How safe is your Safari browser?

Posted on November 17, 2008
Filed Under Apple, Software | Leave a Comment

If you've enjoyed reading this post then please subscribe to my Full Text RSS Feed.

If you think that using Safari browser is safer than Internet Explorer, you should think twice. Apple has just release a fix for Safari to fix a dozen security flaws. The flaws opens up your PC/Mac to vulnerabilities that could have you machine taken full control by malicious programs.

The serious flaws reported by zdnet website are:

1. A heap buffer overflow issue exists in the libxslt library. Viewing a maliciously crafted HTML page may lead to an unexpected application termination or arbitrary code execution.

2. A heap buffer overflow exists in CoreGraphics’ handling of color spaces. Viewing a maliciously crafted image may lead to an unexpected application termination or arbitrary code execution.

3. Multiple uninitialized memory access issues exist in libTIFF’s handling of LZW-encoded TIFF images. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution.

4. A memory corruption issue exits in ImageIO’s handling of TIFF images. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution.

5. A buffer overflow exists in the handling of images with an embedded ICC profile. Opening a maliciously crafted image with an embedded ICC profile may lead to an unexpected application termination or arbitrary code execution.

The fix should be treated as highly critical update and you should apply the patch immediately if you are using Safari.