Apple Releases Slew of Patches
The company addresses a number of OS vulnerabilities with security update.
The flaws could be exploited by remote or local attacks and enable the execution of arbitrary commands, Denial-of-Service (define) attacks or elevated privileges, according to the company.
The company recommends users install Security Update 2005-005 to patch flaws in Apache, AppleScript, Bluetooth, the Finder, the Terminal command line application and the Netinfo Setup Tool, which contains a buffer overflow that could permit arbitrary code execution.
The flaws also include coding errors that can lead to buffer overflows and execution of code, as well as configuration cock-ups, in which the Bluetooth file exchange service is enabled by default to share files without notifying the user, Apple said.