Neen, het is geen virus wel een pest.
Op de pagina die ik hierboven meld
staat klaar en duidelijk wat het script
is en misdoet op een besmette Mac.
Je vindt er welke stappen je moet
zetten om dat kreng te vermijden of
om van dat onding verlost te raken.
Net valt er een Security Announce van
Apple in mijn brievenbus die dit script aanpakt.
Send Security-announce mailing list submissions to
security-announce@lists.apple.com
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.apple.com/mailman/listinfo/security-announce
or, via email, send a message with subject or body 'help' to
security-announce-request@lists.apple.com
You can reach the person managing the list at
security-announce-owner@lists.apple.com
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Security-announce digest..."
Today's Topics:
1. APPLE-SA-2004-10-27 Security Update 2004-10-27
(Apple Product Security)
----------------------------------------------------------------------
Message: 1
Date: Wed, 27 Oct 2004 13:18:44 -0700
From: Apple Product Security
Subject: APPLE-SA-2004-10-27 Security Update 2004-10-27
To: security-announce@lists.apple.com
Message-ID: <66C2DE44-2855-11D9-AFCE-000393B9F294@apple.com>
Content-Type: text/plain; charset=US-ASCII; format=flowed
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
APPLE-SA-2004-10-27 Security Update 2004-10-27
Security Update 2004-10-27 is now available and delivers the
following security enhancement for Apple Remote Desktop Client:
CVE-ID: CAN-2004-0962
Available for: Apple Remote Desktop Client v1.2.4 with Mac OS X
v10.3.x
Impact: An application can be started behind the loginwindow and it
will run as root
Description: For a system with the following pre-conditions:
* Apple Remote Desktop client installed
* A user on the client system has been enabled with the "Open and
quit applications" privilege
* The username and password of the ARD user is known
* Fast User Switching has been enabled
* A user is logged in, and loginwindow is active via Fast User
Switching
If the Apple Remote Desktop Administrator application on another
system is used to start a GUI application on the client, then the GUI
application will run as root behind the loginwindow. This update
prevents Apple Remote Desktop from launching applications when the
loginwindow is active.
This security enhancement is also present in Apple Remote Desktop
v2.1.
This issue does not affect systems prior to Mac OS X v10.3. Credit
to Andrew Nakhla and Secunia Research for reporting this issue.
Security Update 2004-10-27 may be obtained from the Software Update
pane in System Preferences, or Apple's Software Downloads web site:
http://www.apple.com/support/downloads/
The download file is named: "SecurityUpdate2004-10-27.dmg"
Its SHA-1 digest is: 6f74180d4144affd3630e8824bff778ac39655e7
Information will also be posted to the Apple Product Security
web site:
http://www.apple.com/support/security/security_updates.html
This message is signed with Apple's Product Security PGP key,
and details are available at:
http://www.apple.com/support/security/security_pgp.html
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1
iQEVAwUBQX//jZyw5owIz4TQAQKitwf+IQ3dtQquGBWVPAew/3+CYHmL121zldZ9
2qlMn4zk66/hu9ecTHi0JLjI6sYS2jcYlIt5lxdHXAm1yt6LVdsgfCwLXu0ZnrgL
ygoPtr39KDX0YFPomkQVz2ZGptJs4zFsfnLUfi61pegLvicMKy+Zc1Cpzdba+rL5
39ZsZFMnWn6XJqwhJs3zlcXhkH3ggPmG7r6bWLmiRGY6EUaMRFyyCfphoTcSZSiC
81tDpryCJk2X/Ncv4g8tXlDqzjpJMRSslM9a1WFGXx+6Vd7FUz4UfC7ATYggodBU
QvYHKEkVQSH9efMDHJBk6F50WQpLvPoTA1fW3RLl54eEQlileuBgoA==
=2G/h
-----END PGP SIGNATURE-----
------------------------------
_______________________________________________
Security-announce mailing list
Security-announce@lists.apple.com
http://lists.apple.com/mailman/listinfo/security-announce
End of Security-announce Digest, Vol 1, Issue 5
***********************************************
Van toepassing voor elkeen die Apple Remote Desktop gebruikt.
(Bewerkt door michelvdb om 21:22, 28-10-2004)
Gast
