Apple Safari for Windows Remote Code Execution Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 3 Jun 2008 5262 Views

RISK: Medium Risk

Medium Risk

A vulnerability has been identified in Apple Safari for Windows, which could be exploited by remote attackers to take complete control of an affected system. This issue is caused by errors within the combination of the default download location in Safari and how the Windows desktop handles executables, which could be exploited by attackers to cause malicious files to be downloaded to a user's machine without prompting, allowing them to be executed.

Impact

  • Remote Code Execution

System / Technologies affected

  • Apple Safari for Windows XP/Vista versions 3.x

Solutions

There is no patch available for this vulnerability currently.

  • Workaround
    Change the download location of content in Safari to a location other than "Desktop".

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

CiscoWorks Common Services Remote Code Execution Vulnerability

30 May 2008 5498 Views

Next

HP Instant Support ActiveX Control Multiple Vulnerabilities

5 Jun 2008 5281 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY