Techkings

Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

Apple Security Update 2009-003 and Mac OS X 10.5.8 Ships

hadmad

VIP Member
Apple Security Update 2009-003 and Mac OS X 10.5.8 Ships

Posted: 06 Aug 2009 12:10 AM PDT

Apple Security Update 2009-003 and Mac OS X 10.5.8 Ships

On Wednesday, Apple patched 18 vulnerabilities with its Mac OS X operating system, 12 of these vulnerabilities allowed hackers to hijack machines. They did this by duping users to view malicious image files. The Security Update 2009-003 was also distributed with Mac OS X 10.5.8, which was just for Leopard users, the update was delivered separately to those using Tiger.

This security update helped to plug holes in a number of components, these ranged from ColorSync and Dock, which are used on the kernel and MobileMe. These updates were needed, but it was the six vulnerabilities in various image file formats that were the ones that were needed the most.

The most interesting being the PNG [Portable Network Graphics] bug. Attackers were able to trigger an attack by getting users to visit malicious sites, this is a common tactic seen around the world.

Apple have also patched four flaws in it’s the ImageIO component of its Mac OS; this is related to how the OS handles OpenEXR images. This is the format that was developed by Lucasfilm’s Industrial Light and Magic way back in 1999.

For more details on this, visit Computer World
 
Top