[ISN] Mac OS X has 20 zero day flaws

From: InfoSec News <alerts_at_private>
Date: Tue, 23 Mar 2010 00:33:02 -0600 (CST)

By Nick Farrell
The Inquirer
March 19 2010

WHILE THE THINK DIFFERENT COMPANY Apple continues to smugly tell users 
that its OS is safer than Windows, an insecurity expert has claimed that 
it has 20 zero day security flaws.

Security researcher Charlie Miller, who is already known for having 
discovered a number of bugs in Mac OS X, told Heise Security that the 
holes are found in closed source Apple products.

He said that the attack surface of OS X is so wide you can land a 747 on 
it, sideways.

There are bugs in the open source components and vulnerabilities in the 
closed source third-party and Apple components. All of which can lead to 
remote compromise of the Mac OS X operating system.

Miller found all the holes by fuzzing, which involves bombarding an 
application's input channels with as much corrupted data as possible.


Register now for HITBSecConf2010 - Dubai, the premier 
deep-knowledge network security event in the GCC, 
featuring keynote speakers John Viega and Matt Watchinski! 
Received on Mon Mar 22 2010 - 23:33:02 PDT

This archive was generated by hypermail 2.2.0 : Mon Mar 22 2010 - 23:35:32 PDT