Apple Macbook pro and other wireless fixes



Do you remember the big bruhaha a month or so back about the “apple wireless vulnerability” that everybody picked apart because in the video taped demonstration they used a third party card…. EVEN though the demonstrators stated that the same vulnerability existed in Apple’s own driver some on the internet tore one reporter up over stating that because Apple denied being shown exploit code (slight semantic issue there…) Well… those driver vulnerabilities that must have not existed, were fixed today by Apple. Brian Krebs has the story, as well as incidents.org


What’s really interesting is that several remote code execution vulnerabilites are fixed in this update, but no credit is given to the company that presented the vulnerability, so it’s either “bad blood” over the issue or a matter of pride for Apple since they’ve not admitted the demonstrated vulnerability was actually in their driver. In fact…. according to the Security Fix post they (Apple) say…

“Basically, what happened is SecureWorks approached Apple with a potential flaw that they felt would affect the wireless drivers on Macs, but they didn’t supply us with any information to allow us to identify a specific problem. So we initiated our own internal product audit, and in the course of doing so found these flaws.”

–Update 10/1/06–

This is still an ongoing controversy. There definitely appears to be bad blood, it’ll continue to be interesting to follow this one.

Related Posts

Blog Traffic Exchange Related Posts
  • GMail security problem fixed Google's not had a great week it would appear (Sony's had worse... but that's another story). The Analytics launch was somewhat rocky from most accounts and there is a GMail security bug that's been announced and fixed. Details on the bug are here, and a writeup is also here. Apparently......
  • Microsoft Update day for September.... AND Flash... AND Apple Yesterday, of course, Microsoft released it's monthly patches. I found the Windows update site to be painfully slow (and in some cases unresponsive.) It wasn't quite a huge update day by recent standards, but here's the summary.... Incidents.org has a nice chart showing the two re-released patches (one is actually......
  • Apple iTunes vulnerability on Windows eEye has discovered a remotely expoitable security vulnerability in Apple's iTunes software. It affects iTunes 6 and prior and the current security updates (released yesterday) do not address the issue. News.com has coverage as well. Earlier they reported that it affected "all operating systems", however now they are saying that......
Blog Traffic Exchange Related Websites
  • Prosper API Developer Email Update From Prosper: Thank you once again for your patience as we worked to resolve the problems with the API. We apologize for any inconvenience this may have caused you. The XML was fixed this weekend and we consider the issues resolved and expect no further updates. We are committed to......
  • Ten Problems that Home Inspectors Find When you get your home inspected, any problems that are found mean that you have to fix them and get another inspection, at a greater cost to you. You can prepare to avoid that second inspection by learning what home inspectors consider to be the ten problems they most frequently......
  • News for 3/4/2011 There hasn't been a post for the new month, so I figured I'll start the month off with some updates of what is going on. Today I updated the design of the site, increasing the width of everything by 40px (920px to 960px; following the 960 grid system) to......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site