toggle

AAPL Stock: 103.65 ( + 1.18 )

Printed from http://www.macnn.com

Safari 3.01 for Windows fixes security flaws

updated 09:20 am EDT, Thu June 14, 2007

Safari 3.01 for Windows

Apple has released Safari 3.01 for Windows, an update to the public beta that was announced earlier this week. The browser, now available for Windows XP and Vista, is based on the same WebKit foundation as the Mac and iPhone version. Although specific details of the update were not provided via Apple's security website, the release comes on the heels of criticism of Apple by researchers who claim to have found more than 18 security flaws in the Safari browser within a few days of its release.

The updated Safari download is not specifically noted on Apple's website, but it is available via the Apple Software update on Windows or via Apple's website. According to Macworld, the security improvements in Safari Beta 3.0.1 include a correction for a "command injection vulnerability," remedied with additional processing and validation of URLs that could otherwise lead to an unexpected termination of the browser; an out-of-bounds memory read issue; and a race condition that can allow cross-site scripting using a JavaSscript exploit. The report said that these flaws do not affect the Mac version.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

  1. jpellino

    Joined: Dec 1969

    0

    maybe now...

    ...Maynor will play nice. Apple fixed these in near-record time. Perhaps he, and the MOAB couple can stop throwing tantrums and be more professional. We'll see.

    I'm sick of self-proclaimed security experts acting like skateboarders who just went thru your plate glass window and then shrug and tell you it was your fault for not having safety glass.

  1. dws

    Joined: Dec 1969

    0

    Maynor...

    ...will never play nice; especially now that he is getting so much attention from his claim that he intends to hack the iPhone.

  1. testudo

    Joined: Dec 1969

    0

    Re: maynor

    BTW, they announced the bugs but did not disclose them. Not sure what isn't 'playing nice' in that regard.

    And if it was anyone else, you wouldn't be able to wait for someone to hack it so you could add your own software and the like.

  1. hayesk

    Joined: Dec 1969

    0

    re: maybe now

    While a bit sensationalistic, a security firm should be announcing but not disclosing bugs (except to Apple).

  1. rtbarry

    Joined: Dec 1969

    0

    "security firms"...

    are often just the guy from the SouthPark WoW episode.

  1. Sprocket

    Joined: Dec 1969

    0

    its all about the 'ttude

    jpellino: "I'm sick of self-proclaimed security experts acting like skateboarders who just went thru your plate glass window and then shrug and tell you it was your fault for not having safety glass."

    Oh yeah, you nailed it. It's all about the 'ttude . . . and I'm sick of him and his lot too.

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Kenu Airframe Plus

Simple, stylish and effective, the Kenu Airframe + portable car mount is the latest addition to Kenu's lineup. Released earlier this ...

Plantronics Rig Surround 7.1 headset

Trying to capture the true soundscape of video games can be a daunting task. Looking to surround-sound home theater options, users hav ...

Adesso Compagno X Bluetooth keyboard

The shift from typing on physical keyboards to digital versions on smartphones and tablets hasn't been an easy for many consumers. Fr ...

toggle

Most Commented