recoiledsnake writes “the brand new Safari three.1 for windows has been hit with two ‘highly vital'(as rated by Secunia) vulnerabilities that may end up in execution of arbitrary code. the primary is due to an flawed coping with of the buffer for lengthy filenames of recordsdata being downloaded and the 2d may end up in a hit spoofing of internet sites and phishing. This comes close on the heels of criticism of Apple for Safari being offered as a update for about 500 million users of iTunes on home windows by means of default and stories of crashes. There are at present no patches or workarounds on hand apart from the advice to remain clear of ‘untrusted’ websites.” further, Wormfan writes “the latest version of Safari for home windows makes a mockery of finish person licensing agreements by best allowing the installation of Safari for home windows on Apple labeled hardware, thereby excluding most home windows PCs.”
read more of this story at Slashdot.
more: endured here