Apple plugs critical Safari browser vulnerabilities

Apple Safari logo

Apple has released security updates for critical flaws in its Safari browser that had left users open to cyber attacks by hackers.

The Safari 6.1.4 and Safari 7.0.4 updates are available now for OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.5 and OS X Mavericks v10.9.3.

The flaws put users at risk of malware infection via a maliciously crafted website and from denial-of-service attacks.

It is currently not known whether the vulnerabilities have been exploited by hackers, and at the time of publishing Apple had not responded to V3‘s request for comment.

Apple has a policy of not discussing security issues, stating: “For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available.”

Despite the lack of firm information regarding the level of threat, the US Computer Emergency Response Team (CERT) recommended IT managers running Apple systems install the updates as soon as possible.

“Apple has released updates for Safari to address multiple vulnerabilities, some of which could allow a remote attacker to execute arbitrary code or cause a denial of service. Users and administrators are encouraged to review Apple Security Update HT6254 and apply the necessary updates,” read the US CERT’s statement.

Web browser vulnerabilities have become an increasingly popular target for hackers. Earlier this year, Microsoft was forced to release an emergency patch for a critical vulnerability in its popular Internet Explorer browser that left as many as one in four web users vulnerable to attack.

23 May 2014 | 11:34 am – Source: v3.co.uk
———————————————————————————————————————

Leave a Reply

Your email address will not be published.