Democratic Underground Latest Greatest Lobby Journals Search Options Help Login
Google

Mac OS X update fails to fix vulnerability

Printer-friendly format Printer-friendly format
Printer-friendly format Email this thread to a friend
Printer-friendly format Bookmark this thread		 This topic is archived.
Home » Discuss » The DU Lounge Donate to DU
 
Nomad559 Donating Member (1000+ posts) Send PM | Profile | Ignore Fri May-28-04 12:39 PM
Original message
Mac OS X update fails to fix vulnerability
http://www.theregister.co.uk/2004/05/28/mac_bug_mishandled/

A major revision of Apple's Mac OS X operating system released this week fails to come bundled with a vital, recently-issued security fix.

A security patch (2004-05-24) which guards against a vulnerability in the Help viewer sub-system is absent from the Mac OS X version 10.3.4, despite claims to the contrary by Apple.

Reg hardware editor Tony Smith found it's necessary to install the patch manually, confirming reports on Mac enthusiast sites. The OS update does not overwrite previously applied patches, however, and these should show up as available via Software Update. That's providing a user bothers to double-check after being told that he/she is told they are perfectly safe by Apple.

This confusion is compounded by Apple, which has thus far failed to address another critical - and easily exploitable - security hole which it wrongly told Techworld was fixed by the Help Viewer patch.

An updated version of a security testing tool by Unsanity establishes that even patched systems are vulnerable. So patched Mac OS X systems are vulnerable and unpatched systems are even more vulnerable.

Unless Apple faces up to the security issues its users face, its reputation for making secure operating systems, already damaged by its mishandling of these recently discovered vulnerabilities, will be further tarnished.
Printer Friendly | Permalink |  | Top
FlashHarry Donating Member (1000+ posts) Send PM | Profile | Ignore Fri May-28-04 12:56 PM
Response to Original message
1. If you use "software update" regularly...
...you should have already installed the patch, as I did, last week. Personally, I'm more pissed that they didn't fix the ejected disc icon on the desktop! That issue has been known for ages! (When you burn a CD in iTunes and hit "eject," a ghost icon of the disc remains on the desktop, forcing you to "eject" it. It's not a big deal; it's just kind of sloppy from a company that should know better. Still, I won't go back to a PC...)
Printer Friendly | Permalink |  | Top
 
emulatorloo Donating Member (1000+ posts) Send PM | Profile | Ignore Fri May-28-04 01:23 PM
Response to Original message
2. Strangely my life goes on despite this Mac OS X Terror Alert
It is not affecting me, and Apple has a rep for fixing things quickly. There will be much angst on the internet and much crowing of Win users, and then things will be fixed and that will be that.

If I recall correctly the last "Scare" turned out to be overexaggerated by a firm trying to sell virus software.
Printer Friendly | Permalink |  | Top
 
DU AdBot (1000+ posts) Click to send private message to this author Click to view this author's profile Click to add this author to your buddy list Click to add this author to your Ignore list Fri Apr 26th 2024, 02:17 PM
Response to Original message
Advertisements [?]
 Top

Home » Discuss » The DU Lounge Donate to DU

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators

Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.

Home  |  Discussion Forums  |  Journals |  Store  |  Donate

About DU  |  Contact Us  |  Privacy Policy

Got a message for Democratic Underground? Click here to send us a message.

© 2001 - 2011 Democratic Underground, LLC