August 18, 2006 12:50 PM PDT

Fix in for Apple flaw

Related Stories

Apple fixes 26 Mac OS flaws

August 2, 2006

Attack code out for Apple flaw

June 29, 2006

Apple Computer issued a patch for its Xsan Filesystem software on Thursday, designed to fix vulnerabilities that could allow attackers to execute arbitrary code or crash a system. The patch, Xsan Filesystem 1.4, is targeted at systems running Mac OS X version 10.4.7 and Mac OS X Server version 10.4.7.

The Xsan Filesystem flaws could enable a malicious attacker to launch a buffer overflow attack when the software driver is processing a path name. That could lead to a system crash or arbitrary code execution with system privileges, Apple said.

See more CNET content tagged:
Xsan, flaw, attacker, file system, Apple Computer

6 comments

Join the conversation!
Add your comment (Log in or register)
All Apple systems or just servers?
You need to be more specific in describing the problem. One can't
tell whether you are saying any system running OS X is effected or
just XServe systems.
Posted by J.G. (831 comments )
Reply Link Flag
Looks clear to me...
The article says:
"The patch, Xsan Filesystem 1.4, is targeted at
systems running Mac OS X version 10.4.7 and
Mac OS X Server version 10.4.7."

That sounds to me like _any_ Mac running Mac
OS X 10.4.7 as well as any computer running
the same version of OS X server.

JPL
Posted by James P. Larsen (28 comments )
Link Flag
Only Systems / Servers Running Xsan
This only affects systems and servers running a specific piece of
software called Xsan. It does not appear under software update if
not running it.
Reference for software is <a class="jive-link-external" href="http://www.apple.com/xsan/" target="_newWindow">http://www.apple.com/xsan/</a>
Reference for update is <a class="jive-link-external" href="http://docs.info.apple.com/article.html?" target="_newWindow">http://docs.info.apple.com/article.html?</a>
artnum=302143
Posted by reader951 (2 comments )
Link Flag
CNet: Kings of the LOL headline
An obscure bug in a limited-release products gets the headline "Fix In For Apple Flaw."

Page views must be sagging or something...
Posted by M C (571 comments )
Reply Link Flag
MUHAHAHAHAHAHAHAHAHAHAHAHA!
CNET plays this off as a massive flaw when it
<a class="jive-link-external" href="http://www.techknowcafe.com/content/view/504/43/" target="_newWindow">http://www.techknowcafe.com/content/view/504/43/</a>
affects like 3 people on the planet. LOL!
Posted by (156 comments )
Link Flag
 

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

Inside CNET News

1-2 of 12

Scroll Left Scroll Right

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

Markets

Market news, charts, SEC filings, and more

Related quotes

Apple (1.86%) 9.18 502.60
Dow Jones Industrials (0.57%) 72.81 12,874.04
S&P 500 (0.68%) 9.13 1,351.77
NASDAQ (0.95%) 27.51 2,931.39
CNET TECH (0.84%) 17.13 2,049.14
  Symbol Lookup