[masraum]

Quote:

Originally Posted by Gogar

I looked for MSHTML.dll for like . . . an hour and I couldn't find it. Guess I'm safe.


< clipped fruity pic >

Don't worry, you're completely safe. The apple will keep you completely safe and warm and happy.

http://www.techworld.com/security/news/index.cfm?newsid=1798

Quote:

Mac OS X doesn't stand out as particularly more secure than the competition, according to Secunia. Of the 36 advisories issued in 2003-2004, 61 percent could be exploited across the Internet and 32 percent enabled attackers to take over the system. The proportion of critical bugs was also comparable with other software: 33 percent of the OS X vulnerabilities were "highly" or "extremely" critical by Secunia's reckoning, compared with 30 percent for XP Professional and 27 percent for SLES 8 and just 12 percent for Advanced Server 3. OS X had the highest proportion of "extremely critical" bugs at 19 percent.

http://news.cnet.com/8301-10789_3-9976122-57.html

Quote:

Building on the Trojan released last week, a group of hackers appear to be targeting the Mac OS X platform with more variations.

Last Thursday, Mac antivirus vendors Intego and SecureMac reported a serious vulnerability within the Apple Remote Desktop Agent (ARDAgent). It is part of the remote-management component of Mac OS X 10.4 and 10.5 and is owned by root. Thus, the ARDAgent executable runs this malicious code as root without requiring a password.

http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9123467&intsrc=news_ts_head

Quote:

December 15, 2008 (Computerworld) Apple Inc. today patched 21 vulnerabilities in Mac OS X, including seven flaws in Flash that the popular media player's maker, Adobe Systems Inc., fixed more than a month ago.

http://robrohan.com/2008/06/19/nasty-mac-os-x-exploit/

Quote:

It seems there is an exploit floating around that allows root access via applescript. It’s a good idea to only download software from trusted sources, but you might want to be extra cautious - or at least let this serve as a reminder to be cautious.

http://www.theregister.co.uk/2008/07/28/pwning_security_updates/

Quote:

A researcher from Argentina has released an exploit package that can install malware on end user machines that run iTunes, Mac OS X, Winzip and a host of other popular software.

Evilgrade is the brainchild of Francisco Amato and works by exploiting weaknesses in the automatic upgrade feature of an affected program or operating system. It works only when a man-in-the-middle attack has first been carried out, but thanks to the domain name system vulnerability that has dominated security coverage ever since researcher Dan Kaminsky sounded the alarm three weeks ago, that's not much of a problem.

This one is pretty interesting
http://blogs.zdnet.com/security/?p=758

Quote:

So this shows that Apple had more than 5 times the number of flaws per month than Windows XP and Vista in 2007, and most of these flaws are serious.