Safari for Windows Hacked Within HoursTue, Jun 12, 2007 - 10:43 PM
It took a matter of hours for hackers to exploit more than half a dozen bugs and vulnerabilities in the beta browser for Windows. Many security researchers are blaming Apple’s “hostile attitude towards security researchers” for the problems. Whatever the cause, you might want to think carefully before installing Safari for Windows.
First off the mark was David Maynor of Errata Security, who posted notice of a bug about two hours after Apple made Safari 3 available for Windows. By the end of the day, Maynor had racked up six bugs. Four could be exploited to crash the browser and/or PC in a denial of service; the other two, Maynor claimed, were remote execution vulnerabilities. “I can’t speak for anybody else, but the bugs found in the beta copy of Safari on Windows work on the production copy on OS X as well,” he said in a posting on the Errata site. “The exploit is robust mostly thanks to the lack of any kind of advanced security features in [Mac] OS X.”