Security Update 2005-004

Software UpdateApple has released Security Update 2005-004 delivers security enhancements for iSync

> Apple's detailed information on this security update.

.MacThe upcoming Mac OS X 10.4 "Tiger" will have .Mac Sync Syncing can be easier since .Mac Sync is built in to Mac OS X Tiger, .Mac users can sync and share files with friends a lot easier.


iSync Available for: iSync 1.5 on Mac OS X v10.2.8 and Mac OS X v10.3.x CVE-ID: CAN-2005-0193 Impact: A buffer overflow in iSync could lead to local privilege escalation. Description: The iSync helper tool mRouter contains a buffer overflow vulnerability. This could result in the execution of arbitrary commands as root by local system users. Security Update 2005-004 fixes this issue by providing a patched version of mRouter. Credit to Braden Thomas for reporting this issue.

Posted by Antony at April 20, 2005 12:47 PM

>> more MacCentre701 April 2005 reports.