[prev in list] [next in list] [prev in thread] [next in thread] 

List:       isn
Subject:    [ISN] Apple Mac Security Update Plugs 13 Vulnerabilities
From:       InfoSec News <alerts () infosecnews ! org>
Date:       2010-08-25 5:37:23
Message-ID: Pine.LNX.4.61.1008250037130.25745 () conundrum ! infosecnews ! org
[Download RAW message or body]

http://www.eweek.com/c/a/Security/Apple-Mac-Security-Update-Plugs-13-Vulnerabilities-718935/

By Brian Prince
eWEEK.com
2010-08-24

Apple released a security update for Mac OS X that patches 13 
vulnerabilities.

The release fixes issues in several components, including CoreGraphics 
and Apple Type Services. Several of the vulnerabilities are buffer 
overflows, and can be exploited to execute arbitrary code.

According to the Apple advisory, the Apple Type Services (ATS) bug can 
be triggered by viewing or downloading a document containing a malicious 
embedded font. If exploited, hackers could use it to run code. Apple 
said it fixed the issue through improved bounds checking.

[...]


_______________________________________________________      
Subscribe to InfoSec News - www.infosecnews.org
http://www.infosecnews.org/mailman/listinfo/isn
[prev in list] [next in list] [prev in thread] [next in thread] 

Configure | About | News | Add a list | Sponsored by KoreLogic