Apple patch overlooks older OS X version

...The vulnerability is identified as CVE 2006 4392. It affects the Mach exception ports, a feature that handles kernel errors in OS X.

A malicious user with access to a system could use the flaw to execute code in privileged programs. This effectively provides attackers with root access, allowing them to install applications and change system settings.

Apple on Friday released a patch that repairs 15 vulnerabilities in the current OS X version 10.4. It fails however to address the Mach vulnerability in OS X 10.3, according to the milw0rm posting. Apple patch overlooks older OS X version -
- tag: , , , -

Linked by shanmuga Tuesday, 3rd October 2006 1:03AM