All the latest UK technology news, reviews and analysis

Bug eats into Apple security patch software

by Matt Chapman

11 Jan 2007

Comment: 1

  • Tweet this
Apple Inc
The Month of Apple Bugs project has found a flaw in software designed to fix security issues on Apple Macs

The group behind the Month of Apple Bugs (Moab) project has found a flaw in software designed to fix security issues on Apple Macs. 

The vulnerability affects the Application Enhancer (Ape) software, which was designed by a rival group trying to combat the flaws highlighted by Moab.

Further reading

The bug could allow malicious users on a local system to replace Ape's binary code and take control of the root privileges on a computer.

"Like the previous local exploits, this could be combined with a remote exploit to gain root privileges from an administrator account without user interaction," said Landon Fuller, author of the Ape software, on his blog. 

"There are also a number of alternative exploit conditions that could occur due to the admin-writability of other directories in /Library."

Moab has pledged to uncover a flaw in the Mac operating system or related software every day in January. The project is run by Kevin Finisterre and a former hacker known only as 'LMH'.

Do you agree?

Add your comment

I'm not the author of Application Enhancer

Unsanity provides Application Enhancer

Posted by: Landon Fuller 11 Jan 2007

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

US President Barack Obama

US identified as Stuxnet perpetrator with Obama's backing

Related white papers

Information currently unavailable

Related articles

Related jobs

Today's top stories

Olympics

Top 10 steps businesses can take to prepare for the Olympics

amazon-kindle-touch-e-book-reader

Amazon Kindle Touch review

London Underground train going into tunnel

Virgin reveals 82 London Underground stations to receive Wi-Fi

Poll

Flame virus poll

Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?

34%

1%

11%

54%

Features

V3's Madeline Bennett

It's time to change tax system to bring technology manufacturing back to the UK

The V3 hotseat

The V3 Hot Seat: Imperva CTO and co-founder Amichai Shulman

Flame in monitor screen

Quick guide to Flame malware attack

cookies

Quick guide to cookie law compliance

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Symanteccloud

Social networking: a guide for IT managers

Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them

Riverbed

Mitigating the risks of IT change

The importance of understanding your infrastructure

Technology jobs

Global Project/Programme Manager-with recruitment deployment experienc

My London client is looking for an experienced Programme...

PHP Developers (All Levels)

My leading client is looking for a number of excellent...

Group Services Manager - Telecoms

My client, a leading international name in Manufacturing...

Automated PHP Developer

My client is looking for an Automated Engineer/Developer...

To send to more than one email address, simply separate each address with a comma.