The four security fixes are part of a larger Safari 3.0.2 beta release for Mac OS X and Windows. Both packs contain stability fixes in addition to the security update.
Only one of the four vulnerabilities for the Windows version could allow for remote code execution. The flaw lies in the WebKit component used by Safari.
This could be exploited by an attacker to launch an exploit by directing the user to a specially crafted webpage. This page could cause an application crash and give the attacker the ability to install malware on the victim's computer.
Two of the vulnerabilities could leave users open to cross-site scripting attacks, while the remaining flaw gave attackers the ability to spoof legitimate websites.
The fourth vulnerability allows an attacker arbitrarily to edit the information that appears in the URL bar. An attacker could exploit the vulnerability to make a malicious site appear with the URL of a trusted one.
Mac users will see two security fixes in the Safari update. Both the WebKit and HTTP-injection vulnerabilities affect OS X as well as Windows.
The updates also contain stability fixes for 16 performance and stability bugs in Windows and nine in OS X.
Cotton seedling freezes to death as Chang'e-4 shuts down for the Moon's 14-day lunar night
Fortnite easily out-earns PUBG, Assassin's Creed Odyssey and Red Dead Redemption 2 in 2018
Meteor showers as a service will be visible for about 100 kilometres in all directions
Saturn's rings only formed in the past 100 million years, suggests analysis of Cassini space probe data
New findings contradict conventional belief that Saturn's rings were formed along with the planet about 4.5 billion years ago