Numerous arbitrary remote code execution and denial of service vulnerabilities have been discovered in the new Safari 3 Beta. Most vulnerabilities target the Windows version, though some affect both versions. Exploit code is readily available for some of the vulnerabilities, but details and exploit code for others are being withheld until the release of Leopard (OS X 10.5) for greater impact. Apple have rapidly addressed the issues and have released Safari 3.01 for Windows XP and Vista, reporting that at least one of the cross platform vulnerabilities will only result in a non-exploitable crash on OS X.

Description:

The brand new Safari 3 Beta has been discovered to have numerous vulnerabilities affecting it, including a number of vulnerabilities that will allow a remote attacker to take complete control of a vulnerable system, and dozens that will prevent use of the browser by the local user. Exploits are readily available from a number of sources, and it is recommended that users refrain from downloading the Beta if they are planning to use it for general Internet usage. While most vulnerabilities target the Windows version, some also affect the OS X Beta.

Mitigation:

Avoid using the Safari 3 Beta outside of a testing environment until Apple is able to release security patches to address the issue. Since Apple have released version 3.01, users can update their software for Windows XP and Vista.

Updates:

http://www.apple.com/safari/download/

Source:

Multiple, including http://milw0rm.com/ http://www.security-protocols.com

Exploits:

Multiple, including http://milw0rm.com/

CVE-ID: CVE-2007-3186 CVE-ID: CVE-2007-3185 CVE-ID: CVE-2007-2391