|
|
>> Apple Safari for Windows Code Execution and Cross Domain Scripting Vulnerabilities
|
Multiple vulnerabilities have been identified in Apple Safari for Windows, which could be exploited by remote attackers to execute arbitrary commands and scripting code, or spoof certain data.
The first issue is caused by an error when processing requests for web pages, which could allow a malicious web page to change the contents of the address bar without loading the contents of the corresponding page.
The second vulnerability is caused by a race condition in page updating, which could be combined with HTTP redirection to allow JavaScript from one page to modify a redirected page and conduct cross-domain scripting attacks.
The third issue is caused by an error in XMLHttpRequest when serializing headers into an HTTP request, which could be exploited to conduct cross-site scripting attacks by tricking a user into visiting a specially crafted web page.
The fourth vulnerability is caused by an invalid type conversion in WebKit when rendering frame sets, which could be exploited by attackers to compromise an affected systeme by tricking a user into visiting a malicious web page.
Affected Products
Apple Safari Beta version 3.0.1 for Windows and prior
Solution
Upgrade to Safari version 3.0.2 Public Beta for Windows :
http://www.apple.com/safari/download/
References
http://www.vupen.com/english/advisories/2007/2316
http://lists.apple.com/archives/security-announce/2007/Jun/msg00004.html
Credits
Vulnerabilities reported by Lawrence Lai, Stan Switzer, Ed Rowe (Adobe Systems), Richard Moore (Westpoint) and Rhys Kidd (Westnet).
ChangeLog
2007-06-26 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
