All the latest UK technology news, reviews and analysis

Latest Apple update fixes 25 flaws

by Shaun Nichols

20 Apr 2007

Be the first to comment

  • Tweet this
Apple
Fifteen of the vulnerabilities could allow an attacker to execute malicious code

Apple has released its fifth security update of the year, covering 25 vulnerabilities in 20 Mac OS X components. 

Fifteen of the vulnerabilities could allow an attacker to execute malicious code, but no working exploits have been reported for any of the attacks so far.

Further reading

Three of the remote code execution vulnerabilities lie within Kerberos, a network security component developed by MIT. Apple credits the MIT Media Lab with reporting all three vulnerabilities. 

Other fixes were for the Libinfo component and the LoginWindow software, which contained two flaws allowing users to bypass the authentication screen.

Apple's iChat video chat component received a fix for a vulnerability that could allow an attacker to remotely execute code on a user's system through a malformed video chat request.

The update also addresses a vulnerability in AirPort which could allow remote execution in several legacy systems. None of Apple's latest Mac Pro, iMac or MacBook systems is affected by the flaw.

The vulnerability is also unrelated to the pair of flaws patched earlier this month in the 802.11n AirPort systems.  

The update is the second largest Apple has issued this year. The company released a security update last month containing 30 patches in 22 applications

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

Flame in monitor screen

Cool down on Flame worries, say experts

Related white papers

Related videos

Related articles

Related jobs

Today's top stories

Dell E6430s laptop

Dell refreshes entire corporate PC range with Ivy Bridge

ACTA protests took place across the globe

Europe sounds the death knell for ACTA as committees roundly reject treaty

samsung-galaxy-s3-android-smartphone

Samsung Galaxy S3 S Voice hands-on review

Poll

Flame virus poll

Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?

27%

1%

11%

61%

Features

The V3 hotseat

The V3 Hot Seat: Imperva CTO and co-founder Amichai Shulman

Flame in monitor screen

Quick guide to Flame malware attack

cookies

Quick guide to cookie law compliance

cookie

ICO sends out mixed messages on cookie law

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Riso

Colour printing: why the bill keeps outstripping the budget

The wrong printers, for the wrong tasks on the wrong contracts

Qlikview

Magic quadrant for business intelligence platforms

Who leads the BI pack and who should we be watching out for?

Technology jobs

Buyer/Procurement Specialist

Buyer/Procurement Specialist x 8 £30,000 - £40...

Systems Analyst/Architect

Systems Analyst/Architect £30,000 - £40,000 + excellent...

Software Developer

Software Developer Up to £27,000 + excellent...

Software Engineer/Developer (C#, C++)

Software Engineer/Developer (C++) £25,000 - £40...

To send to more than one email address, simply separate each address with a comma.