eBusiness Help
Free Whitepaper: Ten Secrets for Successful Customer Service
Reduce the cost of customer service - When customers help themselves at a web site.
Turn Raw Security Data Into An Enterprise Defense System
View the overall security posture of your security infrastructure.
Free Trial: Easily Create Online Help. And Online Anything Else.
Quickly design and deliver professional online content from your Word documents.

Free Software Archive:
Enterprise and Home Networking Downloads

Recent Articles
iPod Nano Scratches Too Easy
iPod nano owners are raging against the machine on message board forums over how easily they scratch ...

Apple Delivering Video Podcasts With iTunes
Apple released iTunes 5 recently, and quietly began accepting video podcasts for placement and delivery...
09.26.05


Apple Plugging Security Holes

By David Utter

The latest security update for the Mac operating system patches ten critical holes, ranging from potential privilege elevation to arbitrary code execution.

Mac OS users should get the latest security update from Apple to correct ten security flaws. All of the flaws poses serious problems to Mac users.

The most critical of the group will be an arbitrary code execution vulnerability via a carefully crafted malicious GIF image. The Mac OS ImageIO component, which figures in the Safari browser and several other parts of the operating system, could be subject to a buffer overflow attack.

A successful overflow condition could bring along arbitrary code to execute on the system. Apple has noted that the update will perform additional validation of images. Also, auto-reply rules used in Mail could result in the unencrypted contents of an encrypted message being send along with the automated response.

Sign up today with ePilot and experience quality traffic, affordable bid prices, and comprehensive advertiser support tools.

In version 10.3.9 of the Mac OS, the Safari browser contains a vulnerability to cross-site scripting. Certain malicious web archives could have their contents rendered as those of a legitimate site. Though this problem was fixed in Mac OS X 10.4.2, users who are still on the older OS need to update Safari.

Apple's OS, like Mozilla's Firefox browser, had been thought much more secure that Windows and its notorious multitude of system and security updates. But as more usage and attention has been paid to the Mac and to Firefox, their 'security through obscurity' seems to be fading.

Both organizations have been plagued with the same problems as their related brethren from Microsoft, Windows and Internet Explorer. In the case of the latter, a recent study disclosed by Symantec claimed more vulnerabilities were found for Firefox than for IE through the first half of 2005.

About the Author:
David Utter is a staff writer for WebProNews covering technology and business.
About MacProNews
MacProNews editors, reporters and contributors deliver Mac users the news they need to stay informed about the Mac and Apple. The MacProNews newsletter is Mac News and More.

MacProNews is brought to you by:

WebProNews.com Jayde.com
MarketingNewz.com SalesNewz.com
CareerNewz.com InvestNewz.com
eCommNewz.com WebsiteNotes.com
AdvertisingDay.com ManagerNewz.com
SearchNewz.com CRMNewz.com


-- MacProNews is an iEntry, Inc. publication --
iEntry, Inc. 2549 Richmond Rd. Lexington KY, 40509
2005 iEntry, Inc.  All Rights Reserved  Privacy Policy  Legal

archives | advertising info | news headlines | free newsletters | comments/feedback | submit article
MacProNews Home Page About Article Archive News Downloads WebProWorld Forums iEntry Advertise Contact Jayde MacProNews News Archives About Us Feedback MacProNews - Mac News and More WebProWorld Forum