Apple patches critical Mac OS X hole

1

Apple patches critical Mac OS X hole

offline
  • Pridružio: 06 Maj 2003
  • Poruke: 1263
  • Gde živiš: Apatin

Apple Computer on Friday issued a patch for a security hole in Mac OS X that could have allowed hackers to take over vulnerable machines, but the company went out of its way to downplay the importance of the bug.

The vulnerability in the operating system's Help View application allows attackers to craft a special URL that will execute any application, command or script on the victim's computer. To be hit by the bug, a user would have to visit a malicious website, or be lured by e-mail into following the URL. The bug works on most browsers, including Internet Explorer for Mac, Mozilla and Apple's Safari.

The hole was discovered by a German techie called "Lixlpixel," who claims to have reported the bug to Apple on February 23rd. It wasn't until nearly three months passed without any response from the Cupertino, Calif. computer maker that Lixlpixel went public with the hole, when discussions about it began showing up in online forums, he says. Security services firm Secunia confirmed the vulnerability and released a formal advisory on Monday. Secunia rates the bug "extremely critical."

In a statement issued along with the patch Friday, Apple called the hole a "theoretical vulnerability" that never placed customers at risk.

"Apple takes security very seriously and works quickly to address potential threats as we learn of them -- in this case, before there was any actual risk to our customers," said Apple's senior vice president Philip Schiller. "While no operating system can be completely immune from all security issues, Mac OS X's UNIX-based architecture has so far turned out to be much better than most."

The bug is easy to use, and benign demonstration scripts are freely available online. But Lixlpixel said in an e-mail interview he's not aware of anyone having wielded it maliciously. "As far as I know there is not one single report of an exploit," he wrote.

Mac OS X users can install the patch through Apple's Software Update service, or through Apple's support website.



Registruj se da bi učestvovao u diskusiji. Registrovanim korisnicima se NE prikazuju reklame unutar poruka.
offline
  • AxeZ 
  • Legendarni građanin
  • Pridružio: 17 Apr 2003
  • Poruke: 3989
  • Gde živiš: Novi Sad, Vojvodina

Bilo bi lepo navesti izvor informacija i link odakle si to skinuo.



offline
  • Pridružio: 06 Maj 2003
  • Poruke: 1263
  • Gde živiš: Apatin

Zasto jel treba?

offline
  • AxeZ 
  • Legendarni građanin
  • Pridružio: 17 Apr 2003
  • Poruke: 3989
  • Gde živiš: Novi Sad, Vojvodina

Danilo ::Zasto jel treba?

DA!

offline
  • Pridružio: 06 Maj 2003
  • Poruke: 1263
  • Gde živiš: Apatin

http://securityfocus.com znas ti to.

offline
  • Peca  Male
  • Glavni Administrator
  • Predrag Damnjanović
  • SysAdmin i programer
  • Pridružio: 17 Apr 2003
  • Poruke: 23211
  • Gde živiš: Niš

mora se postovati copyright, Danilo!

offline
  • mire  Male
  • Elitni građanin
  • Pridružio: 18 Apr 2003
  • Poruke: 2282
  • Gde živiš: Beograd

bash tako, to je vrlo bitno

moze neko da te tuzi zbog toga

mada ako si maloletan ...

offline
  • Goran 
  • Prof.Mr.Dr.Sci. Traumatologije
  • Pridružio: 05 Maj 2003
  • Poruke: 9977
  • Gde živiš: Singidunum

....onda odgovaraju roditelji.

offline
  • Stane 
  • Legendarni građanin
  • Pridružio: 13 Jan 2004
  • Poruke: 3590
  • Gde živiš: Niš

Ajd da vidim da je neko u Srbiji nastradao zbog narusavanja copyrighta na nekom internet forumu : ) : )

@Danilo
Navedi odekle si uzeo vest cisto zbog lepog ponasanja. Mozda neko hoce da pogleda original vesti.

offline
  • Pridružio: 06 Maj 2003
  • Poruke: 1263
  • Gde živiš: Apatin

rekao sam http://securityfocus.com prva vest na indexu

Ko je trenutno na forumu
 

Ukupno su 1126 korisnika na forumu :: 40 registrovanih, 1 sakriven i 1085 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, 8u47, _Rade, acatomic, Arsenije, Ben Roj, celik, crnitrn, debeli, Denaya, Dogma21, dolinalima, draganca, dragoljub11987, gomago, Hans Gajger, ILGromovnik, Insan, Još malo pa deda, kuntalo, kybonacci, mackenzie, Mercury, Metanoja, Milan A. Nikolic, milutin134, mkukoleca, moldway, Motocar, oldtimer, raketaš, shlauf, Sirius, stankolich, suton, theNedjeljko, User98, vathra, wolf431, YugoSlav