Posted on 05/11/2006 2:09:49 PM PDT by Panerai
Apple on Thursday released Security Update 2006-003, fixing vulnerabilities in Mac OS X and Mac OS X Server. In addition to fixing core technologies, the update also includes changes to several of the company's applications.
An issue with Apple's Safari Web browser running in Mac OS X 10.4 that allowed an automatically expanded archive containing a symbolic link to be moved to the user's desktop and launched has been fixed in this update.
Apple Mail received two fixes. The first deals with the handling of invalid color information in enriched text email messages that could cause the allocation and initialization of arbitrary classes. This may lead to arbitrary code execution with the privileges of the user running Mail, according to Apple. The second fix dealt with the ability of users to prepare a specially crafted email message with MacMIME encapsulated attachments to trigger an integer overflow. This may lead to arbitrary code execution with the privileges of the user running Mail.
Preview, Apple's PDF viewing application, had a problem if a user was navigating very deep directory hierarchies in Preview. In such cases it may be possible for an attacker to cause arbitrary code execution if the directories are opened in Preview. This issue does not affect systems prior to Mac OS X v10.4, according to Apple.
The Security Update also includes a new Flash Player 8.0.24.0. Flash Player contained critical vulnerabilities that may lead to arbitrary code execution when specially-crafted files.
Finally, the Finder has been updated to fix a problem that would allow an attacker to use Internet Location files to execute arbitrary code.
In addition to the Security Update, Apple has also released QuickTime 7.1, an update the company says delivers numerous important bug fixes and addresses critical security issues.
Front Row 1.2.2 delivers a variety of fixes for better reliability and compatibility when playing music, photos, and videos on your Macintosh, according to Apple.
Full details of the update for Mac OS X and Mac OS X Server are available from Apple's Web site. The QuickTime and Front Row updates are available via the Software Update in Mac OS X.
Bite your tongue, hot shot. I resent that.
resent or resemble? :P
Resent, not even close to resembling......
Help! I run Windows XP, recently I find that I can no longer view My Pictures, I can see the small preview pictures but when I try to click on them I get a message that Quicktime failed to initialized, error #2093. I have gone to websites where one can download Quicktime, but after reading comments I am rather fearful about getting all sorts of strange stuff. Is there an alternative, and how in the world did this all happen. It seems, from what I read that Quicktime is an Apple product and I've never had an Apple anything. Any help will be appreciated.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.