Apple Inc. has reversed course and patched a bug in its Safari browser after security researchers showed how it could be used to run unauthorized software on a Windows computer.
The “carpet bomb” bug, which was originally discovered by security researcher Nitesh Dhanjani, was initially thought to be less serious than it turned out to be. According to Dhanjani, Apple initially told him that it did not intend to fix the issue, but apparently the company has now changed its mind.
It also fixes a less-critical issue in the way Safari renders Bitmap and Gif images, which could give attackers a peek at theof a victim’s computer, Apple said. Yesterday’s update was for Windows computers only. Apple has not yet released a 3.1.2 Safari update for the Mac.
If you are interested in upgrading to Safari 3.1.2, please click here. Good Day!