Mac OS, Linux May Share a Windows Flaw

Dear fanboys, I would like to emphasize the presence of the word "may" in the title.

Microsoft Corporation recently announced plans to release a patch to reduce the risk of a new kind of Web-based security vulnerability, but security researchers say that other operating systems are probably at risk too. Nathan McFeters, a security researcher with Ernst & Young Global Limited, is one of the researchers who has been studying the problem most closely. He hopes to present more details on how Linux and Mac OS X may also be susceptible to what are known as Uniform Resource Identifier (URI) protocol handler flaws at the Toorcon hacking conference, being held next week in San Diego. Although McFeters admitted he had not yet found a way to run unauthorized code on Unix-based operating systems, he and his fellow researchers have discovered a number of issues that looked like they could be grounds for further research.

The problem McFeters and others have been researching over the past few months has to do with the URI protocol handling technology, used to launch programs from within Web browsers. Because any software developer can register their own application with the operating system, programs can be effectively launched within the browser without proper checks on the way they are being executed. Microsoft had originally said that it was up to software developers to make sure their programs check the links so that they don't include malicious code, but this week the software giant agreed to put some checks within the Windows operating system as well.

News source: PC World

Report a problem with article
Previous Story

Universal prepping revolutionary free music service?

Next Story

Google vows to increase Gmail storage limit

16 Comments

Commenting is disabled on this article.

how about Everythign is vulnerable and nothign is secure, there is no "may" about that.

But yeah this article seems to have wsasted all our time.

I can't wait to see this one proven on Mac/Linux and return to this forum to hear the fanbois doing the backstroke with such classics as:

There's no exploit in the wild for this on Mac/Linux so it doesn't count.

I never have to use antivirus/antispyware software on my Mac/Linux box because they are better designed and much more secure than Windows.

Vista sux.

Microsoft is evil.

So damn predicable. :rolleyes:

Here's a couple of my own headlines:

Linux May Take the Desktop Market Lead from Microsoft.

Apple May Increase It's Market Share Real Soon!

Apple/Open Source Fanbois May Return to Reality

"May" works both ways fanbois.

so is this like, a common OS problem that affects windows, linux and mac, or is this an Internet problem with security implications for the OSes?

sentio said,

How very professional

+1 It was enough for me to not read the article (and im mainly a windows user) I always thought this kind of name tagging was frowned upon in Neowin.

what a t**t

Dear fanboys, I would like to emphasize the presence of the word "may" in the title.

Hahaha, nice.

Otherwise a totally bogus and meaningless article until proven.

He hopes to present more details on how Linux and Mac OS X may also be susceptible to what are known as Uniform Resource Identifier (URI) protocol handler flaws at the Toorcon hacking conference, being held next week in San Diego.
That almost sounds like they dont know if it is and are looking for any way to say it is.

After which they say this:

In an interview, McFeters said that he had not yet found a way to run unauthorized code on Unix-based operating systems . . .