Rare Mac Trojan exploits Apple vuln

Boffin

It always ceases to amaze me

When the blended vuln in Safari and IE on Windows was discovered, Microsoft's recommendation was for users to not use Safari. A better workaround was to change your default downloads directory. Problem gone. Simple solution.

El Reg hasn't posted any of the many workarounds available for the ARD problem. TUAW has a few solutions here: http://www.tuaw.com/2008/06/19/ardagent-setuid-allows-root-access-but-theres-an-easy-fix/

I'd guess an awful lot of people out there don't need to be managed by an admin, so can safely stop this problem in its tracks until Apple release a fix.

No one is reporting the solution though, only the problem.

0
0

Back to the forum

Forums