Security Information Vulnerability Research Security Blog

Safari 3.0.1 fixes three flaws - what about the others?

June 17th, 2007 by Juha-Matti, Filed under: Web, Commentary, Apple

The recent Safari update version 3.0.1 includes fixes for the following issues in Beta release:

Protocol Handler issue reported by Thor Larholm, CVE-2007-3186
DoS-type race condition issue reported by Aviv Raff, CVE-2007-3185
and
HTML handling issue reported by David Maynor, CVE-2007-2391

It took not many days to release a fixed version, but there are many other vulnerabilities reported in Safari 3.0 Beta (for Windows and OS X) too.

But the download link of Safari 3.0.1 Public Beta is
www.apple.com/safari/download/

DiggRedditSlashdotTwitThisSphinnStumbleUpondel.icio.usFacebookGoogleTechnoratiE-mail this story to a friend!

-

Is your site safe from SQL Injection attaks? Sign up for Beyond Security’s Automated Vulnerability Detection Service today!

2 Comments:

  1. Aviv, on June 17th, 2007 at 9:07 pm Said:

    Correction.. the vulnerability I’ve found is CVE-2007-3185
    http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3185

  2. Juha-Matti, on June 18th, 2007 at 5:43 am Said:

    Thanks, fixed!

Leave a Comment

Security RSS Subscribe


Vulnerability Scanner