6/10/2006 - Uninformed.org Publishes "Abusing Mach on Mac OS X"
Uninformed.org has published a highly-informative paper on the history of the Mach kernel, how it is implemented in Mac OS X, and security issues related to this implementation.
"Abusing Mac on Mac OS X"
6/9/2006
- Ubuntu Security Notices
Ubuntu
has released the following security advisories for Ubuntu
5.04, 5.10, and 6.06 LTS. These advisories also apply to the
corresponding released of Kubuntu, Eduubuntu, and Xubuntu.
xine-lib
vulnerability (USN-295-1)
dovecot, exim4, postfix vulnerabilities (USN-288-3)
binutils vulnerability (USN-292-1)
6/8/2006
- PGP Authentication Bypass Vulnerability
PGP
Desktop Professional 9.x, for all platforms, appears to be
vulnerable to a few authentication bypass vulnerabilities.
One being a SDA bypass, the other being a full virtual authentication
disk bypass. Full details, as well as an informative proof-of-concept
video have been posted on safehack.
One of the major issues here is that if the passphrase is
changed, PGP does not change the underlying key which will
allow any user who had access to regain that access back via
the previous passphrase. Securiteam
also has a posting on this.
6/7/2006
- Little Snitch 1.2.3 Released
Version 1.2.3 of Little Snitch, a utility for monitoring outbound network communications, has been released. New Features in this version:
- This version of Little Snitch adds protection from a security vulnerability in Mac OS X for PowerPC where malicious applications could execute arbitrary program code in the context of other applications: "Code Injection Alert"
- The "Code Injection Alert" can now be switch on or off in the Little Snitch preferences.
- Fixed a bug which lead to wrong port names on Intel based Macs.
- Fixed a bug from the previous beta version 1.2.3b2 which could lead to a long delay after login.
- Fixed a bug which could lead to duplicate default rules.
When you created a rule for "Same Port" from Little Snitch's alert panel, the rule was erroneously added for "Same Port and Protocol" to the rule set. This issue has been fixed.
- Protection against forced termination (kill) was broken on Intel processors. This issue has been fixed.
6/7/2006
- Mozilla Firefox Key-Filtering Vulnerability
Several
security firms are reporting that Mozilla Firefox 1.5.0.4,
and it's successor 'SeaMonkey', are vulnerable to a recently
discovered vulnerability triggered by the use of JavaScript
'OnKeyDown' events. According to Symantec,
"Exploiting this issue requires that users manually type
the full path of files that attackers wish to download…[and]
may require substantial typing from targeted users, so keyboard-based
games, blogs, or other similar pages are likely to be utilized
by attackers to entice users to enter the required keyboard
input to exploit this issue,"
 Full
Details.....
6/6/2006
- BlackHat 2006 Schedule Released
The
schedule for BlackHat USA 2006 is posted. There's one Apple
/ Mac
OS X Server specific talk...and lots of other interesting
topics as well...
BlackHat
2006
6/6/2006
- Multiple New Releases from Intego's Family of Security Solutions
Intego
has announced the release of Internet
Security Barrier X4 AntiSpam Edition and Content Barrier X4.
Internet Security Barrier X4 is a combination of 3 existing
Intego products (NetBarrier X4, VirusBarrier X4, and Personal
AntiSpam X4). New to these versions are dashboard widgets
for Tiger, an improved user interface, NetUpdate improvements
and more. These releases also provide full Intel compatibility.
6/5/2006
- Goodbye IPv4, Hello IPv6
Now
is the time to start wrapping your brain around IPv6. Mac
OS X has supported
IPv6 for years now..but without much support out in the
ether, opportunities to use it live don't often present themselves.
It seems as though there has been a big push, recently, to
get people moving on the new IP standard...That, coupled with
the decommissioning of 6Bone,
brings us to a new "era". So..to get started on
IPv6, start here:
RFC
2460
Microsoft
Introduction to IPv6
IPv6
Introduction (IPv6 Global Community)
|