Sudo Flaw Opens Potential Security Risk for OS X, Linux
Source: MacObserver - Posted by Dave Wreski   
Hacks/Cracks A security flaw in the command line tool sudo in OS X 10.7 and higher, as well as some Linux distributions, could give unauthorized root access to user's computers. The flaw was reported by Metasploit, a company that specializes in finding security issues and building utilities to point them out, but the steps needed to exploit this particular issue make it unlikely most Mac users will become victims before a patch is available. To take advantage of the exploit, an attacker needs to already have an administrator-level account on the Mac, physical or remote access to the machine, have already used the sudo command, and to set the system clock to January 1, 1970. The concoction needed to use the flaw makes it highly unlikely that the average Mac user will be at risk, but it does pose a potential threat in the IT work place, or for anyone that shares a Mac with someone that's command line-savvy.

Read this full article at MacObserver

Only registered users can write comments.
Please login or register.

Powered by AkoComment!