Apple Thoughts - News & Reviews on all things Apple

Be sure to register in our forums and post your comments - we want to hear from you!


Android Thoughts

Loading feed...

Laptop Thoughts

Loading feed...

Digital Home Thoughts

Loading feed...





All posts tagged "vulnerability"


Tuesday, July 12, 2011

Worried About Jailbreakme.com 3.0 Vulnerability? Take These Steps

Posted by Jeff Campbell in "Apple Software (iPhone/iPod Touch/iPad)" @ 02:30 PM

http://www.macworld.com/article/161...l#lsrc.rss_main

"Are you worried about all the ruckus over the Jailbreakme.com 3.0 vulnerability for your iPhone and iPad? While you're waiting for Apple to come out with a fix, there are a few safety precautions you can take."

Image credit:www.downloadatoz.com/

This was exposed last week by Dev-Team, and it exploits a possible vulnerability within the code that could allow an attacker to control your iPhone, iPad or any iOS device. So the usual warnings apply if you do have a jailbroken iOS device, namely don't click on links, download files from untrusted web sites and don't open email attachments from unknown sources. The basic safety stuff you should be following anyway. Apple has responded and said they are working on a fix, but no word on release.


Friday, June 12, 2009

Adobe Releases Fix for CVE-2009-1492 for Macs

Posted by Jeff Campbell in "Apple Software (OS X)" @ 08:00 AM

http://www.macworld.com/article/141...l_mwnws_h_crawl

"Adobe has updated its Acrobat and Adobe Reader programs to fix what the company is calling "critical vulnerabilities" in its PDF creation application and free PDF viewer."

Adobe says this fixes "about" 13 critical vulnerabilities in Reader and Acrobat. The official name of the vulnerability is the CVE-2009-1492 and causes applications to crash, as well as potentially allowing someone to take control of the system that is affected. If you have Adobe Reader and Acrobat 9.1, you need to upgrade with these updates that were released on Tuesday. You can download Adobe Reader 9.1.2 and Adobe Acrobat Professional 9.1.2 at Adobe.


Thursday, May 21, 2009

Apple Has Yet to Fix Java VM Vulnerability

Posted by Jeff Campbell in "Apple Software (OS X)" @ 10:00 AM

http://arstechnica.com/apple/news/2...chine-which.ars

"A vulnerability in the Java virtual machine, which can allow arbitrary code execution, was publicly disclosed and fixed by Sun last December. However, security experts warn that the JVM in Mac OS X still remains un-patched against the vulnerability."

I don't know a lot about this particular hole, but what could happen if it isn't fixed, is that by visiting any website that has a "specially crafted" Java applet you open yourself up to trouble. This could mess up your machine, regardless of the platform or browser. So the only way to avoid potential exploits is to disable java in your browser, and to be extra careful, they say it wouldn't be a bad idea to disable the "open safe files after downloading" option in Safari. If you cant trust the code 100 percent (which I surmise means that you need to stay away from porn sites and be extra careful with clicking on those tiny urls) then either use the safeguards or avoid the site.


Tuesday, January 13, 2009

Safari RSS Vulnerability Revealed

Posted by Vincent Ferrari in "Apple Software (OS X)" @ 07:00 AM

http://www.tuaw.com/2009/01/13/safa...-personal-data/

"In this case, the issue is that a hole in Safari's handling of RSS feeds could allow an attacker (via a malicious web page) to capture a user's personal information, cookies or even passwords. While Brian has not posted more details of the vulnerability publicly, he has acknowledgment from Apple that the issue exists; hopefully we will see an update soon that closes this hole. In the meantime, although Windows Safari users are advised to use a different browser to avoid the vulnerability, Mac users can simply set an alternative RSS feed handler to work around the issue."

If you use Safari for its RSS goodness, this one is pretty darned important, so beware for now. You may even consider switching to something else for your RSS needs until this is ironed out and patched.


Featured Product
News Tip or Feedback?

Contact us

Other Apple Resources

All iOS News

iPhone Life

Thoughts Media Sites

Windows Phone Thoughts

Digital Home Thoughts

Zune Thoughts

Apple Thoughts

Android Thoughts

Reviews & Articles

Loading feed...

News

Loading feed...

Reviews & Articles

Loading feed...

News

Loading feed...

Reviews & Articles

Loading feed...

News

Loading feed...

Reviews & Articles

Loading feed...

News

Loading feed...

Reviews & Articles

Loading feed...

News

Loading feed...

Sponsored links