Slashdot Mirror

← Back to Stories (view on slashdot.org)

Software Update Vulnerability

Posted by pudge on from the oh-goody dept.

redmoss writes "I just saw this exploit for Software Update on Bugtraq. Quoting the discoverer Russell Harding: 'Mac OS X includes a software updating mechanism 'Software Update.' Software Update, when configured by default, checks weekly for new updates from Apple. HTTP is used with absolutely no authentication. Using well-known techniques, such as DNS Spoofing, or DNS Cache Poisoning, it is trivial to trick a user into installing a malicious program posing as an update from Apple.' Looks like people using Software Update need to be careful, as there is currently no workaround." Well, one workaround for this particular exploit is to not share a LAN with someone who would do that sort of thing.

3 of 92 comments (clear)

  1. First! by acceleriter · · Score: -1, Offtopic

    Primvs postvs.

    --

    CEE5210S The signal SIGHUP was received.

  2. the same for dpkg by Anonymous Coward · · Score: -1, Offtopic

    debian's package management is also vunerable to
    this.

    this is not something new. this is not an exploit.

    duh.

  3. Re:Weekly checks are not good enough by Anonymous Coward · · Score: -1, Offtopic

    I wasn't trolling you fascist gitts.