Apple's security team kicked off the year yesterday with an update to fix 12 vulnerabilities in the firm's Snow Leopard and Leopard operating systems, including seven Adobe Flash Player flaws.
The relatively small patch will come as a relief to security administrators, who faced a record Apple security update last November which addressed nearly 60 vulnerabilities.
Contained in the security advisory this time are warnings of multiple flaws in the Adobe Flash Player plug-in, the most serious of which "may lead to arbitrary code execution when viewing a maliciously crafted web site". This flaw could enable a hacker to take control of a compromised PC.
Also featured was a fix for a man-in-the-middle vulnerability in the SSL and TLS protocols. "An attacker with a privileged network position may capture data or change the operations performed in sessions protected by SSL," read the advisory.
Nine of the 12 flaws may lead to "arbitrary code execution", according to Apple. Although the company does not categorise the severity of its vulnerabilities, unlike Oracle for example, this kind of flaw is likely to be regarded as 'critical' by security administrators.
Apple releases patches for 12 flaws
By
Phil Muncaster
on Jan 21, 2010 8:59AM
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
.jpg&h=142&w=230&c=1&s=1)
New Microsoft CSP rules? Here’s how MSPs can stay ahead with Ingram Micro
Guiding customers on the uneven path to AI adoption
MSPs with a robust data protection strategy will achieve market success
Beyond the box: How Crayon Is Redefining Distribution for the Next Era
Shared Intelligence is the Real Competitive Edge Partners Enjoy with Crayon
Sponsored Whitepapers
Cut through the SASE confusion
Stay protected as cyber threats evolve
Defend Your Network from the Next Generation of AI Threats
.jpg&w=100&c=1&s=0)
The race to AI advantage is on. Don’t let slow consulting projects hold you back.
_(8).jpg&w=100&c=1&s=0)
The changing face of Australian distribution
