Borja Marcos

**Name of the Vulnerable Software and Affected Versions** Apple Safari versions prior to 5.0 on Mac OS X 10.5 through 10.6 and Windows Apple Safari versions prior to 4.1 on Mac OS X 10.4 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted PDF document. **Recommendations** For Apple Safari versions prior to 5.0 on Mac OS X 10.5 through 10.6 and Windows, update to version 5.0 or later. For Apple Safari versions prior to 4.1 on Mac OS X 10.4, update to version 4.1 or later.

**Name of the Vulnerable Software and Affected Versions** Apple Safari version 4.x and earlier **Description** The issue is related to a use-after-free vulnerability that can be exploited by remote attackers to execute arbitrary code or cause a denial of service, resulting in an application crash. This is due to improper window management. **Recommendations** For Apple Safari version 4.x and earlier, update to version 5.0 or later to resolve the issue.