OS/Platform/Application:

Apple Safari version 3.x on all versions of Microsoft Windows

Category: UPDATE
Severity: HIGH
Attention: Safari on Windows Users, System Administrators, Desktop Support Personnel.

Summary: On June 19 2008 Apple released version 3.1.2 of its Safari Web Browser for Windows.  Version 3.1.2 includes patches for four vulnerabilities, including those detailed recently in ALARM Alert 060208-01 which described a blended-threat condition where malicious software programs could be downloaded automatically (and without consent) to a Windows PC when visiting hostile web sites*.

*It is important to note that recent research into the nature and trends of maliciously-crafted sites shows the majority of websites hosting maliciously-crafted software are ones users presume to be "legitimate" sites or advertisements for well-known and/or trusted products.

Recommended Actions:  Safari on Windows users are strongly encouraged to read the security advisory information (safe links provided below) and to download/install the latest version of this software at their earliest convenience.

Readers are encouraged to share this alert with family, friends, and associates.

ITS Actions: N/A

Resources:

Safari 3.1.2 (security Content) Page:
http://support.apple.com/kb/HT2092

ALARM Alert 060208-01:
http://www.albany.edu/its/alerts_archive_2008_3668.htm

Apple Downloads Page:
http://www.apple.com/support/downloads/