Patch/Configuration Management, Vulnerability Management

Apple patches Mac researcher’s contest find

Dan KaplanApril 15, 2010

Apple has delivered a Mac OS X security update to close a vulnerability revealed by researcher Charlie Miller at the recent Pwn2Own hacker contest in Vancouver, British Columbia. The update plugs a flaw that could be exploited to run malicious code if a user is tricked into into viewing or downloading a document that contains a specially crafted embedded font, according to an Apple advisory released Wednesday. The update is for Mac OS X 10.5.8 and 10.6.3. — DK

Dan Kaplan

(Credit: monticellllo – stock.adobe.com)

Network Security

Fortinet patches FortiClientLinux critical RCE vulnerability

Laura FrenchApril 10, 2024

The vulnerability is due to a “dangerous nodejs configuration” and has a CVSS score of 9.4.

Source PC website developer. Real software development code. JavaScript code in text editor. Computer interface. Abstract technology background. Java Software engineer concept.

Vulnerability Management

Command injection attacks likely with critical Rust vulnerability

SC StaffApril 10, 2024

Windows devices could be targeted with command injection attacks exploiting the maximum severity Rust standard library vulnerability, tracked as CVE-2024-24576, The Hacker News reports.

Network Security

Microsoft fixes a record 147 bugs in April release of Patch Tuesday

Simon HenderyApril 10, 2024

This month’s bumper crop of patches includes two Microsoft didn’t initially acknowledge were being exploited in the wild.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Apple patches Mac researcher’s contest find

Related

Fortinet patches FortiClientLinux critical RCE vulnerability

Command injection attacks likely with critical Rust vulnerability

Microsoft fixes a record 147 bugs in April release of Patch Tuesday

Get daily email updates