toggle

AAPL Stock: 493.42 ( + 0.25 )

Apple releases another security update

updated 04:35 pm EST, Mon March 13, 2006

Security Update 2006-002


Apple today released yet another security update that improves on its previous attempt to address the Mac OS X Zero Day exploit in its Safari browser and bundled email application (Mail.app). Apple's Security Update 2006-001, released last week, addressed an issue where Safari could automatically open a file which appears to be a safe file type, such as an image or movie, but is actually an application. The new Security Update 2006-002 update provides additional checks to identify variations of the malicious file types addressed in Security Update 2006-001 so that they are not automatically opened, according to Apple. This issue does not affect systems prior to Mac OS X v10.4. The update also provides fixes for a JavaScript flaw in CoreTypes as well as provides bug fixes in the Apache PHP module, download validation, and rysnc introduced by the previous security update. Earlier today, we noted new security flaws in iTunes and QuickTime, which have yet to be addressed. The update is available via the Software Update or the web for both Mac OS X 10.4 Tiger (PPC Client/Server, Intel Client Only) and Mac OS X 10.3 Panther client and Server versions.


by MacNN Staff

print
email
(9)

TAGS :

 troubleshooting

Related Articles

Recent Articles

toggle

Comments

  1. mattg333

    Fresh-Faced Recruit

    Joined: Feb 2006

    0
    03/13, 06:34pm | report spam | Reply |

    ugh

    this new update is giving me some problems, my mac minis running slower, and shiira wont start up

  1. Mouton

    Fresh-Faced Recruit

    Joined: Apr 2003

    0
    03/13, 08:09pm | report spam | Reply |

    indeed

    Have to agree at least about Shiira. It just stopped working after this update. Sad.

  1. kw99

    Fresh-Faced Recruit

    Joined: Nov 2001

    0
    03/13, 09:28pm | report spam | Reply |

    Mine appears OK

    And I use Shiira regularly, and it's working fine after the update.

    Be sure to do a "repair permissions" in Disk Utility after a system update. I haven't done it yet myself, but I'm doing it in a moment...

  1. Arolte

    Fresh-Faced Recruit

    Joined: Jul 2004

    0
    03/13, 09:32pm | report spam | Reply |

    Weather.com Crashing?

    Ran the security update for OS X 10.3.9. Great... except weather.com now crashes Safari as you attempt to navigate through the page's menus (Yesterday, Today, Hour-by-Hour, Tomorrow, etc.). Ughh...

  1. resuna

    Fresh-Faced Recruit

    Joined: Jan 2005

    0
    03/13, 11:14pm | report spam | Reply |

    don't bother

    Disable "open safe files after download" and don't worry about this kind of attack. There's no general solution to the problem without changing the way Safari opens files.

    http://www.scarydevil.com/~peter/io/apple3.html

  1. LouZer

    Fresh-Faced Recruit

    Joined: Nov 2000

    0
    03/13, 11:45pm | report spam | Reply |

    Re: don't bother

    Doesn't help if you download the file, then go to manually open said "jpg" only to find out its a .app!

  1. resuna

    Fresh-Faced Recruit

    Joined: Jan 2005

    0
    03/14, 04:43pm | report spam | Reply |

    learn not to be a target

    People learn not to "download a file and go manually open said jpg". This is a much bigger problem on Windows, and it's almost a non-problem *IF* you can avoid letting the bad guys pick the time and place...

    For seven years our primary "antivirus" was "don't use internet explorer or outlook" (the applications that are the poster-boys for this kind of social engineering) and "learn from your mistakes".

    I occasionally had to go and fix someone's PC because they'd downloaded a file to the desktop and then opened it and it turned out to be a bad-un. I never had to do it twice with anyone. Even the 'cup-holder' level users learned to check what downloaded files and attachments were trying to run as instead of just double-clicking them.

  1. QWER

    Fresh-Faced Recruit

    Joined: Jan 2007

    0
    01/23, 03:11pm | report spam | Reply |

    eeww

    aaliyah cds adriana lima adriana sklenarikova adrianne curry ainett stephens alanis morissette alec baldwin alexandra lamy amos tori andie macdowell aishwarya rai alanis morissette alessandra ambrosio alexandra paul alexis bledel anthony kiedis applegate christina ashton kutcher backstreet boy music barbara streisand alicia key alicia silverstone ali landry alizee alley baggett barbara walters

  1. QWER

    Fresh-Faced Recruit

    Joined: Jan 2007

    0
    01/23, 03:12pm | report spam | Reply |

    fdsfsf

    being john malkovich benet eric beyonce knowles brando marlon alyssa milano amber tamblyn amy smart ana beatriz barros anastacia brendan fraser brittany murphy cary grant celine dion ticket cheb khaled anastasia myskina andrea corr angelica bridges angel locsin angie everhart chris evans chris klein cindy crawford claire dane claire keim

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

10 Most Read

Recent Reviews

Logitech Cube

The world of mice could often be described charitably as stagnant: it's an endless sea of ergonomic shapes that assume you're sitting ...

NewerTech and Targus USB Hubs For Gifts

A useful holiday present to resolve an ongoing frustration is a multi-port hub. Whether as a stocking stuffer, Chanukah present, or an ...

X-Rite ColorMunki Photo

Color calibration is the art of tweaking your monitor so that the colors represented on screen better match real life and your printer ...

toggle

Most Commented

10 Most Discussed

 

Popular News