• Home
• About

Apple Post Update for Kaminsky DNS Flaw and OSA Script Issues

      by Dusty Schnabel

Apple has release update “Security Update 2008-005″ for both OS X 10.5.4 and 10.4.11. This much needed update address a couple serious vulnerabilities in Apples OS X operating system. Most notable is the Kaminsky DNS vulnerability. Sadly, this patch comes at least a couple weeks behind other vendors such as Ubunut, RedHat, and even Microsoft.

What a N00b covered the release of the exploit code for the DNS issue here.

Another critical hole that was fixed, was the ability of a user to execute any arbitrary command as root via an AppleScript call. This was covered on SlashDot.. Anyone that offers shell or console access to their users should be concerned. Thank goodness it is not exploitable remotely.

Other updates included OpenSSL, OpenLDAP, RSync, PHP, CoreGraphics, CarbonCore, and Disk Utility to name a few.

For more information on this specific update, visit Security Update 2008-005.

To read more about each security update Apple releases, visit Apple’s Security Page

Filed under Uncategorized : Comments (0) : Aug 1st, 2008

Categories

• How-Tos / Tips
• Just for Fun
• News
• Rants
• Tech Trends
• Uncategorized

Search

Tags

Archives

• January 2012
• November 2011
• October 2011
• September 2011
• May 2011
• April 2011
• March 2011
• February 2011
• January 2011
• December 2010
• November 2010
• October 2010
• September 2010
• August 2010
• July 2010
• June 2010
• May 2010
• April 2010
• March 2010
• February 2010
• January 2010
• December 2009
• November 2009
• September 2009
• August 2009
• July 2009
• June 2009
• May 2009
• April 2009
• March 2009
• February 2009
• January 2009
• December 2008
• November 2008
• October 2008
• September 2008
• August 2008
• July 2008

Blogroll

• Brian in the Big City
• Silicon Grassland
• SugarCRM
• TheSysAdminLog
• Zimbra