Apple Patches Security Flaws with Java Updates | News | The Mac Observer

<script language="JavaScript" src="http://bullseye.backbeatmedia.com/bullseye/adserver/253/934/viewJScript?pool=124&type=13&pos=15&zone=5000&redirect=aj"></script> <noscript><a href="http://adserver1.backbeatmedia.com/servlet/ajrotator/253/934/clickCGI?pos=15&zone=5000"><img src="http://bullseye.backbeatmedia.com/bullseye/adserver/253/934/viewCGI?pool=124&type=13&pos=15&zone=5000&redirect=aj" border="0"></a></noscript> iObserver App Store Apple TV Game Center iAd iCloud iOS iPad iPhone iPod iTunes Siri Features Computing with Bifocals Dr. Mac's Rants and Raves Editorial Free on iTunes Hidden Dimensions Just a Peek Just a Thought MacOS KenDensed Monday's Mac Gadget Oh the Games You'll Play Particle Debris Ted Landau's User Friendly View The Back Page The Devil's Advocate The Flashback Files Reviews In-Depth Review Quick Look Review Video Review Tips How-To MGG Answers TMO Quick Tip Blogs Dave Hamilton's Blog Jeff Gamet's Blog John Martellaro's Blog Podcasts Apple Context Machine Podcast Mac Geek Gab Podcast Mac Geek Gab Premium Podcast Reports Apple Stock Watch Conferences Death Knell Games Mac OS TMO Interview Archives 2012 2011 2010 2009 2008 2007 2006 2005 2004 2003 2002 2001 2000 1999 1998 1997 Forums 1 Infinite Loop - The Mac Room Apple Finance Board iObserver Mac Geek Gab Crew Announcements & Suggestions Design & Create Buy or Sell Mac Merch. & Job Postings The TMO Lounge World News/Politics/Philosophy Contact RSS .(JavaScript must be enabled to view this email address)
Apple Patches Security Flaws with Java Updates News Jeff Gamet 5:21 PM, Jun. 15th ET, 2009 TMO Talk (6) Articles by Author Jeff Gamet on Twitter Contact Author Bio Tweet Comments (6) Apple rolled out Java security updates for Mac OS X 10.4 and 10.5 late Monday afternoon. Java for Mac OS X 10.4 Update 9 and Java for Mac OS X 10.5 Update 4 patch a series of flaws that could let a remote attacker gain elevated privileges or execute arbitrary code on the victim's computer. The security updates address issues in Mac OS X 10.4.11 and 10.5.7 where attackers could use untrusted Java applets to gain elevated privileges on a victim's computer, or where visiting a Web site containing a maliciously crafted Java applet could let an attacker run arbitrary code with the victim's current privileges. The updates are free and available via the Software Update application, or as downloadable installers for Mac OS X 10.4.11 and 10.5.7 at the Apple Support Web site. Email This Tweet This Jeff Gamet on Twitter 47639 Jeff Gamet news 1245100899 Post A Comment or Log-in. Need an account? Register here. 6 Observer Comments Don Sakers said on June 15th, 2009 at 5:39 PM: The last Security Update killed my venerable iMac G$ so thoroughly that even reinstalling OSX hasn’t brought it back to full functionality. And now Apple wants us to install another Security Update? Anyone who does so is taking a terrible chance. Me, I’ll never install another Apple Security Update until I know that no one else’s machine has been hosed by it. geoduck said on June 15th, 2009 at 6:01 PM (Edited: 01/26/2012 2:46 PM): Not a bad precaution, especially with an older system. FWIW I’ve installed it on two systems so far, a silver and a white MacBook, running 10.5.7 and it was fine. Like you, I’m waiting to do my G5. Intruder said on June 15th, 2009 at 6:37 PM: The last Security Update killed my venerable iMac G$ so thoroughly that even reinstalling OSX hasn’t brought it back to full functionality. Ummm, yeah. So wiping the previous install (including the security update) and reinstalling the OS doesn’t bring it back? And how does that work, exactly? I put absolutely no faith in anecdotal “evidence” from unregistered guests. Especially when it makes no sense whatsoever. James said on June 15th, 2009 at 8:36 PM: I’ve installed all of these updates without a hitch on G5 systems running 10.5.7. Either the first poster is flat out lying, or there is something seriously wrong with that machine. vasic said on June 15th, 2009 at 11:21 PM: While in general it may be a good idea to wait a few days in order to check if someone else may have had some problems with the update, this particular patch is extremely critical. Safari was wide open to serious drive-by java attacks and, in addition to the proof-of-concept site that demonstrated how simple the attack was (absolutely no action by user required to get root privileges after visiting the malicious URL), malicious sites were being reported out there. The worst part is, you just don’t even know you’ve been had by the attacker! As for these installation problems, if you have a mission-critical machine and are anxious about updating, just do a full back-up (carbon copy cloner or similar) and update. If it’s hosed, reformat, restore and all is well. jfbiii said on June 16th, 2009 at 9:43 AM: Safari was wide open to serious drive-by java attacks Only if you haven’t turned off Java in your preferences, which, seriously, everyone should have done if they were continuing to use Safari after the exploit was announced. Probably still a good idea to only turn it on if you have a specific need and then only when necessary. Post A Comment or Log-in. Need an account? Register here. said on May 27th, 2012 at 6:27 AM: Username Password Auto-login on future visits Show my name in the online users list Forgot your password? Recent Headlines - Updated May 27th Sat, 10:00 AM MacOS KenDensed - MacOS KenDensed: Apple’s Patent Lawsuit & Antitrust Shuffle Fri, 5:58 PM News - Sotheby’s to Auction Steve Jobs Atari Memo (Photo Gallery) 5:42 PM Free on iTunes - 3 Free iOS Apps for News Hounds 3:00 PM Rumor - Nest Thermostat Reportedly Coming to Apple Retail Stores 2:40 PM Particle Debris - The TV Industry’s Dreadful Little Secret 2:33 PM News - Mobile Devices Account for 20% of Web Traffic in US, Canada 12:49 PM News - Apple Now Offering “Free App of the Week” for iOS 12:21 PM News - Tim Cook Declines $75 Million Dividend Payout 11:25 AM News - Absinthe 2.0 Provides Untethered Jailbreak for iOS 5.1.1 11:09 AM Quick Look Review - F18 Carrier Landing (iOS) is a Boatload of Fun 10:51 AM TMO Appearances - Jeff Gamet talks Cool Apps & Accessories on Not Another Mac Podcast 10:12 AM Hot Forum Topic - Forum Poll: Which is Your Favorite Photo Sharing Service? The Mac Observer Reader Specials Macsales.com for the Right Mac Memory. Most Popular: 16GB from $128; 8GB from $50. MacBook Pro & Mac mini Kits up to 16GB. iMac up to 32GB & Mac Pro now up to 128GB. - Macsales.com Mac RAM Upgrades: MacBook Pro 16GB kits $475, 8GB Kits for $119.99! iMac 16GB RAM Kits (4x 4GB) for $229.99! Mac Pro Memory 32GB Kit for $399.99, 64GB Kit for $889.99! Mac Hard Drives 2TB Seagate SATA II for $249.99! Click Here! If you're using a Mac, then you've gotta check out PokerOnAMac.com. Online casinos and poker rooms are literally giving away cash and the casino sites at Poker on a Mac do the unthinkable, they actually reward! Join today, the download is free! Looking to find online casinos for mac? We can help you find the best real money casino sites where you can play your favorite casino games including blackjack and slots.	Buy Stuff, Support TMO via Apple or Amazon Deals from DealBrothers.com Reader Specials Read TMO on Kindle TMO on Twitter and FaceBook: <script language="JavaScript" src="http://bullseye.backbeatmedia.com/bullseye/adserver/253/257/viewJScript?pool=9077&type=3158&pos=4&zone=5000&redirect=aj&dontcount=1"></script> <noscript><a href="http://adserver1.backbeatmedia.com/servlet/ajrotator/253/257/clickCGI?pos=4&zone=5000"><img src="http://bullseye.backbeatmedia.com/bullseye/adserver/253/257/viewCGI?pool=9077&type=3158&pos=4&zone=5000&redirect=aj&dontcount=1" border="0"></a></noscript> Apple Stock Quote (AAPL) Loading... Last trade: $---.-- $---.-- Market cap: $---.-- Discuss in our Apple Finance Board Quotes are delayed. Currency in USD Hot Topics What's the buzz? These articles have TMO readers talking. Samsung: Apple’s Trial Experts Are “Slavish” Fanboys - 19 Comments Forrester: Maybe Apple’s TV Isn’t a TV - 9 Comments The TV Industry’s Dreadful Little Secret - 8 Comments Analyst: Apple to Offer iPhone 3GS as Pre-Paid Option - 8 Comments Jonathan Ive Calls Apple’s Current Project the “Most Important” - 7 Comments Estimated Apple TV Sales to Date: 6.3 Million - 7 Comments TMO Express Join the TMO Express Daily Newsletter to get the latest Mac headlines in your e-mail every weekday. Find out more! Your address: <script language="JavaScript" src="http://bullseye.backbeatmedia.com/bullseye/adserver/253/767/viewJScript?pool=16773&type=13884&pos=22&zone=5000&redirect=aj&dontcount=1"></script> <noscript><a href="http://adserver1.backbeatmedia.com/servlet/ajrotator/253/767/clickCGI?pos=22&zone=5000"><img src="http://bullseye.backbeatmedia.com/bullseye/adserver/253/767/viewCGI?pool=16773&type=13884&pos=22&zone=5000&redirect=aj&dontcount=1" border="0"></a></noscript> Top Deals From DealBrothers.com 11” MacBook Air 1.6GHz dual-core Intel Core i5: $829.00 Delivered Samsung S22B300B 21.5” LED Backlit LCD Monitor: $129.99 Delivered NeatDesk Desktop Scanner: $249.99 - Today Only Canon imageCLASS Monochrome Multifunction Laser Printer: $129.99 Delivered Recent Features Get the latest installments of TMO Columns, Podcasts, & Blogs. MacOS KenDensed: MacOS KenDensed: Apple’s Patent Lawsuit & Antitrust Shuffle Free on iTunes: 3 Free iOS Apps for News Hounds Particle Debris: The TV Industry’s Dreadful Little Secret Mac Geek Gab Premium Podcast: MGG 399: Five Questions from Three Scotts Editorial: How the Ripples in Apple’s TechSphere Will Influence Us John Martellaro's Blog: Pitch Perfect for Developers is a Perfect Pitch
iObserver Features Reviews Blogs Podcasts Archives Reader Specials Forums Search Contact Privacy RSS © The Mac Observer, Inc. -- All rights reserved. All information presented on this site is copyrighted by The Mac Observer, Inc. except where otherwise noted. No portion of this site may be copied without express written consent. Other sites are invited to link to any aspect of this site provided that all content is presented in its original form and is not placed within another frame. The Mac Observer is an independent publication and has not been authorized, sponsored, or otherwise approved by Apple, Inc.

Support The Mac Observer

We noticed you may be running AdBlock on your computer. It takes real money to run this site and to deliver the news, tips, and opinions you love to read.

If you wish to block the ads that pay for the creation of our content, we ask that you instead support TMO Directly, either with a $5 monthly recurring contribution, or a one-time donation of any amount of your choice. Thanks!

Subscribe with Paypal

Donate with Paypal