OS X bug, insecure URL handling in IoS

Posted by: oldmacbloggit | November 9, 2010

OS X bug, insecure URL handling in IoS

From Core Security, a comprehensive and disconcerting analysis of an OS X bug: [Unpatched] Apple OS X ATSServer CFF CharStrings INDEX Sign Mismatch (The Jailbreakme bug in OSX) (Hat tip to John Leyden for pointing it out.)

While Nitesh Dhanjani writes about Insecure Handling of URL Schemes in Appleʼs iOS at SANS (thank you Brian Krebs for that one). Also covered by Jeremy Kirk for MacWorld: Researcher: iPhone’s Safari dials calls without warning.

Old Mac

About these ads

Posted in OSX | Tags: ATSServer, Brian Krebs, Charlie Miller, Core Security, insecure URL handling, iOS, iPhone, Jailbreakme bug, Jeremy Kirk, John Leyden, Nitesh Dhanjani, Old Mac Bloggit, OS X, Safari, SANS, Skype

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

M	T	W	T	F	S	S
« Oct				Dec »
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30

Mac Virus

OS X bug, insecure URL handling in IoS

Leave a Reply Cancel reply

Categories

About Mac Virus

Search

Recent Posts

Blogs by Date

Blogroll

Email Subscription

Recent Tweets

Blogs by archive

RSS

Follow “Mac Virus”

Mac Virus

OS X bug, insecure URL handling in IoS

Share this:

Like this:

Leave a Reply Cancel reply

Categories

About Mac Virus

Search

Recent Posts

Blogs by Date

Blogroll

Email Subscription

Recent Tweets

Blogs by archive

RSS

Follow “Mac Virus”