DarkFiber Consulting – IT Managed Services

Apple Releases Security Update 2010-004 and Mac OS X v10.6.4

June 23rd, 2010 . by DarkFiber Consulting

Apple has released Security Update 2010-004 and Mac OS X v10.6.4 to address multiple vulnerabilities that affect a number of applications. These vulnerabilities may allow an attacker to execute arbitrary code,  cause a denial-of-service condition, operate with elevated privileges, conduct man-in-the-middle attacks, alter configuration settings, or conduct cross-site scripting attacks.

Note that these Apple updates include Adobe Flash Player plugin version 10.0.45.2, which contains vulnerabilities previously identified in Adobe Security Bulletin APSB10-14. The Adobe Product Security Incident Response Team (PSIRT) has published a blog entry recommending that Mac OS X users upgrade to the latest version of the Flash Player (version 10.1.53.64) after applying these Apple updates.

DarkFiber Consulting encourages users and administrators to review Apple Article HT4188 and the Adobe PSIRT blog entry and apply any necessary updates to help mitigate the risks.

Apple Releases Java Updates for Mac OS X 10.4 and 10.5

July 2nd, 2009 . by DarkFiber Consulting

Apple has released Java for Mac OS X 10.4 Release 9 and Java for Mac OS X 10.5 Update 4 to address multiple vulnerabilities in Java. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.

DarkFiber Consulting encourages users and administrators to review Apple articles HT3633 and HT3632 and apply any necessary updates to help mitigate the risks.

Apple Releases Security Updates for Multiple Vulnerabilities

December 15th, 2008 . by DarkFiber Consulting

Apple has released Security Update 2008-008 and Mac OS X v10.5.6 to address multiple vulnerabilities in Mac OS X and related products. The impacts of these vulnerabilities include arbitrary code execution, privilege escalation, denial of service, or information disclosure.

DarkFiber Consulting encourages users to review Apple article HT3338 and apply the appropriate updates.

Apple Releases Security Updates for Safari

November 14th, 2008 . by DarkFiber Consulting

Apple has released Safari 3.2 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or obtain sensitive information.

DarkFiber Consulting encourages users to review Apple Article HT3298 and apply any necessary updates.

Apple Releases Java Updates for Mac OS X 10.4 and 10.5

September 25th, 2008 . by DarkFiber Consulting

Apple has released updates for Java for Mac OS X 10.4 and 10.5 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code.

DarkFiber Consulting encourages users to review Apple Article HT3178 and HT3179 and apply any necessary updates to help mitigate the risks.

Apple Releases Security Updates for Multiple Vulnerabilities

September 16th, 2008 . by DarkFiber Consulting

Apple has released Security Update 2008-006 and Mac OS X v10.5.5 to address multiple vulnerabilities in Mac OS X and related products. The impacts of these vulnerabilities include arbitrary code execution, information disclosure, denial of service, privilege escalation, or DNS cache poisoning.

DarkFiber Consulting encourages users to review Apple article HT3137 and apply the appropriate updates as soon as possible.

DarkFiber Consulting will provide additional details as the they become available.

Apple Releases Security Updates

September 10th, 2008 . by DarkFiber Consulting

Apple has released four security updates to address multiple vulnerabilities in iTunes, QuickTime, iPod touch, and Bonjour for Windows. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, conduct DNS cache poisoning attacks, spoof or hijack TCP sessions, access the system with escalated privileges, or obtain sensitive information.

DarkFiber Consulting encourages users and administrators to review the following Apple Security Articles and apply any necessary updates: