2005 - 922 views, 1 Comment

Summary: Apple has released nine new patches today, designed to patch and repair several flaws in the standard OS X operating system and programs. One of the most critical of these is the flaw which allows phishers to take advantage of browsers which ...

Previous Article « Identity Theft Insurance Now Available
Read Next Article » Utah Gets New Internet Pornography Law

Apple has released nine new patches today, designed to patch and repair several flaws in the standard OS X operating system and programs. One of the most critical of these is the flaw which allows phishers to take advantage of browsers which support the International Domain Name standard. Safari is one such browser which supports the International Domain Name (IDN) standard, and as such users running Safari were vulnerable to the phishing attacks which take advantage of the flaw. Other browsers susceptible to the International Domain Name standard spoof include Firefox, Mozilla, and Opera.

The way that the IDN spoof works is by taking advantage of the fact that these browsers will render certain non-traditional characters in an international domain name as more commonly recognized Latin characters. Thus, for example, a phisher could register “Ã mazon.com”, but in one of the affected browsers it would appear as “amazon.com”, and thus be trusted by the user. (For those of you whose browsers did not render the first “Ã mazon.com” correctly, there is an accent over the first “a”, and well, now you see the problem.)

In addition to the patch for Safari, Apple released two different patches for AFP Server, a patch for Bluetooth Setup Assistant, one for Core Foundation, one each for Cyrus IMAP and SASL, one for Folder permissions, and one for Mailman.

The patches are all available from the Apple Website.

Previous Article « Identity Theft Insurance Now Available
Read Next Article » Utah Gets New Internet Pornography Law

Email the link for this page to a friend!

» Two More Windows Patches from Microsoft

» New Critical Internet Explorer (IE) Flaw Involves Msdds.dll

» New Security Update for Firefox Fixes High Risk Issues

For additional similar stories check out our archives on Security

1 Comment »

Short, and to the point. Great little site

Comment by Roy Markowitz — 3/22/2005 @ 12:48 pm

RSS feed for comments on this post.

Warning! All comments which contain URLs and are clearly just spam to generate a link back to the URL will be deleted on sight. Don't bother wasting your time!
If you are going to include a URL in your comment,
please keep it under 25 characters in length,
or use TinyURL to shorten it before including it in your comment.
Line and paragraph breaks are automatic, your email address is never displayed.
HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

About

About TIP

About Anne

Follow Anne On:

Twitter
Linked In
Facebook
MySpace

Read The Internet Patrol on Your Kindle here!

(Don't have a Kindle? Read about and get one here.)

Categories

Amazon
AOL
Apple & Mac
Around the World
Bargains
Bluetooth
Boneheads
Books
Cell Phones
eBay
Email
Email Hosting
Everything Else
Facebook
File Sharing & P2P
Gaming
Good Guys
Google
Gotchas
GPS
Hacking
Handhelds & PDAs
Identity Theft
Instant Messengers
Internet Explorer
Internet Law
Internet Marketing
Internet Providers
Internet Television
Internet Video
iPods & MP3
Just Plain Wrong
Microsoft
Music Download
MySpace
Oddities
Online Dating
Over 18
Paypal
Phishing
Pirates
Podcasting
Privacy
Reviews
RFID
Scams
Security
Sidekicks
SMS
Social Networking
Society
Spam
Spam Blockers
Spam Whacks
Spyware & Adware
text messaging
Tivo & ReplayTV
Useful & Fun Stuff
Video Downloads
Virus & AntiVirus
VoIP
What Do You Think?
Windows
Wireless Wifi
Worms
Yahoo

Get a FREE summary of the week's articles every Friday!
We NEVER share your email address, and you can stop them any time!

Be sure to watch for the confirmation email!

Last 3 Articles

Live Internet Map Shows Current Pirate Activity
Free Online Christmas Music on the Internet with Online Radio Stations Playing Christmas Music
New Paypal Scam Asks for Passport, Drivers License and Credit Card

Recent Comments to Our Articles

→ Says Jordan: I have reported Luster C. Parker, also goes by David Parker, to Match.com, Date.com, yahoopersonals, hotmatch.com, Craigslist.com, interracialsingles.com etc. He advertises both in Canada read

→ Says M Bragg: McAfee antivirus is misidentifying a component of my software as containing a Trojan. I plan to sell this software worldwide and need to get McAfee read

→ Says mohammed: i want a sidekick so bad . right me if u have 1 to sell. read

→ Says jared: it really cool !!!!!!!!!!:) read

→ Says Stephen Hultquist: In the socially-interconnected world of today, this kind of lying will blow up a business model. They did the same with me. Thanks, Anne! read

→ Says T.M SHIV PRASAD: sir i got a mail by winning some amount.its true?please be inform in my email id.i am so expecting that i will be get good read

→ Says deji: That is definetly a fake story ..I would someone acually have a cash of $4.5m in his pocket read

→ Says Doug: I think its rediculous. Our government has run amuck. They arent for the people anymore. Theyre for themselves and what they can get out being read

→ Says BRENDA: WATCH OUT LADIES FOR KEITH MOXEN LIVE IN FORT MYERS FL,HAS A SON IN SCHOOL I WEST AFRICA,THAT WAS HIT BY TRUCK WENT THERE read

→ Says DeeDee: I have a 200.00 Best Buy gift card and want to trade for a good used computer or Laptop. read

→ Says kris.kmjl92@gmail.com: he is right none of the paswards i have ever used have worked exceot one once i love the idea cuse i agree like seeing read