Look at you, all cuddled up with your Leopard install, sipping on a steamy hot cocoa, watching the snow fall outdoors, and thinking you don't have a care in the world. We hate to break it to ya but you do have a care, a big one, thanks to a proof of concept hack exploiting a buffer overflow in MacOS 10.5 and 10.6. The flaw has been known about since June, but only now has it been proven to work on Cupertino's latest, and a very straightforward code example of how to use it has been posted online. You know what that means: watch out for those e-mail attachments. Interestingly, the flaw is also said to possibly exist in the PS3 as well, which could make for a very interesting spring -- cocoa or no.Leopard and Snow Leopard flaw exploited in proof of concept, real-world tomfoolery surely coming soon originally appeared on Engadget on Wed, 13 Jan 2010 09:05:00 EST. Please see our terms for use of feeds.


Permalink DailyTech | SecurityReason | Email this | Comments

More...