Apple's security myth

by Tom Sanders

21 Apr 2005

Security vulnerabilities are a fact of life. How you deal with them is what separates the serious players from just the players.

Apple earlier this week released a patch for a vulnerability in iSync. The flaw makes iSyncs "mRouter" tool vulnerable for a buffer overflow attack. Users who have local access to affected systems can then gain superuser privileges.

Apple however didn't bother plugging this hole for at least 3 months. As a Mac user, that makes me very nervous. Does Apple take the security of its users even serious?

Not if you ask Braden Thomas, an independent developer of security software and a member of the University of Southern California's Digital Security Interest Group who discovered the flaw:

"I was surprised that [Apple] did not include a fix in Security Update 2005-003," he wrote in an email to vnunet.com "In fact, an AppleFileServer DoS bug I discovered that was disclosed in February was fixed by Update 003."

So next time you claim OS X is more secure than Windows, take Apple's response to security threats into consideration. Security vulnerabilities are a fact of life. How you deal with them is what separates the serious players from just the players.

Topics:
Security
Security Watch

Do you agree?

Add your comment

Your name:
Your email address:	We won't publish your address
Your comment title:
Your comment:	By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.

Submit your comment

IT priorities for 2012

What is the most important IT priority for your company this year?

Reduce costs and do more with less

97%

Take advantage of the latest technologies like social media and cloud

Improve security

Consolidate applications or systems

Gain a competitive advantage through funding new IT projects

Features

World indulges in a Facebook facts fest as firm prepares to float

Top five most interesting figures from Facebook’s IPO

Intel will prove Steve Jobs wrong in the mobile market

RIM needs to decide where its market lies

More features

ICO adds caution to EU data protection proposals - video

EU data protection overhaul contains "bureaucratic tick box-proposals", says information commissioner Christopher Graham in exclusive interview with V3

Sign up to our daily or weekly newsletters

Follow @V3_co_uk

Case studies and reports

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Technical support Specialist (2/3rd Line) CCNA/MCITP

Technical support Specialist (2/3 rd Line) CCNA...

Senior .NET Engineer

Aufgabe: - Das Design, die Implementation und Durchführung...

Supporter

Aufgaben: - Provide basic IT support for the end users...

Network Engineer - Wireless - Manchster - CCNP - Contract

VPN - WAN - LAN - ASA - FSWM - Cisco - Routers - Swicthes...

White paper library
Latest white papers

Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.

More white papers

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

About us:

Business & technology web sites:

Blogs & community:

Reviews:

Software downloads:

Tools & resources:

Accreditation:

Digital Publisher of the Year 2010

Friend's email address	To send to more than one email address, simply separate each address with a comma.
Your email address
Message

Apple's security myth

Get the latest security headlines direct to your inbox

Sign up to our daily or weekly newsletters