toggle

AAPL Stock: 562.29 ( -3.03 )

Apple fixes iSync vulnerability with security update

updated 07:20 pm EDT, Tue April 19, 2005

Apple patches iSync


Apple today released , which delivers an updated version of iSync 1.5 and is recommended for all Macintosh users. The update protects against a buffer overflow vulnerability in iSync could lead to local privilege escalation. "The iSync helper tool mRouter contains a buffer overflow vulnerability [that] could result in the execution of arbitrary commands as root by local system users. Security Update 2005-004 fixes this problem by providing a patched version of mRouter." Apple also said that iSync 1.4 is also affected by this vulnerability and encourages users to update to the freely available iSync 1.5, and then apply Security Update 2005-004. Mac OS X users can obtain the update via Apple's Software Update mechanism.


by MacNN Staff

print
email
(5)

TAGS :

 software

Related Articles

Recent Articles

toggle

Comments

  1. ehunt

    Forum Regular

    Joined: May 2000

    0
    04/19, 08:37pm | report spam | Reply |

    maybe later

    after the havok the last security update played I'll pass on this one...10.3.9 seems to have things running a better until my Tiger order get's here!

  1. JeffHarris

    Fresh-Faced Recruit

    Joined: Oct 1999

    0
    04/20, 05:49am | report spam | Reply |

    iSync?

    I don't have iSync installed, nor do I plan to. That is, unless iCal turns into a serious application, rather than a barely supported half-measure. I use The Missing Sync with my Sony Clié and Palm Desktop.

    So is this necessary?

  1. spacefreak

    Addicted to MacNN

    Joined: Feb 2002

    0
    04/20, 09:50am | report spam | Reply |

    Hmmm...

    There sure have been a lot of security releases and patches for such a "secure" platform.

  1. kmichaelm

    Fresh-Faced Recruit

    Joined: Apr 2005

    0
    04/26, 12:25pm | report spam | Reply |

    erased firewire HD data

    I have a user who applied this update (and the "iPod Updater 2005-03-23") through software update and upon reboot could not see her firewire drive as anything other than a new drive that needed to be initialized. Mounted this Lacie FW drive on another system that did not have this update applied and not even Disk Warrior could see data on it.

    Anyone else see this happen?

    KMM

  1. kmichaelm

    Fresh-Faced Recruit

    Joined: Apr 2005

    0
    04/26, 12:36pm | report spam | Reply |

    RE:erased firewire HD...

    Oh yes, the Mac in question is running Jaguar 10.2.8, not Panther. 450 Mhz PowerPC G4 AGP graphics.

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

iHome iW2 AirPlay speaker

iHome generally isn't known as a luxury brand when it comes to audio, but it is prolific -- the company's docks and speakers are every ...

Logitech Ultrathin Keyboard Cover

One of the iPad's main weaknesses has always been productivity. It's not a question of apps; while it has taken a little time for a na ...

Logitech UE Air Speaker

If maybe a little more slowly than Apple would like, AirPlay is becoming a staple of the wireless speaker market for iOS devices. The ...

toggle

Most Commented

 

Popular News