Thread: Apple Vulnerabilities discovered
View Single Post
  #1  
Old 05-22-2008, 01:42 PM
Praxeas's Avatar
Praxeas Praxeas is offline
Go Dodgers!


  
Join Date: Feb 2007
Posts: 45,791
Apple Vulnerabilities discovered
http://blogs.pcmag.com/securitywatch...s_reported.php

Version 3.0.1 of iCal, running on the Mac OS X 10.5.1 platform, vulnerable to remote compromise according to Core Security Technologies.
The three attacks are all based on improper checking of data in .ics files, according to the advisory from Core. The user needs to be convinced to import a malicious file at which point the program can crash or, potentially, arbitrary code be executed in the context of the logged-in user. It may also be possible to compromise iCal clients through a CalDav server.
iCal is a calendar program provided with Mac OS X, It can be used as a standalone program or as a client to a CalDav server.
So far there are no reports of the vulnerability being exploited in the wild.
__________________
Let it be understood that Apostolic Friends Forum is an Apostolic Forum.
Apostolic is defined on AFF as:

  1. There is One God. This one God reveals Himself distinctly as Father, Son and Holy Ghost.
  2. The Son is God himself in a human form or "God manifested in the flesh" (1Tim 3:16)
  3. Every sinner must repent of their sins.
  4. That Jesus name baptism is the only biblical mode of water baptism.
  5. That the Holy Ghost is for today and is received by faith with the initial evidence of speaking in tongues.
  6. The saint will go on to strive to live a holy life, pleasing to God.
Reply With Quote