Apple has released a security update to address the issue recently publicized by security firm Secunia. The vulnerability allows malicious scripts to be run just by getting someone to click a URL. The description of the update, which is called Security Update 2004-05-24, is sparse on details, merely saying that it updates HelpViewer, one of the weak links in the vulnerability. That description:
Security Update 2004-05-24 delivers a number of security enhancements and is recommended for all Macintosh users. This update includes the following components:
TMO recommends that you install this update now. It weighs in at a mere 712 KB. For related information on the flaw, read our coverage about how the flaw was discovered and made public.