[BITList] apple - vulnerable?

CT's x50type at cox.net
Sat Mar 13 05:29:14 GMT 2010


Apple plugs 16 holes in Safari as Pwn2Own looms
Browser expected to fall first in hacking contest gets fixes for critical flaws
By Gregg Keizer
March 12, 2010 07:01 AM ET 

Computerworld - Two weeks before a browser hacking contest is to kick off in Vancouver, British Columbia, Apple Inc. yesterday patched 16 vulnerabilities in Safari, 12 of them critical bugs that could be used to hijack a machine. 
Apple updated Safari for both Mac OS X and Windows to Version 4.0.5, hardening the browser before it's tossed into the ring with Microsoft's Internet Explorer, Mozilla's Firefox and Google's Chrome at this year's Pwn2Own hacking challenge. The contest organizer has predicted that Safari would be the first to fall when researchers battle for $40,000 in prize money beginning March 24 at the CanSecWest security conference.

The last time that Apple refreshed Safari was in November 2009, when seven bugs were quashed with Version 4.0.4.

According to Apple's advisory, three-fourths of the vulnerabilities -- 12 of the 16 -- got Apple's "arbitrary code execution" label, meaning the flaws are critical and could be exploited to compromise a Mac or a Windows machine. Unlike other vendors, such as Microsoft and Oracle, Apple does not assign a threat ranking to the bugs it discloses.



and I was under the impression [from john] that only microsoft had "vulnerabilities"..........................................!

ct
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.bcn.mythic-beasts.com/pipermail/bitlist/attachments/20100312/aeab4b22/attachment.shtml 


More information about the BITList mailing list