Apple has shipped a new version of its Safari browser to plug multiple serious security vulnerabilities.
The Safari 4.0.5 update, available for Mac OS X and Windows, fixes flaws that could lead to remote code execution if a user is tricked into surfing to a maliciously rigged Web site.
In all, the update fixes 16 documented vulnerabilities. Affected Safari components include ColorSync, ImageIO, PubSub and the WebKit engine.
Safari 4.0.5 is available via the Apple Software Update application or it can be downloaded from the Apple Safari web page.