Apple has released a security update for Safari 3.0.4 for Windows. The new release addresses an issue where visiting a malicious website may result in the disclosure of sensitive information. Specifically, WebKit allows a page to navigate the subframes of any other page. Visiting a maliciously crafted web page could trigger a cross-site scripting attack, which may lead to the disclosure of sensitive information. This update addresses the issue by implementing a stricter frame navigation policy. This issue is addressed for Mac OS X in Security Update 2007-009. http://images.macnn.com/macnn/nimagesii/app_070112_safari.jpg