Home Home | Current issue Current issue | Forum and Community Forum & Community | Onekit's Software OneKit's Software
Featured software
 
 

Dr.Web CureIt! (screenshot)Dr.Web CureIt! 4.44

CureIt! is a FREE anti virus and anti spyware scanner based on the Dr.Web best of breed engine. As hundreds new viruses appear and spread in hours around the world daily, CureIt! with the newest definitions to the virus bases is re built several times every day. The utility will quickly scan and cure, if necessary, a computer operated by MS Windows 95OSR2/98/98SE/Me/NT4/2000/XP/2003/2003R2/Vista without installation of the Dr.Web Anti Virus.
 
 
 
 

Firevector Atmoweld (screenshot)Firevector Atmoweld 1.0

After the installation on your PC, Firevector Atmoweld appears as a 3D Studio Max utility plug-in. All the scenes opened in 3D Studio MAX can be exported to LightWave3D Object File (LWO). There are several types of options that affect the result to be produced by Atmoweld Exporter. In particular before the export you can adjust validation, texture, material, and mesh options. All the settings are easily managed from Exporter's dialog.
 
 
 
 

Sothink Video Encoder for Adobe Flash (screenshot)Sothink Video Encoder for Adobe Flash 2.5

Sothink Video Encoder for Adobe Flash, can take simple steps to convert your video to Flash SWF and FLV with excellent performance. It is quite easy-to-use but powerful, supports almost all popular video formats; gives you full control over the converting process; provides advanced video editing functions; generates thumbnail image; offers various playback skins; and automatically creates an adapted Flash Video player (SWF) and HTML page.
 
 
Login: Password: Forget password? / Register New User 
Games Graphics & Design MP3 & Audio Internet & Networks System & Utilities Home & Education Business WebDev SoftDev
Issue: June 2008 > Internet & Networks > Article "Apple updates Safari for Windows with four security fixes"
Advertisement on Onekit.com Software Magazine

Apple updates Safari for Windows with four security fixes (Apple updates Safari for Windows with four security fixes)  Apple updates Safari for Windows with four security fixes

Internet & Networks
Apple on Thursday released a new version of Safari for Windows that includes a security fix for a high-profile carpet-bombing desktop attack vulnerability previously dismissed by the Cupertino vendor. The Safari update is only for Windows users, not Mac OSX versions. Version 3.1.2 of Safari for Windows can be downloaded and installed from Apple Downloads, or you can download Safari 3.1 here.

BMP or GIF image memory error

This patch only affects users of Windows XP or Vista. The update addresses CVE-2008-1573, an out-of-bounds memory read vulnerability. The error may occur in the handling of BMP and GIF images, which may lead to the disclosure of memory contents. Apple credits Gynvael Coldwind of Hispasec for reporting the vulnerability.

Carpet bombing attack

This patch only affects users of Windows XP or Vista. The update addresses CVE-2008-2540, a vulnerability in how Windows desktop handles executable files. Apple explains: "Saving an untrusted file to the Windows desktop may trigger the issue, and lead to the execution of arbitrary code. Web browsers are a means by which files may be saved to the desktop. To help mitigate this issue, the Safari browser has been updated to prompt the user prior to saving a download file. Also, the default download location is changed to the user's Downloads folder on Windows Vista, and to the user's Documents folder on Windows XP." Apple credits Aviv Raff for reporting the vulnerability.

Internet Explorer 7

This patch only affects users of Windows XP or Vista. The update addresses CVE-2008-2306 which is an Internet Explorer 7 vulnerability. Apple explains: "If a Web site is in an Internet Explorer 7 zone with the 'Launching applications and unsafe files' setting set to 'Enable,' or if a Web site is in the Internet Explorer 6 'Local intranet' or 'Trusted sites' zone, Safari will automatically launch executable files that are downloaded from the site. This update addresses the issue by not automatically launching downloaded executable files, and by prompting the user before downloading a file if the 'always prompt' setting is enabled." Apple credits Will Dormann of CERT/CC for reporting the vulnerability.

WebKit Javascript array

This patch only affects users of Windows XP or Vista. The update addresses CVE-2008-2307, which is a memory corruption vulnerability. An error exists in WebKit's handling of JavaScript arrays, so visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. Apple credits James Urquhart for reporting the vulnerability.
June 19, 2008 Author: Robert Vamosi


There is no user's comments | Post your comment

Related Links:
Advertisement Advertisement
about / contact us | Copyright 2003-2009 - Software Magazine, onekit.com, Legal Notices