Apple fixes 6 security flaws in its Safari Web browser
August 12, 2009
Apple has said it repaired no less than 6 security flaws in its Safari Internet browser program. The new version 4.0.3 repairs separate buffer overflow issues in the Core Graphics and Image IO components of the Windows version of the browser that creates a very critical code injection risk on a Windows-based system.
In each case, visiting a bugged website with an unpatched Safari browser creates a severe download risk.
However, and according to Apple, Mac computer users also need to update to Safari version 4.0.3 because of a critical Web-Kit risk which poses a similar risk.
The Mac version of the browser also repairs two lesser Web-Kit flaws, while a problem that means a maliciously crafted website may get promoted into Safari's Top Sites view is fixed in both Windows and Mac flavours of Safari.
Yesterday, Trend Micro also warned about a Trojan horse for Mac OS X that changes DNS settings. The malware comes disguised as a "Mac Cinema Installer" and should be treated as equally dangerous.
Once a computer is infected, a victim’s surfing can be hijacked and totally redirected towards websites selected by attackers. Called "JAHLAV-D" by Trend Micro, the malware is the latest variant in a Mac family previously last spotted two months ago.
The Mac and Windows updates to Safari also repairs various stability and compatibility security holes as explained more in depth in Apple's security advisory and a bulletin from the Internet Storm Centre.
Overall, Windows malware dwarf Mac virus variants by several orders of magnitude, but that's not to say that Mac malware doesn't exist. It really does, and it can do as much damage.
Lately, there's been a bit more interest in Mac computers as the platform has grown in popularity to a certain degree. MAC OS X uses a variation of Linux in its kernel to operate a system.
Become an authorized reseller of Proxy Sentinel™ and Firewall Sentinel™. Do like the rest of our authorized resellers and have your clients benefit the important security features of our products and solutions, while increasing your sales at the same time. Click here for all the details.
You can link to the
Internet Security web site as
much as you like. Read our section on how your company can participate in our
reciprocal link exchange program
and increase your rankings
in the major search engines such as
Site optimized by Pagina+™
Powered by Sun Hosting
Search engine keywords by Rank for Sales
Development platform by My Web Services
Internet Security.ca is listed in
Global Business Listing