Nitesh Dhanjani

Name of the Vulnerable Software and Affected Versions: Apple Safari versions prior to 3.2 Description: The issue concerns the plug-in interface in WebKit, which fails to restrict plug-ins from accessing local URLs. This allows remote attackers to obtain sensitive information by launching local files. Recommendations: For versions prior to 3.2, update to version 3.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Java versions on Apple Mac OS X 10.5.4 and 10.5.5 **Description** The issue allows remote attackers to execute arbitrary programs by accessing file:// URLs through applets, which are not properly restricted. **Recommendations** For Java on Apple Mac OS X 10.5.4 and 10.5.5, consider disabling the execution of applets that access file:// URLs until a patch is available. Restrict access to sensitive files and directories to minimize the risk of exploitation.