sir Frederick Handley Page , an attacker can trigger the issue which
may contribute to arbitrary code execution . This update addresses the
offspring by performing extra processing and validation of URLs .
This does not stupefy a security issue on Mac OS X systems , but could
lead to an unexpected end point of the Safari web web browser .
CVE - ID : CVE-2007 - 3185
impingement : Visiting a malicious website may lead to an unexpected
app result or arbitrary code execution
Description : An out - of - boundary memory read emergence in Safari 3 Public
Beta for Windows may top to an unexpected program termination or
arbitrary code execution when jaw a malicious web site . This
return does not affect Mac OS X arrangement .
CVE - ID : CVE-2007 - 2391
Impact : visit a malicious website may allow cross - site scripting
Description : A raceway precondition in Safari 3 Public Beta for window
may appropriate cross site scripting . travel to a maliciously crafted entanglement
page may allow access to JavaScript objects or the execution of
arbitrary JavaScript in the context of another WWW page . This issue
does not affect Mac OS XTC systems .
The update is uncommitted via the “ Apple Software Update ” program ,
which is instal with the most late translation of QuickTime or
iTunes on Windows .
Safari 3.0.1 Public Beta for Windows is also useable via Apple ’s
Safari download site at : http://www.apple.com/safari/download/
Safari for Windows XP or Vista
The download filing cabinet is describe : “ SafariSetup.exe ”
Its SHA-1 digest is : e468f56613abaa3afd692ded78c35eaf109ca0b6
Safari+QuickTime for Windows XP or Vista
The download file is named : “ SafariQuickTimeSetup.exe ”
Its SHA-1 digest is : af73dd81793b2802200da5d7d5c8077a67ca57ec
This content is signed with Apple ’s Product Security PGP paint ,
and details are available at :
http://www.apple.com/support/security/pgp/
AppleSafariSecuritysoftwareWindows
Daily Newsletter
Get the dear tech , science , and civilisation tidings in your inbox daily .
News from the futurity , pitch to your present .
Please select your desired newssheet and submit your e-mail to upgrade your inbox .
