Apple slaps bandaid on critical Safari (Windows) security holes
Summary: Apple has shipped new versions of its Safari browser to fix numerous security holes that expose Windows users to malicious hacker attacks.
Apple has shipped new versions of its Safari browser to fix numerous security holes that expose Windows users to malicious hacker attacks.
The Safari 5.1 and Safari 5.0.6 addresses gaping security holes in Safari and WebKit, the open-source browser rendering engine. These updates are available for Safari users running Windows XP SP2, Windows Vista and Windows 7.
According to Apple's advisory, some of these vulnerabilities could lead to drive-by download attacks, full system compromise, denial-of-service conditions of cross-site scripting attacks.
Here's a sample of some of the more serious Safari for Windows vulnerabilities:
- CFNetwork: The NTLM authentication protocol is susceptible to a replay attack referred to as credential reflection. Authenticating to a maliciously crafted website may lead to arbitrary code execution. To mitigate this issue, Safari has been updated to utilize protection mechanisms recently added to Windows. This issue does not affect Mac OS X systems.
- ColorSync: An integer overflow existed in the handling of images with an embedded ColorSync profile, which may lead to a heap buffer overflow. Opening a maliciously crafted image with an embedded ColorSync profile may lead to an unexpected application termination or arbitrary code execution.
- CoreFoundation: An off-by-one buffer overflow issue existed in the handling of CFStrings. Applications that use the CoreFoundation framework may be vulnerable to an unexpected application termination or arbitrary code execution.
- CoreGraphics: An integer overflow issue existed in the handling of Type 1 fonts. Viewing or downloading a document containing a maliciously crafted embedded font may lead to arbitrary code execution.
- ImageIO: A heap buffer overflow existed in ImageIO's handling of TIFF images. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution.
- ImageIO: A heap buffer overflow existed in ImageIO's handling of CCITT Group 4 encoded TIFF images. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution.
- libxml: A one-byte heap buffer overflow existed in libxml's handling of XML data. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution.
The Safari update also contains a massive WebKit update that expose users to denial-service conditions or arbitrary code execution.
The patches are being delivered via the Windows Apple Software Update application, or Apple's Safari download site.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
I wouldn't normally care about holes in Safari for Windows
What's the difference between these 3 PCs? No idea but iTunes users on Windows must be eternally vigilant to make sure they haven't accidentally installed Safari.
RE: Apple slaps bandaid on critical Safari (Windows) security holes
Uninstall the Apple Updater. And it doesn't matter unless you're browsing with Safari. No sane Windows app will assume you have Safari for Windows under the covers and use it vs. say IE.
Thank you
Much appreciated. I will give that a try. Is there a way of reinstalling the updater? I haven't seen any sort of install for just the updater itself.
Time to have some reality check on Apple Apps on Windows.
Yet people still picking on Adobe Reader like there's no tomorrow.
RE: Apple slaps bandaid on critical Safari (Windows) security holes
Because of the adobe reader plugin. its tied to primarily almost all browsers.
RE: Apple slaps bandaid on critical Safari (Windows) security holes
RE: Apple slaps bandaid on critical Safari (Windows) security holes
RE: Apple slaps bandaid on critical Safari (Windows) security holes
Because most Windows users have Adobe's Reader... most do not have Safari for Windows.
I looked at the Safari 5.1 feature list
So, Ryan, want to explain why this is a band-aid and
Come on Steve, you can do better then that
That liver acting up on you again, making you grouchy today?
RE: Apple slaps bandaid on critical Safari (Windows) security holes
You're a jerk.
RE: Apple slaps bandaid on critical Safari (Windows) security holes
LMFAO :D
it's called
yellow journalism. every little dig keeps helps.
i suppose the better term would be yellow blogging.
RE: Apple slaps bandaid on critical Safari (Windows) security holes
RE: Apple slaps bandaid on critical Safari (Windows) security holes
Safari - for MobileMe bookmarks sync from my Mac. I consider it to be my "personal" browser (i.e. non-work)
Firefox - for work related stuff that doesn't require IE
IE - out of desperate necessity for the eHR system.
RE: Apple slaps bandaid on critical Safari (Windows) security holes
Ryan Naraine, you are officially a troll.
Does anybody with Windows actually use Safari?
RE: Apple slaps bandaid on critical Safari (Windows) security holes
Hate to break it to ya, but if you use Chrome, you are essentially using Safari. Most of the code in Chrome was written by Apple.
Slightly biased headline?
What about the new features in Safari 5.1? Are they not worth mentioning?