The Enterprise Security Supersite
NewsFactor Network Sites:   NewsFactor.com Security CRM Business Sci-Tech Newsletters XML/RSS Feed  
   
Home Network Security Viruses & Malware Spam & Hackers Security Products More Topics...
Data Security
Average Rating:
Rate this article:  
Apple Issues OS X Security Patch Apple Issues OS X Security Patch
By Elizabeth Millard
January 26, 2005 10:58AM

Bookmark and Share
Apple Computer has issued a security patch to correct seven vulnerabilities in the OS X operating system, including flaws in the Safari browser, the Mac Mail e-mail program, the ColorSync system, and other parts of the OS.
 

Related Topics

apple-security-patch

Latest News

China Busted Hacker-Training Site
FBI Tackles Haiti-Relief Scams
China Cyberattacks: Pervasive Threat
Patch Tuesday Will Tie MS Record
Cybersecurity Appears Hot for 2010

Apple Computer has issued a new security patch to mend seven vulnerabilities in its Mac OS X operating system Relevant Products/Services.

The vulnerabilities were discovered in the Safari browser, the e-mail program, the ColorSync system, and other parts of the OS.

Apple also noted that it has changed the naming scheme for security updates. Rather than a date format, it now will use a format based on the year and a sequence number, similar to Microsoft Relevant Products/Services's system for tagging patch updates.

Fixing the Holes

The dominant problems in the latest crop of vulnerabilities concern Safari and ColorSync.

The browser issue is caused by a feature designed to block pop-up windows, according to the Apple advisory. If the feature is not enabled, it is possible that malicious windows can be launched.

With the ColorSync flaw, malformed color profiles can overwrite a program, which could result in arbitrary code execution.

Another issue in the company's e-mail program, Mac Mail, has been addressed so attackers cannot identify information about a user's Ethernet networking Relevant Products/Services hardware Relevant Products/Services.

Security Standard

The number of vulnerabilities reported by Apple is not unusual for an operating system, said Thomas Kristensen, security researcher at Denmark-based Secunia.

"An operating system is a huge, complex thing, and there are bound to be many issues with it," he told NewsFactor.

Currently, and in the future, it might seem that there are more issues with OS X than with Apple's last system, OS 9. However, that is not actually the case, Kristensen said.

"Apple is using software that's used in other distributions, so when there's a problem with those, it will affect the OS X platform," he noted. "Also, more research is being done on OS X, so it's getting a stronger focus than past Apple platforms."

Address Line

"What is more important than the number of vulnerabilities is how a company deals with the issues," Kristensen said.

Apple's handling of such flaws has improved quite a bit during the last year, he added. The company now seems to have a much better policy in place for addressing future vulnerabilities.

"We'll see more focus on OS X in the coming years, so it's good that Apple has put an effective system in place," said Kristensen.
 

Tell Us What You Think
Your Comment:

Also Visit:


Advertisement


 Data Security
1.   China Busted Hacker-Training Site
2.   FBI Tackles Haiti-Relief Scams
3.   Patch Tuesday Will Tie MS Record
4.   Google Apps Controls Mobile Devices
5.   Torrent Traps Used To Harvest Logins


advertisement
Torrent Traps Used To Harvest LoginsTorrent Traps Used To Harvest Logins
Web sites sold with backdoor access.
Average Rating:
Social Networks: A Hacker's DelightSocial Networks: A Hacker's Delight
Workers urged to be 'trained skeptics.'
Average Rating:
Google Attack Highlights Black MarketGoogle Attack Highlights Black Market
Paying for bug info is hotly debated.
Average Rating:


advertisement


 Random Bytes
Product Information and Resources for Technology You Can Use To Boost Your Business

CRM Systems

  Experience CRM—and Business—Success today with Salesforce.com.

Data Storage

  AT&T Synaptic Storage as a Service. Learn more.

Enterprise Hardware

  Trade in your old printer and save up to $400.
  Find out why now is the best time to buy a new APC Smart-UPS!
  HP ProLiant G6 Servers. Perform like a superstar, Save like an accountant.

Enterprise I.T.

  Tell us what you think. Take a survey.
  AT&T Synaptic Storage as a Service. Learn more.
  Find out why now is the best time to buy a new APC Smart-UPS!
  Stand out from other IS Professionals and increase your earning potential.

Enterprise Software

  Read the Top 10 Reasons to Upgrade to Windows Server 2008 R2.

Microsoft/Windows

  Read the Top 10 Reasons to Upgrade to Windows Server 2008 R2.

Mobile Enterprise Spotlight
To Love or Not To Love: Apple iPad Pros and Cons
Now that the iPad has officially been announced, opinions are rolling in on this device that combines the features of an iPod, e-reader, and tablet PC. Will the iPad turn fewer heads than the iPhone?
 
Analysts See iPad Price Drop, with Some Cannibalization
Just weeks before Apple officially rolls out the iPad, financial analysts are making pricing predictions. But could the analysis itself hinder the initial demand for the pricey tablet computer?
 
Bar Codes Go Mobile, Get Hip Again
For decades, retailers have used patterns of black dots and lines to encode data onto products. Now, bar codes are gaining favor as an easy way for cell-phone users to view ads and other data instantly.
 

Navigation
Enterprise Security Today
Home/Top News | Network Security | Viruses & Malware | Spam & Hackers | Security Products | Mobile Security | Windows Security | Data Security
EST Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | Free Whitepapers | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2010 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo.