Security company Immunity says it has found several vulnerabilities in Darwin, the implementation of Unix that underlies Apple Computer Inc.'s Mac OS X operating system.
Immunity discovered the flaws during a security audit of the source code, which Apple has made freely available under its own Apple Public Source license. The flaws, which affect versions of Mac OS X up to and including 10.3.4, affect the operating system's SearchFS function and 'at' command. The company also found several potential kernel memory overflows.
Immunity is working on producing reliable exploits for them, as part of its security testing program. The company produces a penetration testing tool called Canvas, which allows users to test their own system's security.
However, Immunity emphasized that for the majority of customers, the bugs posed little threat. Instead they are most likely to affect systems with multiple users accessing the system remotely.
Read this full article at Ian Betteridge
|
|
Only registered users can write comments.
Please login or register.
Powered by AkoComment!