Apple Fills Safari Holes

Monday, July 30, 2012 @ 03:07 PM gHale

Alongside the release of OS X 10.8 Mountain Lion, Apple published version 6.0 of its Safari web browser for OS X 10.7 Lion, adding a slew of security features to close holes.

This major update addresses more than 120 vulnerabilities found in the previous 5.x branch, Apple said. Among the holes closed are problems in the handling of feed:// URLs which could lead to cross-site scripting (XSS) attacks or users’ files being sent to a remote server. The fix also takes care of a bug in the autocomplete system used by Safari, which may have resulted in passwords automatically inserted even when a site specifies that it should not happen. They also cleared up an XSS issue caused by opening maliciously crafted files on certain pages.

Mozilla Closes Platform Holes
Browser Update: Advantage Bad Guys
Privacy Issues with Firefox Tabs
Flash Update Fixes Firefox Crashes

The majority of the problems fixed in the update were in the WebKit browser engine used by Safari.

These include cross-site information disclosure bugs, site URL spoofing problems, cross-origin issues, problems related to iFrames and over 100 memory corruption bugs an attacker could exploit to cause, among other things, unexpected application termination or arbitrary code execution.

For an attack to be successful, a victim must first visit a specially crafted web site. Other WebKit-related bugs include the disclosure of memory contents, escapes from the browser’s sandbox, history session handling problems, and an HTTP header injection issue.

A full list of security fixes are on Apple’s security advisory. Users running Mac OS X 10.7.4 can upgrade to Safari 6 using the built-in Software update function. All users should upgrade as soon as possible, Apple said.

Leave a Reply

You must be logged in to post a comment.