+ Reply
Results 1 to 11 of 11

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: Apple Patches Pwn2Own Security Hole in Record Time

is a discussion within the

Mac News

forums, a part of the

General Apple/Mac

section;
Just three weeks after a well-known researcher defeated the security on a MacBook Pro running Snow Leopard, Apple has released a patch for the vulnerability that allowed the exploit. Security
...
  1. #1
    MMi Staff Writer Paul Daniel Ash's Avatar
    Join Date
    Aug 2009
    Location
    Union Square, Somerville, Mass.
    Posts
    919
    Thanks
    6
    Thanked 995 Times in 401 Posts

    Default Apple Patches Pwn2Own Security Hole in Record Time


    Just three weeks after a well-known researcher defeated the security on a MacBook Pro running Snow Leopard, Apple has released a patch for the vulnerability that allowed the exploit. Security Update 2010-003, released today, fixes a security hole in Mac OS X Server 10.5, Mac OS X 10.5, Mac OS X 10.6 and Mac OS X Server 10.6 that would allow someone to run any code they want on the computer just by getting a user to load a file that has a 'maliciously crafted font.'

    In the support document accompanying the release, Apple gave proper credit for the discovery of the bug to security analyst Charlie Miller, who pulled a "three-peat" at the Pwn2Own competition this year after winning in 2008 and 2009. Last year, it took Miller all of ten seconds to defeat a MacBook Air's security: he walked away with the laptop and $10,000 US for his efforts. Apple finally rolled out a fix to the bug 55 days later; this year's vulnerability was patched in 21 days. Competition rules require the contestants to keep their exploits secret until they are patched; the information becomes the property of the sponsor, Tipping Point, which shares the vulnerability to the relevant company.

    According to the support document, the security hole was in Apple Type Services, a native font renderer that's used in Preview as well as in the PDF viewer of the Safari web browser. "Viewing or downloading a document containing a maliciously crafted embedded font may lead to arbitrary code execution," the support document reads. "An unchecked index issue exists in Apple Type Services' handling of embedded fonts."

    Miller also made use of ATS bugs last year, though he wasn't required to reveal details of any exploits other than the one he used to pwn the MacBook. Similarly, this year he discovered many other bugs through "dumb fuzzing:" a brute-force method that simply feeds random data to an application to see what it will do. Miller did not hide his disdain for Apple's software engineers' failure to use this automated testing method to find bugs in their own code. Rather than tell them all the holes he found for them, Miller said after the competition, he taught Apple and other companies "how to find these bugs, and do what I did. That might get them to do more fuzzing."

    Security Update 2010-003 can be downloaded and installed via Software Update, or from Apple Downloads.

  2. The Following User Says Thank You to Paul Daniel Ash For This Useful Post:

    reaves205 (04-15-2010)

  3. #2
    iPhone? More like MyPhone
    Join Date
    Feb 2010
    Location
    Arizona
    Posts
    109
    Thanks
    5
    Thanked 8 Times in 6 Posts

    Glad to see Apple doesn't proactively patch system exploits. Thus giving us the jailbroken/unlocked iPhone & insecure products like safari!!!
    Not to say the iPhone's native apps are secure.

  4. #3
    Green Apple jadenyuki678's Avatar
    Join Date
    Jun 2008
    Posts
    35
    Thanks
    1
    Thanked 0 Times in 0 Posts

    for a sec i thought they patches a jailbreak hole thank god it was mac

  5. #4
    iPhone? More like MyPhone
    Join Date
    Mar 2010
    Posts
    100
    Thanks
    38
    Thanked 22 Times in 14 Posts

    I love the picture.

  6. #5
    Developing Developer moon#pie's Avatar
    Join Date
    Jan 2010
    Posts
    5,215
    Thanks
    781
    Thanked 372 Times in 307 Posts

    downloaded this along with 8 other updates this morning for my new MBP


    Twitter: @tshoults

  7. #6
    Green Apple
    Join Date
    Jul 2007
    Posts
    99
    Thanks
    28
    Thanked 7 Times in 5 Posts

    what would an exploit allow you to do on a Mac? run foreign code that could do what?

  8. #7
    Developing Developer moon#pie's Avatar
    Join Date
    Jan 2010
    Posts
    5,215
    Thanks
    781
    Thanked 372 Times in 307 Posts

    ^ basically get hacked


    Twitter: @tshoults

  9. #8
    Green Apple Faxmonkey's Avatar
    Join Date
    Jun 2008
    Posts
    82
    Thanks
    1
    Thanked 18 Times in 13 Posts

    What scares me about this is that this guy is basically sitting on a stockpile of exploits that the software companies don't know about. If the bad guys have just one guy like that, then nobody is safe.

  10. #9
    Livin the iPhone Life jkmonkey's Avatar
    Join Date
    Mar 2010
    Location
    Upstate NY
    Posts
    1,433
    Thanks
    67
    Thanked 254 Times in 245 Posts

    @bill 69 Macs are not immune to viruses and other malicious software. These types of things haven't been as much of an issue with apple products because they have held a minority in the home computing world. As apple popularity grows expect to see more and more security issues with thier products

  11. #10
    Livin the iPhone Life rhekt's Avatar
    Join Date
    Jun 2009
    Posts
    1,294
    Thanks
    43
    Thanked 65 Times in 53 Posts

    Time for the updates yeah.
    killall Terminal[]

  12. #11
    MMi's "X" Member awesomeSlayer's Avatar
    Join Date
    May 2008
    Location
    Dragonspiral Tower in 3DS
    Posts
    4,524
    Thanks
    114
    Thanked 347 Times in 259 Posts

    Dang! That was fast! Picture...epic win.
    Asking for help is different from being stupid. Fanboys can rot in @#$%!

Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts