New Remote Root in Mac OS X

← Back to Stories (view on slashdot.org)

Posted by pudge on Wednesday November 26, 2003 @08:39AM from the batten-down-the-hatches dept.

Cysgod writes "I've released a security advisory detailing a new remote root vulnerability in Mac OS X 10.3, 10.2 and possibly earlier versions." The main thrust is that it exploits a problem in the DHCP client, to gain root access, and turning off various services can prevent attack. It is unclear why an exploit was made public before Apple resolved the problem. Apple's fix is apparently scheduled for a December release.

14 of 445 comments (clear)

i thought i would never say this by Anonymous Coward · 2003-11-26 08:41 · Score: 5, Funny

thank goodness iam running Windows
1. Re:i thought i would never say this by toastmaster · 2003-11-26 08:42 · Score: 5, Funny
  
  because windows never had any security issues...
  
  --
  Music lovers are not criminals.
2. Re:i thought i would never say this by ePhil_One · 2003-11-26 08:46 · Score: 4, Funny
  
  Crazy fools! I run DOS with one of those big NFL Replay Review hoods, while inside a farady cage.
  Its the only way to be safe.
  
  --
  You are in a maze of twisted little posts, all alike.
3. Re:i thought i would never say this by helzerr · 2003-11-26 08:47 · Score: 0, Funny
  
  Damn it, why don't I ever have mod points when I need 'em... That's funny!
4. Re:i thought i would never say this by wo1verin3 · 2003-11-26 09:21 · Score: 5, Funny
  
  NO! It's because we are safe, windows doesn't have a root user. :0
Watch out Bill by bodin · 2003-11-26 08:43 · Score: 3, Funny

Apple are about to catch up on Microsoft!
Slashdotting to the rescue! by SuperBanana · 2003-11-26 08:55 · Score: 5, Funny

It is unclear why an exploit was made public before Apple resolved the problem
Slashdotting to the rescue! Apple has at least a few more hours now.

--
Please help metamoderate.
Re:What is telling by Boing · 2003-11-26 08:57 · Score: 5, Funny

Any unix-os is a friend of mine

He's a friend of SCO! Burn him!
why? by silicongodcom · 2003-11-26 09:00 · Score: 5, Funny

"It is unclear why an exploit was made public before Apple resolved the problem."

no SCO news!
Re:Call me an Apple Apologist, but.. by feepness · 2003-11-26 09:12 · Score: 4, Funny

You are an Apple Apologist.
Blasted City Folks! by GussT · 2003-11-26 09:16 · Score: 4, Funny

Everybody knows in the sticks that when you get a worm in your apple it just means you are getting a little extra protein in your snack.
Re:Exploitability Questionable by Vandil+X · 2003-11-26 09:55 · Score: 4, Funny

In most cases, the Mac will need to be booted into the malicious environment to be exploitable by this flaw.
In the Windows world, we call this malicious environment "Internet Explorer".

--
Up, Up, Down, Down, Left, Right, Left, Right, B, A, START
Damn by Anonymous Coward · 2003-11-26 10:33 · Score: 2, Funny

Can you imagine what will happen when the hundreds of Macs on the Internet get hacked? No, me either.
Re:Exploitability Questionable by sharkey · 2003-11-26 14:25 · Score: 3, Funny

In the Windows world, we call this malicious environment "Internet Explorer".
Actually, it's just called "explorer". Go ahead and check, I bet you've got this malware running on your Windows PC right now.

--

--
"Outlook not so good." That magic 8-ball knows everything! I'll ask about Exchange Server next.