James Delahunty
14 Mar 2010 19:08
Apple Inc. pushed out Safari 4.0.5 earlier this week to address a slew of security vulnerabilities that could be exploited by attackers. In total, Safari 4.0.5 fixes 16 known security vulnerabilities with the browser. The update is available for Mac and Windows.
Among the vulnerable Safari components are ColorSync, ImageIO and the WebKit engine, which were hit with critical code injection and information disclosure bugs. Unpatched Windows machines running the browser are more vulnerable than those running Mac software.
Apple's advisory on the update is available at: http://support.apple.com/kb/HT4070
Safari for Windows: https://www.afterdawn.com/software/network_software/web_browsers/safari_win.cfm
Safari for Mac OS X: https://www.afterdawn.com/software/alternative_platforms/mac_software/safari_mac.cfm