Security Concerns

Mac OS X users have been hit by a barrage of security concerns and exploits over the last week. Most of these issues stem from the discovery last week of the URI Handler Arbitrary Code Execution vulnerability.

To close this hole you should at least download and install Appleís Security Update 2004-05-24 (for Jaguar & Panther). Software Update will also pick up the correct version for your system. Further protection can be taken by using RCDefaultApp to disable the follow protocols :

  • afp
  • disk
  • disks
  • telnet

While youíre using RCDefaultApp, itís probably wise to change the default handler for the ftp protocol from the Finder to an FTP application (eg. Transmit or Interarchy etc.).

For complete and thorough analysis on how and why this can happen, read these posts on Daring Fireball :

Posted 9 years, 11 months ago

While you’re disabling protocols, I suggest adding ssh to the list:

http://www.lee-phillips.org/sshv.html

Lee Phillips · www · 9 years, 11 months ago

Cheers Lee. I also forgot to mention Unsanity’s Paranoid Android haxie, which does a similar thing to RCDefaultApp, but in a different manner - http://www.unsanity.com/haxies/pa/

Phil · www · 9 years, 11 months ago

'the URI Handler Arbitrary Code Execution vulnerability.'
try saying that after a few pints.

Matt · www · 9 years, 11 months ago

Gruber! Gruber! He’s the man. If he can’t do it... well I guess it’ll be John Welch... or perhaps that guy from Mac Journals. ;)

Tommy · www · 9 years, 11 months ago