FierceCIOFierceCIOTechWatchFierceMobileITFierceContentManagementFierceGovernmentIT   FierceVoIPFierceHealthITFierceFinanceIT

Month of kernel bugs continues with OSX exploit

November 20, 2006 — 8:01pm ET
Tools
Tags
IT Security
Hacking
exploits

When we mentioned the "Month of Kernel Bugs" earlier this month, I certainly didn't think that we had heard the last from the mysterious "lmh." As it turns out, I was right: The masked blogger has made headlines again by posting a proof-of-concept bug that details a critical flaw in Mac OS X's AppleDiskImageController. The exploit can trigger kernel-mode arbitrary code execution, allowing admin access to a potential attacker. Until a fix is available, users are advised to remain wary of attached .dmg files.

For more on the vulnerability:
- see the blog post at the Kernel Fun blog
- or George Ou's write-up at TechRepublic

Click here to get the FierceCIO:TechWatch email newsletter for FREE!


Be the first to comment

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.

More information about formatting options

To combat spam, please enter the code in the image.