Released early last week, Safari for Windows has already made a great deal of noise, not all of it positive. The latest headlines deal with two flaws discovered by security researcher Juan Pablo Lopez Yacubian. Reported to Secunia, who labeled them highly critical earlier in the week, these vulnerabilities can be exploited to conduct spoofing attacks as well as potentially compromise a victim's PC.

According to Secunia, an error caused within the browser when downloading something with an overly long filename can be exploited to cause memory corruption. This in turn can be exploited to allow arbitrary code execution. The second error, involving Safari's window handling, can be exploited to show a trusted URL in the browser's address bar while at the same time display arbitrary content in the main window. Their solution at the moment is to avoid any Web sites that you do not trust. Although I stated on Sunday that Safari for Windows was worth taking a look at, in light of these breaking developments you may want to use an alternate browser until a fix is released.