In case you weren’t aware …
Posted by brvanlanen
Mac’s are vulnerable to exploits too.
The vulnerability is a potential buffer overflow error arising from the use of the
strtodfunction Mac OS X’s underlying Unix code. It was first reported by researcher Maksymilian Arciemowicz last June.
SecurityReason’s advisory describes a flaw in the libc/gdtoa code in OpenBSD, NetBSD, FreeBSD, and MacOS X, as well as Google Chrome, Mozilla Firefox and other Mozilla software, Opera, KDE, and K-Meleon.
SecurityReason’s advisory rates the vulnerability’s risk as “high” and claims that the flaw can be exploited by a remote attacker.
A spokesperson for SecurityReason wasn’t immediately available to characterize the likelihood that this vulnerability could be exploited.
The vulnerability was addressed in FreeBSD and NetBSD last last summer.
And shortly thereafter Google and Mozilla, among other vendors, did the same.
But Apple apparently has not yet updated its software to incorporate the fix.
Apple did not immediately respond to a request for comment.
It looks like Apple devices could be targeted more frequently, so Mac users may want to start taking security seriously.
In their respective predictions for 2010, computer security companies Symantec, Websense, and Zscaler all said that they foresaw more attacks being directed at Macs and other Apple devices this year.
To some extent, such predictions represent wishful thinking. But Mac users should give some thought to security, if only in terms of using the built-in Mac OS X firewall and exercising caution in the Web sites they visit and the e-mail messages they open. (Source: Information Week)
Related articles by Zemanta
- Apple sits on critical Mac bug for 7 months (and counting) (theregister.co.uk)
- Open-source communities fight Apple Mail alone (news.cnet.com)
- BumpTop hits the Mac, covers your OS X desktop with piles just like your real desktop (video) (engadget.com)
- Apple Patches Massive Holes In OS X (apple.slashdot.org)
- Click to share on Google+ (Opens in new window)
- Share on Facebook (Opens in new window)
- Click to share on Twitter (Opens in new window)
- Click to share on Delicious (Opens in new window)
- Click to share on Reddit (Opens in new window)
- Click to share on Tumblr (Opens in new window)
- Click to share on Pinterest (Opens in new window)
- Click to print (Opens in new window)
About brvanlanenJust a thirty-something guy currently hanging it up in the greater Green Bay area. My post-high school educational background is mainly in the Information Technology field. Specifically I have an A.A.S. in Computer Network Systems and a B.S. in Information Systems Security, both from ITT Technical Institute, in addition to A and MCDST certifications. In my free time I enjoy spending time with my family, cooking and sports. My Christian faith is also important to me as a Missouri-Synod Lutheran and all my children attend a Lutheran grade school. When it comes to political leanings I am a conservative first and foremost which you will discover rather quickly. As for sports I am a huge fan of the Green Bay Packers.
Posted on January 22, 2010, in Mac, Security, Technology News, vulnerability and tagged Add new tag, Apple, Google Chrome, Mac OS X, Mozilla Firefox, Mozilla Foundation, NetBSD, OpenBSD, Operating system. Bookmark the permalink. Comments Off on In case you weren’t aware ….
Comments are closed.