SecuriTeam Blogs » Safari 3.0.1 fixes three flaws – what about the others?

Safari 3.0.1 fixes three flaws – what about the others?

June 17th, 2007 by Juha-Matti, Filed under: Apple, Commentary, Web

The recent Safari update version 3.0.1 includes fixes for the following issues in Beta release:

Protocol Handler issue reported by Thor Larholm, CVE-2007-3186
DoS-type race condition issue reported by Aviv Raff, CVE-2007-3185
and
HTML handling issue reported by David Maynor, CVE-2007-2391

It took not many days to release a fixed version, but there are many other vulnerabilities reported in Safari 3.0 Beta (for Windows and OS X) too.

But the download link of Safari 3.0.1 Public Beta is
www.apple.com/safari/download/

http://aviv.raffon.net Aviv

Correction.. the vulnerability I’ve found is CVE-2007-3185
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3185
http://networksecurity.typepad.com/ Juha-Matti

Thanks, fixed!

Next to come: Nigerian scam ads in the New York Times

Microsoft really trust to IIS 7.0

Categories