Login  |  Register  |  Contact

Month of Kernel Bugs Starts With Apple: November Should be Fun

The first flaw isn't all that interesting (affecting older PowerBooks, and only under certain conditions) but methinks November will be pretty darn interesting:

http://blogs.zdnet.com/Ou/?p=359

http://kernelfun.blogspot.com/

http://www.securityfocus.com/brief/344

http://blog.washingtonpost.com/securityfix/2006/11/exploitreleasedforunpatched1.html

http://www.mckeay.net/secure/2006/11/amonthofkernelbugs.html

More later, but the nasty ones to watch out for will, I expect, generally be either for wireless drivers (like this one), or file systems (and make nasty USB keys with).

Remember, these all run in ring 0 and can do pretty much whatever they want.

For the record, I really don't like full disclosure of 0 days like this, but I suppose it will draw needed attention to a nasty issue. I'd prefer to see it handled more responsibly than dumping code on the Internet.

(Updated 9/2: I was reminded that deauthenticating a mac using something like Void11 or KisMac can cause the vulnerable condition).

—Rich

Posted at Wednesday 1st November 2006 3:16 pm Filed under: geekhacking

Previous entry: Top Five Steps to Prevent Data Loss and Information Leaks | | Next entry: More SCADA News- Water Plant Hacked

Comments:

If you like to leave comments, and aren't a spammer, register for the site and email us at info@securosis.com and we'll turn off moderation for your account.

By bkwatch  on  11/01  at  11:00 PM

well, which do you think is more likely in the future—hackers that are pissed off at Apple, or hackers that want to get a little of Maynor/Ellch fame?

By rmogull  on  11/01  at  11:06 PM

I know the hackers are pissed, but this month isn’‘t focusing on Apple. The kick off with a WiFI flaw was definitely to make a point, but we can expect flaws over the rest of the month in all operating systems.

By Take the Latest OS X Disk Image DMG) Vulnerability  on  11/21  at  11:03 PM

[...] We talked a little about this in our first post on kernel bugs. Because of how OS X manages disk image files, if you mount a malicious disk image (even if you don’t run anything inside of it) an attacker could take over your system. This is a kernel flaw- so you don’t need to be running as root or with administrator privileges. The attacker will totally own your system, and can use it, just as Windows systems are commonly used, to attack your friends and associates. A really nasty attacker might even do some nasty things like try and identify other Mac users based on their address book settings or by trolling your inbox for Mac-formatted emails. [...]

Page 1 of 1 pages

Name:

Email:

Remember my personal information

Notify me of follow-up comments?

Submit the word you see below: