logo

os

| Posted by Avatar Staff 287 days ago
Via: http://www.uninformed.org | Tags: os x kernelmode exploitation in a weekend comments Discuss  
Apple's Mac OS X operating system is attracting more attention from users and security researchers alike. Despite this increased interest, there is still an apparent lack of detailed vulnerability development information for OS X. This paper will attempt to help bridge this gap by walking through the entire vulnerability development process. This process starts with vulnerability discovery and ultimately finished with a remote code execution. To help illustrate this process, a real vulnerability found read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 287 days ago
Via: http://uninformed.org | Tags: abusing mach on mac os x comments Discuss  
This paper discusses the security implications of Mach being integrated with the Mac OS X kernel. A few examples are used to illustrate how Mach support can be used to bypass some of the BSD security features, ... read more »
addto Add this link to... report Bury 
| Posted by Avatar Staff 287 days ago
Via: http://uninformed.org | Tags: mac os x ppc shellcode tricks comments Discuss  
Developing shellcode for Mac OS X is not particularly difficult, but there are a number of tips and techniques that can make the process easier and more effective. The independent data and instruction ... read more »
addto Add this link to... report Bury 
Category: vulnerabilities | Posted by Avatar Staff 283 days ago
Via: http://secunia.com | Tags: apple mac os security update fixes multiple vulnerabilities comments Discuss  
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities and weaknesses.Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that all Microsoft patches are applied * Assists you in updating your system and applications * Runs through your browser. No installation or download is re read more »
addto Add this link to... report Bury 
Category: vulnerabilities | Posted by Avatar Staff 268 days ago
Via: http://secunia.com | Tags: apple mac os ipcompinput denial service comments Discuss  
A vulnerability has been reported in Apple Mac OS X, which can be exploited by malicious people to cause a DoS (Denial of Service).Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that all Microsoft patches are applied * Assists you in updating your system and applications * Runs through your browser. No read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 267 days ago
Via: http://lists.jammed.com | Tags: isn apples mac os vulnerable networking exploit comments Discuss  
http://www.informationweek.com/news/showArticle.jhtml?articleID=206900323By Thomas ClaburnInformationWeekFebruary 26, 2008The most recent version of Apple's Mac OS X (10.5.2) appears contain a security vulnerability that could allow an attacker to crash computers on a local or remote network.Security researcher Neil Kettle of Digit-labs.org on Tuesday posted a proof-of-concept exploit that takes advantage of a flaw in the way the Apple implements IPv6 support.Most networks use the IPv4 networking protocol; read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 262 days ago
Via: http://www.infoworld.com | Tags: security vendors prep antivirus software mac os x comments Discuss  
Russian security vendor Kaspersky Lab has a prototype version of its virus protection software waiting in the wings in case Apple Mac OS X suddenly becomes a target of choice for hackers. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 247 days ago
Via: http://feeds.ziffdavisenterprise.com | Tags: apple ships mac os mega update comments Discuss  
Security Update 2008-002 covers scores of critical vulnerabilities that could lead to remote code execution attacks. ...Free Embedded Linux Webinars 5 free embedded Linux webinars from Timesys. Topics include Toolsets, Boot-Up, Filesystems & more. read more »
addto Add this link to... report Bury 
Category: vulnerabilities | Posted by Avatar Staff 247 days ago
Via: http://secunia.com | Tags: mac os security update fixes multiple vulnerabilities comments Discuss  
Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities.Be sure to check if your system is missing security updates or have insecure applications installed:http://secunia.com/software_inspector/Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that all Microsoft patches are applied * Assists you in updating your system and applications * Runs through your browser. No installation or download is required. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 247 days ago
Via: http://go.theregister.com | Tags: so easiest box hack vista ubuntu os x comments Discuss  
CanSecWest's Pwn2Own contest returnsTired of all the knee-jerk banter from fanboys about whose operating system is the most secure? So are the organizers of the CanSecWest security conference, which will be held in Vancouver later this month. And with a contest awarding as much as $25,000 worth of prizes, they're likely to breath fresh life into a stale debate.… read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 245 days ago
Via: http://lists.jammed.com | Tags: isn easiest box hack vista ubuntu os x comments Discuss  
http://www.theregister.co.uk/2008/03/19/pwn2own_contest_returns/By Dan Goodin in San FranciscoThe Register19th March 2008Tired of all the knee-jerk banter from fanboys about whose operating system is the most secure? So are the organizers of the CanSecWest security conference, which will be held in Vancouver later this month. And with a contest awarding as much as $25,000 worth of prizes, they're likely to breathe fresh life into a stale debate.This year's Pwn2Own competition will place three brand-new, fu read more »
addto Add this link to... report Bury