Technology news and Jobs 
Information Technology News Apple blocks four MoAB exploits
Information Technology News Apple blocks four MoAB exploits | Apple blocks four MoAB exploits |
|
| by Stephen Withers | |
| Friday, 16 February 2007 | |
|
The UserNotificationCenter process now drops its group privileges immediately after launching, which should prevent it being exploited by unprivileged local users to gain root privileges. Two iChat vulnerabilities are also addressed by the update. Bonjour messages undergo additional validation to prevent crashing, and AIM URLs now get extra validation to avoid crashing or arbitrary code execution. In related news, Apple has also released Daylight Saving Time Update 1.0 (to accommodate changes in Daylight Saving Time in the US and Canada effective next month and to provide the latest time zone information for other countries) and Java for Mac OS X 10.4, Release 5 (which also handles daylight saving issues as well as "improved reliability and compatibility". Each update is available in versions for Mac OS X 10.3 and 10.4.{moscomment}
Get stories like this delivered daily - FREE - subscribe now
|
Tags
| < Next story in category | Previous story in the category > |
|---|
