Researcher Finds New Mac OS X Vulnerability
Researcher Finds New Mac OS X Vulnerability
by , 1:30 PM EDT, July 19th, 2007
An anonymous researcher has found a serious vulnerability in Mac OS X, related to mDNS, written a worm to exploit it, and has claimed that Mac OS X "has a long way to go" on security. Apple has officially replied, according to ComputerWorld.
The researcher said that he (or she) will report the vulnerability to Apple at some point.
Apparently, there is a "still-unpatched bug in mDNSResponder, a component of Apple's Bonjour automatic network configuring service, [that] could be exploited by a worm," Gregg Keizer reported. Apple's security update 2007-005 included a fix, but the researcher claims that Apple did not attend to the complete code base and that bugs in the [open source] code remain.
Dave Aitel, the CTO at Immunity, Inc. in Miami questioned whether the researcher was able to write the worm only on a few hours, as claimed in the researcher's blog, but admitted that such exploits are still possible in the mDNS code.
The researcher had some harsh words for Apple and said, "I do believe in being responsible and working with vendors, but I also feel that some vendors need to be treated like children and learn lessons the hard way. Apple has a very long way to go when dealing with security issues in their products."
Apple's Anuj Nayer responded in an e-mail. "Apple takes security very seriously and has a great track record of addressing potential vulnerabilities before they can affect users," he said.
There are several factors at play here. Any modern OS will still have deep exploits. Smart and educated researchers, both bad guys and good guys, can still find them in open source code. The real question is not whether Mac OS X is perfectly secure. The question is, can Apple and the community of seasoned and humble technical professionals work together to find and patch the bugs faster than weaponized exploits can do any serious damage. So far, Apple has been successful in achieving that goal.
Observer Comments
Thu Jul 19, 2007 1:52 pm Subject: "Official Response"
Thu Jul 19, 2007 2:10 pm Subject: A long way to go?
Compared to what? Compared to other OS vendors, such as, maybe, you know, Microsoft? No IT professional in his right mind would connect any PC running Windows to the Internet without multiple layers of anti-virus, anti-spam, anti-spyware defenses.
I have four Macs at home, two of which have publicly-addressable static IP addresses. They are protected by nothing other than ipfw. In twelve years of owning Macs, I have never suffered a single virus infection, spyware installation, web page hijacking, etc.
No one with a clue thinks Macs are invulnerable. On the other hand, the number of serious, high-profile attacks on Macintoshes (anyone remember Melissa?) speaks for itself.
If Apple has "a very long way to go" in computer security, what does that say about the rest of the industry?
Ahh this is fun. This is like the Global Warming Theory business. You shoot some shots first, up in the air, like fireworks. No names, no proofs, no nothing. You get the media to eat it, and then harvest the the attention. You'll be famous and the money will follow, soon.
The CLAIM will be on all world-wide-medias front pages, and with some luck this becomes The Fact. It becomes the The Final Truth: Mac's are just as insecure as [ insert your favorite here ]. It's on the media. It must be true.
But who did it ?
TMO is a little late reporting this, and it surprises me a little that they would walk right into this one without mentioning all the doubt that has built up in the time since this was first reported. If it were me, I'd be afraid of reporting this without including a truckload of salt in my headline. From all the nebulous claims and weird happenings to this story, I'm laying my money on a hoax.
Thu Jul 19, 2007 4:03 pm Subject: It sounds like a hoax. . .
Apparently the guy in question has. . .
Disappeared!
Like Kaiser Soze! hmmmm
http://www.tuaw.com/2007/07/19/alleged-os-x-worm-creator-disappears/
If Apple has a long way to go then Microsoft better close shop on Windows. I don't consider it a long way to go when he can only find one exploit compared to the hundred's of thousands that have been found on Windows. So who does he think he's kidding here anyways. Also his is only a theory versus the hundreds of thousands that were reality with Microsoft's Windows. Millions of dollars lost in information and businesses because of Microsoft's LACK OF SECURITY. I think Apple has about an inch compared to Microsoft's 100,000 Light years.
To date, no spyware on OSX, no malware on OSX, and no viruses on OSX.
Windows has it all with more and more coming out everyday. Windows users have to spend there money and time on antivirus software, and anti-spyware software while OSX users just use there Macs for what they want to use them for.
So what were you saying Mr. anonymous?
Sun Jul 22, 2007 12:59 pm Subject: More on the issue
See the ArsTechnica article.
I have owned a mac since 1990. Only once did I have a problem with my computer propagating a virus, because at the time I had no virus protection. Since I started using Norton Antivirus I have had no problems. I will trust a Mac before any other machine on the planet, especially a Windows machine. They are the ones that seem to continually get cracked.
Comments are currently closed. Please email the author instead.
Recent Headlines - Updated November 9th
- Mon, 7:20 PM
- Rumor - Apple May Update iPod touch in December
- 6:45 PM
- Product News - MacUpdate Desktop Updated to 5.0.1 with New Features, Bug Fixes
- 5:16 PM
- Apple Releases Mac OS X 10.6.2 - Guest Account Bug Fixed, Much More
- 4:12 PM
- Games - New For iPhone: Star Rangers, Air Force Supremacy, Blood Beach, More
- 2:51 PM
- Apple Stock Watch - Radio Shack Jumps 14% on iPhone Deal, Apple Up 3%
- 2:25 PM
- Games - EA Scoops Up Social Games Publisher Playfish
- 1:51 PM
- Deal Brothers - Western Digital 1TB SATA Intellipower Hard Drive: $84.99
- 10:58 AM
- News - StarHub Signs Singapore iPhone Deal
- 10:36 AM
- Hot Forum Topic - Reader Speculation: What’s in Apple’s Tablet?
- 10:08 AM
- News - Apple Kicks Off New Credit Program
- 9:26 AM
- News - Apple Launches Reserve and Pick Up Program
- 8:49 AM
- News - ikee Worm Rickrolls Jailbroken iPhones
The Mac Observer Reader Specials
- TypeStyler For Mac OS X is Now Shipping! Download The Free Fully Functional 60 Day Tryout at www.typestyler.com
RamJet Memory: Mac Pro 8-core 8GB Kit $199.99, 4GB Kits $109.99! Sale on MacBook and MacBook Pro 8GB kits $549.99! New MacBook DDR3 2GB for $49.99. iMac and Mac mini 4GB Kits for $79.99! 1TB SATA Hard Drives for $109.99! Click here
OWC: Plug & Play Hardware RAID up to 8.0TB. High Performance, Data Redundant Solutions. FireWire 800, FireWire 400, USB2, or eSATA. Hot Swappable Bays, Data Rates over 200MB/s. Click here
If you're using a Mac, then you've gotta check out Full Tilt Poker for Mac. This Full Tilt Poker bonus code does the unthinkable, it actually rewards!For the latest Apple products use Ciao, a price comparison website, to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate mobile phones like the Apple iPhone.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.
