Friday, April 21, 2006

More Mac OS X Flaws Identified

Brian Krebs writes on Security Fix:

Apple is doing a lot of security patching of late, and it looks like its employees may be working overtime just to address some of the flaws founds by one security researcher.

Tom Ferris, a hacker and researcher from Mission Viejo, Calif., posted on his Web site Thursday evening information about seven separate security vulnerabilities he found in different Mac OS X digital image formats.

Ferris included proof-of-concept exploit code for all of the flaws in his advisories, though he insists the code is little more than the most basic example to demonstrate precisely where the problems reside. Some of the flaws he found are merely denial-of-service glitches, meaning an attacker could use them to cause hiccups or lockups for targeted Mac systems. But in an interview earlier today, Ferris told me that a number of the bugs could almost certainly be exploited to allow attackers to run programs of their choice on vulnerable Mac systems.

More here.

0 Comments:

Post a Comment

<< Home