Mac OS X update fixes over 130 vulnerabilities

By

Mac looking more vulnerable over time.

Apple has fixed more than 130 vulnerabilities with a Mac OS X update, many of which could be exploited by hackers if users do not get the latest version of the operating system.

Mac OS X update fixes over 130 vulnerabilities

Mac OS X 10.6.5 includes fixes for a wide array of problems, from issues in QuickTime and Image Capture to a large number of vulnerabilities existing in the Flash Player plug-in.

“Multiple issues exist in the Adobe Flash Player plug-in, the most serious of which may lead to arbitrary code execution,” Apple warned in an advisory.

There is also a fix for a memory management issue in the operating system’s kernel, which could allow a local user to cause an unexpected system shutdown, and the update includes MySQL version 5.0.91 that plugs numerous security holes.

“Many of the vulnerabilities could be exploited by malicious hackers to run unauthorised code on your Mac computer, opening you up to the potential of being spied upon, having information stolen, or cyber criminals commandeering your Mac into becoming part of a botnet,” warned Graham Cluley, senior technology consultant at Sophos, in a blog.

“So, don't delay. Investigate rolling this update onto your Apple Macs as soon as possible.”

Mac security flaws have skyrocketed this year, according to figures from Panda Security.

In 2009, 34 vulnerabilities were detected in the Mac OS and so far in 2010 this has risen to over 170, the security firm reported in October.

Many experts have this year challenged the belief that Macs are inherently safe.

This article originally appeared at itpro.co.uk

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © ITPro, Dennis Publishing
Tags:

Most Read Articles

Macquarie Uni to spend up to $700m on 10-year digital transformation

Macquarie Uni to spend up to $700m on 10-year digital transformation

Nissan A/NZ's outsourced cyber incident call centre breached

Nissan A/NZ's outsourced cyber incident call centre breached

Digital ID bill passes parliament

Digital ID bill passes parliament

Macquarie's banking CISO headed to Endeavour Group

Macquarie's banking CISO headed to Endeavour Group

Log In

  |  Forgot your password?