A critical vulnerability discovered in Apple Computer Inc.'s Mac OS X could be exploited remotely by an attacker to compromise a user's system. Danish vulnerability clearinghouse Secunia rated the flaw highly critical because it can be remotely exploited by an attacker in the Safari Web browser when the "opening safe files after downloading" option is enabled, Secunia said in its advisory.
The flaw, discovered by security researcher who goes by the name "LMH," is an integer overflow error in the ffs_mountfs() function. When the ffs mountfs() function handles UFS filesystem disc images the operating system can be exploited to cause a buffer overflow by using a UFS DMG image, LMH said in his Month of Apple Bugs Web site. The flaw can lead to an exploitable denial of service condition and potential arbitrary code execution, LMH said.
View: The full story
News source: Tech Target
The flaw, discovered by security researcher who goes by the name "LMH," is an integer overflow error in the ffs_mountfs() function. When the ffs mountfs() function handles UFS filesystem disc images the operating system can be exploited to cause a buffer overflow by using a UFS DMG image, LMH said in his Month of Apple Bugs Web site. The flaw can lead to an exploitable denial of service condition and potential arbitrary code execution, LMH said.
View: The full story News source: Tech Target
TV has lied to me!
Oh, no, wait. I knew that all along.
Cal
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.