Apple Fixes 15 Flaws, Updates Mac OS X To 10.4.8 - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
News
News
9/29/2006
08:10 PM
50%
50%

Apple Fixes 15 Flaws, Updates Mac OS X To 10.4.8

Four of the bugs are in Flash, the Adobe-sold animation player bundled with Mac OS X.

Apple Computer Inc. on Friday updated Mac OS X 10.4 to patch 15 vulnerabilities in the operating system and bundled software that can let attackers run malicious code, crash the computer, or gain unauthorized access to the machine.

According to the alert that Apple released alongside the update, more than half of the fixed flaws can lead to "arbitrary code execution." In plain English, that means a hacker could hijack the Mac and install his own software on the system. Four of the bugs are in Flash, the Adobe-sold animation player bundled with Mac OS X.

A vulnerability in Safari, Apple's Web browser, could let malicious sites pose as trustworthy URLs with SSL (Secure Sockets Layer) indicators, said the alert, while in another, a specially-crafted JPEG2000 image could be used to trigger a buffer overflow to compromise the computer.

One of the more dangerous vulnerabilities outlined by Apple is a memory management error in WebKit's handling of certain HTML. Simply viewing a malicious Web site could result in a hacked Mac. WebKit is Apple's version of the open-source browser engine used by Safari and other OS X components, including Mail and the Dashboard.

The Friday update is the first OS-wide security fix in nearly two months, although other components, including Apple's own QuickTime, have been patched since then.

The update -- as well as a similar security update for users of Mac OS X 10.3 (Panther) that includes only 8 patches -- can be downloaded from the Apple Web site, or retrieved using the operating system's own auto update tool.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
The State of Cloud Computing - Fall 2020
The State of Cloud Computing - Fall 2020
Download this report to compare how cloud usage and spending patterns have changed in 2020, and how respondents think they'll evolve over the next two years.
News
How GIS Data Can Help Fix Vaccine Distribution
Jessica Davis, Senior Editor, Enterprise Apps,  2/17/2021
Commentary
Graph-Based AI Enters the Enterprise Mainstream
James Kobielus, Tech Analyst, Consultant and Author,  2/16/2021
Slideshows
11 Ways DevOps Is Evolving
Lisa Morgan, Freelance Writer,  2/18/2021
Register for InformationWeek Newsletters
Video
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you.
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll