, 2002 1:20 PM
To: [EMAIL PROTECTED]
Subject: RE: MacOS X SoftwareUpdate Vulnerability
Patch is now availible from apple:
http://download.info.apple.com/Mac_OS_X/061-0074.20020712/2z/SecurityUpdate7-12-02.dmg.bin
includes crypto sigs on packages
Patch is now availible from apple:
http://download.info.apple.com/Mac_OS_X/061-0074.20020712/2z/SecurityUpdate7-12-02.dmg.bin
includes crypto sigs on packages.
__
WEB.DE MyPage - Ohne Computerkenntnisse in nur 5 Minuten o
On Thu, Jul 11, 2002 at 09:31:27AM -0500, Corey J. Steele wrote:
> What about modifying the search order of `lookupd` and telling it to use
> /etc/hosts and then using an entry in /etc/hosts to statically identify
> swquery.apple.com? Might be a viable work-around?
Then I arp flood your router a
2002, um 06:21, schrieb Russell Harding:
>
> >
> > MacOS X SoftwareUpdate Vulnerability.
> >
&
>> Date: July 6, 2002
>> Version: MacOS 10.1.X and possibly 10.0.X
>> Problem: MacOS X SoftwareUpdate connects to the SoftwareUpdate Server
via
>>HTTP with no authentication, leaving it vulnerable to attack.
>[...]
>> Solution/Patch/Workaround:
>[...]
>
>A possible workaround:
Hi,
Am Sonntag den, 7. Juli 2002, um 06:21, schrieb Russell Harding:
>
> MacOS X SoftwareUpdate Vulnerability.
>
MacOS X SoftwareUpdate Vulnerability.
Date: July 6, 2002
Version: MacOS 10.1.X and possibly 10.0.X
Problem: MacOS
