Apple to Patch OS X Security Bug in Final Release of OS X 10.10.5

Apple to Patch OS X Security Bug in Final Release of OS X 10.10.5

A recently-discovered security flaw in OS X that allows the bad guys to gain root-level access to a Mac without requiring a administrator password, will be fixed in the final release of OS X 10.10.5, which is currently at the beta testing stage.

Apple to Patch OS X Security Bug in Final Release of OS X 10.10.5

AppleInsider:

There is no word on exactly what steps Apple will take to mitigate the problem, or whether the company will issue security patches for older versions of OS X. The decision to include a patch in OS X 10.10.5 was first reported by The Guardian.

The installer reportedly gains root level permissions by modifying the OS X sudoers configuration file, leaving it vulnerable to installation of malware and adware.

The bug was discovered by researcher Stefan Esser last week, he says developers failed to use standard security protocols OS X dynamic linker dyld. Esser reports the vulnerability is present in OS X 10.10.4, and even the recent beta versions of OS X 10.10.5. (However, today’s news indicates they are working on that.) He reported it is not present in early builds of OS X 10.11 El Capitan.

News of this exploit came close on the heels of a proof-of-concept worm called Thunderstrike 2, which can affect both Mac and PC hardware. The attack targets option ROM on peripherals, allowing it to be spread simply by connecting an infected peripheral to a Mac or PC.

  1. 837699 11672Nice to be visiting your weblog once far more, it continues to be months for me. Nicely this post that ive been waited for so lengthy. I want this post to total my assignment in the university, and it has same subject together along with your post. Thanks, terrific share. 715274

  2. 98512 201737Wahhhh,!! I dnt think its food thats making her tummy groww!!|tiitaBoo| 213210

Leave a Reply

Your email address will not be published. Required fields are marked *