The Mac Observer

Skip navigational links

Choose text size: Select small text. Select medium text. Select large text.

Featured Article: Editorial - Does the Mac Really Have Enterprise Security Issues?

heise Uncovers Leopard DoS Flaw

by , 10:30 AM EST, December 10th, 2007

heise Security revealed on Monday that Apple's Mac OS X 10.5 operating system contains a security flaw that could allow an attacker to crash the system through a denial of service attack. The threat could allow an attacker to cause a kernel panic by taking advantage of an integer overflow when processing certain Mach-O binaries.

Macs with only one user account should be immune to potential attacks. For multi-user setups, however, the threat could be exploited even if the user doesn't have administrative level access because it does not require special privileges.

heise claims the flaw exists in Mac OS X 10.4.11, 10.5, and 10.5.1, and that Apple has not yet issued a fix. There are no know instances of this threat being used.

Observer Comments

Show: Subjects Only | Full Comments
View Name:Guest
Mon Dec 10, 2007 1:46 pm Subject: Hmmm
Close Name:Mikuro Posts: 450 Joined: 15 Jun 2002
Mon Dec 10, 2007 5:20 pm Subject:

Quote
Guest wrote:
If I have direct authorized access to a system, I can do all kinds of things to it..

Well, only if you're an administrator. Normal users should not be able to do much of anything to the system as a whole. If they can, it's only through bugs like this.


 Reply | Quote
View Name:Guest
Wed Dec 12, 2007 11:54 am Subject:
Comment on this Article

Show:   comments per page.   Save Settings
Guest Posts Hidden. View Them.
Back to top  Page 1 of 1    

You cannot edit your comments.   You cannot delete your comments.
Log in | Register | Having Problems? Reset TMO Cookies & Try Again
Username:   Password:   Log me on automatically each visit   

You are not logged in, and this post will appear as "Guest." Log in with your username and password from the TMO forums. If you do not have a username, you can register here.
Please note that guests are limited to including a maximum of two URLs per post.

Post A Comment
  Subject


  Your Comments



Please enter the word exactly as you see it in the image above. Registered users aren't prompted for this. Having trouble reading the image get a new one.

Recent Headlines - Updated Friday, July 18th, 2008

Fri., 4:30 PM
iPO Apple Store Spotlight - Bloomberg LP - Financial Information on Your iPhone
2:50 PM
iPO Just a Thought - Seven Days (and Counting) Trying to Get an iPhone
2:15 PM
AAPL Drops 3% in Afternoon Trading, Deferred Revenue Accounting Earning Attention
12:05 PM
iPO Review - Jensen JiMS-525i
11:05 AM
Apple in Art
10:40 AM
iPO Free on iTunes - AtomTV, Black In America, Strange Days on Planet Earth, & More
9:15 AM
TMO's DealsOnTheWeb.com - JBL On Stage II Speaker System w/RF Remote Control: $67.99 Delivered
8:20 AM
StrangeCharm - Particle Debris and a New iPhone (2G)
7:30 AM
TMO Quick Tip - Build Your Own Twitter Client
 

The Mac Observer Reader Specials
  • Special Report: WWDC 2008
  • Special Report: iPhone
  • __________
  • Help TMO Grow
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!
  • New Media Expo 2008

Apple Stock Quote

  • AAPL: $165.15. Change Today: -6.66.
  • (Prices delayed up to 20 minutes.)
  • Discuss in our Apple Finance Board

Hot Topics

What's the buzz? These articles have TMO readers talking.

Apple iTunes

Top Deals From DealsOnTheWeb