Leopard and Snow Leopard flaw exploited in proof of concept, real-world tomfoolery surely coming soon
byTim Stevens||January 13th 2010 at 9:05amJanuary 13th 2010 9:05 am
Look at you, all cuddled up with your Leopard install, sipping on a steamy hot cocoa, watching the snow fall outdoors, and thinking you don't have a care in the world. We hate to break it to ya but you do have a care, a big one, thanks to a proof of concept hack exploiting a buffer overflow in MacOS 10.5 and 10.6. The flaw has been known about since June, but only now has it been proven to work on Cupertino's latest, and a very straightforward code example of how to use it has been posted online. You know what that means: watch out for those e-mail attachments. Interestingly, the flaw is also said to possibly exist in the PS3 as well, which could make for a very interesting spring -- cocoa or no.