Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: US-CERT Vulnerability Note VU#800113



On Fri, Jul 25, 2008 at 12:17 PM, <email@hidden> wrote:
Jamie:

There haven't been any exploits or there haven't been any viruses?

http://secunia.com/product/96/?task=statistics

Charles Profitt
Sr. Network Technician
BrainBench Certified - (Master)Microsoft Security | (Master)Storage Area
Networks Concepts | (Master)Microsoft Vista Desktop Administration |
(Master)Macintosh OS X 10.4 Desktop Administration
75 Barker Road
Pittsford, NY 14534

Important Notice:
This communication, including any attachments, is intended only for the
use of the individual(s) or entity(s) to which it is addressed and may
contain information that is privileged, confidential and exempt from
disclosure under applicable law. If the reader of this communication is
not the intended recipient, you are hereby notified that any
dissemination, distribution or reproduction of any part of this
communication in any format is strictly prohibited. If you have received
this communication in error, please notify us immediately by replying to
this communication and deleting the original and any automatically
generated copies. Thank-you for your co-operation.



Jaime Magiera <email@hidden>
Sent by:
macos-x-server-bounces+chas_profitt=pittsford.monroe.edu@lists.apple.com
07/25/2008 02:27 PM

To
OS X server list <email@hidden>
cc

Subject
Re: US-CERT Vulnerability Note VU#800113







On Jul 25, 2008, at 2:13 PM, Chuck Marzec wrote:

> Greetings,
>
> I was at the same John DeTroye seminar. I believe his assertion was
> there were no viruses in the wild for the mac os. In my opinion,
> just more classic Apple spin. One of these days they will get
> bitten. Until then, spin away Apple.


I've been to Apple Security presentations and have never heard "there
never will be". I have heard "there haven't been", which is correct.

Jaime Magiera

Sensory Research
http://www.sensoryresearch.net

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden


This email sent to email@hidden



 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden

Did apple forget about their ARDAgent local root escalation issue? Now its even easier if you target macs, redirect folks to your own apple.com server and tell them to download a new version of itunes, and root their box without even asking for a password.

The fact that 4 weeks + now the ARDAgent exploit and now the DNS exploit have had not a peep from Apple does not bode well for any company that is claiming they are secure. Maybe Jobs doesn't want to have to issue two security patches back to back in the same month.

--
Chris Barker
Purveyor of Fine Suggestions
ACSA

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden

This email sent to email@hidden
References: 
 >Re: US-CERT Vulnerability Note VU#800113 (From: email@hidden)
 >Re: US-CERT Vulnerability Note VU#800113 (From: "Chuck Marzec" <email@hidden>)
 >Re: US-CERT Vulnerability Note VU#800113 (From: Jaime Magiera <email@hidden>)
 >Re: US-CERT Vulnerability Note VU#800113 (From: email@hidden)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.