WatchMouse keeps watch for the latest security news and vulnerability reports. Check here on a regular basis for updates or sign up using the form on the right to receive our security news updates via email.

View a full list of the most recent vulnerabilities here.

 

RETIRED: Apple Safari Prior to 4.0.5 Multiple Security Vulnerabilities
 12 Mar 2010
Safari is prone to multiple security vulnerabilities that have been addressed in Apple security advisory APPLE-SA-2010-03-11-1. These issues affect versions prior to Safari 4.0.5 running on Apple Mac OS X, Windows 7, XP and Vista.

NOTE: This BID is being retired because the following individual records have been created to better document issues previously mentioned in this BID:

38674 Apple Safari Prior to 4.0.5 Integer Overflow Vulnerability
35451 LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability
38676 Apple Safari BMP Image Uninitialized Memory Information Disclosure Vulnerability
38677 Apple Safari TIFF Image Uninitialized Memory Information Disclosure Vulnerability
38673 Apple Safari ImageIO TIFF Image Remote Code Execution Vulnerability
38675 Apple Safari Prior to 4.0.5 Configuration Bypass Weakness
38683 Apple Safari URL Schemes Handling Remote Code Execution Vulnerability
38684 WebKit CSS 'format()' Arguments Memory Corruption Vulnerability
38687 WebKit Object Element Fallback Memory Corruption Vulnerability
38688 WebKit XML Document Parsing Memory Corruption Vulnerability
38689 WebKit Right-to-Left Displayed Text Handling Memory Corruption Vulnerability
38685 WebKit Nested HTML Tags Use-After-Free Error Remote Code Execution Vulnerability
38692 WebKit Cross-Origin Stylesheet Request Information Disclosure Vulnerability
38686 WebKit HTML Elements Callback Use-After-Free Error Remote Code Execution Vulnerability
38690 WebKit CSS Display Use-After-Free Error Remote Code Execution Vulnerability
38691 WebKit HTML Image Element Handling Memory Corruption Vulnerability
Securityfocus.com