Flawed Safari browser endangers Windows users
Not the sort of headline Apple wants to see - especially in light of the recent Safari software update controversy - reports of security flaws in the Windows version of the recently released Safari 3.1 web browser.
An address-bar spoofing flaw was discovered by Argentinian researcher Juan Pablo Lopez Yacubian, who reported it to the Danish security company Secunia on Monday. He also reported a second vulnerability involving memory corruption, although Secunia has not yet established whether or not this flaw is exploitable. Even so, Secunia has classified the vulnerabilities as “highly critical”.
Given Safari’s (still) relatively small user-base, both issues are not expected to cause too many problems for users.
