The flaws could be exploited by remote or local attacks and enable the execution of arbitrary commands, Denial-of-Service (define) attacks or elevated privileges, according to the company.
The company recommends users install Security Update 2005-005 to patch flaws in Apache, AppleScript, Bluetooth, the Finder, the Terminal command line application and the Netinfo Setup Tool, which contains a buffer overflow that could permit arbitrary code execution.
The flaws also include coding errors that can lead to buffer overflows and execution of code, as well as configuration cock-ups, in which the Bluetooth file exchange service is enabled by default to share files without notifying the user, Apple said.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i This article was first published on internetnews.com, a JupiterWeb site. To read the entire article, click here.