Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC: Microsoft Security advisory for Safari and Windows - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Microsoft Security advisory for Safari and Windows

The Microsoft Security Response Center (MSRC) has posted an entry to alert people of a security issue (advisory 953818) for users using Safari on the Windows platforms.  As many of you know Apple distributed the Safari browser to Windows users, first as an “update” and later as new software, but still defaulted to install.  So it was really only a matter of time before something nasty would take advantage of it.

The way I read it, the blended threat takes advantage of something Safari asks Windows to do.  Currently the advice is “Customers who have changed the default location where Safari downloads content to the local drive are not affected by this blended threat.”  In other words if you are using Safari on Windows, change the default download location.

If you have details of this threat please contact us.

Update:  the issue may be related to

Mark - Shearwater


392 Posts
ISC Handler
May 31st 2008

Sign Up for Free or Log In to start participating in the conversation!