Forgot your password?
typodupeerror
Security Businesses Apple

Apple Patches Kaminsky DNS Vulnerability 89

Posted by kdawson
from the cache-me-if-you-can dept.
Alexander Burke writes "Apple has just released Security Update 2008-005, which patches BIND against the Kaminsky DNS poisoning issue. 'This update addresses the issue by implementing source port randomization to improve resilience against cache poisoning attacks. For Mac OS X v10.4.11 systems, BIND is updated to version 9.3.5-P1. For Mac OS X v10.5.4 systems, BIND is updated to version 9.4.2-P1.' It also closes the script-based local privilege escalation vulnerabilities, the most common examples of which were ARDAgent and SecurityAgent, and addresses other less-publicized security issues as well." A few days back we noted Apple's tardiness in fixing their corner of this Net-wide issue.
This discussion has been archived. No new comments can be posted.

Apple Patches Kaminsky DNS Vulnerability

Comments Filter:

Help me, I'm a prisoner in a Fortune cookie file!

Working...