Apple has fixed a bug in its desktop operating system that could have given hackers access to the entire OS.<\/p>\n
Released on Thursday, Mac OS X 10.10.5 resolves scores of holes and technical glitches. But one serious bug in particular was squashed along with the rest. Known as DYLD, this vulnerability in Apple\u2019s OS X was considered serious because it enables hackers to remotely run a program on a Mac using administrator rights, which opens up wide access to the entire operating system. The vulnerability had already been exploited \u201cin the wild,\u201d or in the real world, according to the Guardian, with at least one adware installer taking advantage of it.<\/p>\n
The Mac OS has long enjoyed a reputation as more secure than Windows. But just like Microsoft, Apple has to do its fair share of patching with regular updates and bug fixes. The latest update resolves more than 100 different bugs affecting Bluetooth, QuickTime, the Mac OS X kernel, the Mac\u2019s Notification Center and other features. In the past, Apple has sometimes been slow about patching individual bugs, whereas Microsoft rolls out a series of patches on a monthly basis through its Patch Tuesday program.<\/p>\n
Apple\u2019s details on the bug fix, which is available for OS X Yosemite versions 10.10 through 10.10.4, said that with the vulnerability, \u201ca local user may be able to execute arbitrary code with system privileges.\u201d Apple noted that the problem was due to a \u201cpath validation issue\u201d in DYLD and that the issue was addressed through \u201cimproved environment sanitization.\u201d Apple did not immediately reply to CNET\u2019s request for a layman\u2019s explanation of these terms.<\/p>\n
The DYLD bug was first reported by security researcher Stefan Esser. In a tweet posted late Thursday, Esser said: \u201cHmm so Apple released 10.10.5 fixed some bugs and made another security problem worse than before.\u201d Esser didn\u2019t reveal which security problem was allegedly made worse. But he reportedly has advised Mac users not to uninstall his SUIDGuard kernel extension, which guards against attacks that take advantage of the DYLD hole, according to security news site SecurityWeek.<\/p>\n
<\/p>\n
Source: Yahoo\u00a0Tech<\/p>\n","protected":false},"excerpt":{"rendered":"
Apple has fixed a bug in its desktop operating system that could have given hackers access to the entire OS. Released on Thursday, Mac OS X 10.10.5 resolves scores of holes and technical glitches. But one serious bug in particular was squashed along with the rest. Known as DYLD, this vulnerability in Apple\u2019s OS X […]<\/p>\n","protected":false},"author":14,"featured_media":143514,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[],"tags":[18,38],"yoast_head":"\n