Security Update 2004-09-16 [Updated]
Now available via Software Update:
There are updates for 10.2.8 + iChat 1.0, 10.2.8 + iChat 2.0, and 10.3.5 + iChat 2.1.
[Update] Details of the update:
CVE-ID: CAN-2004-0873
Impact: Remote iChat participants can send "links" that can start local programs if clicked
Description: A remote iChat participant can send a "link" that references a program on the local system. If the "link" is activated by clicking on it, and the "link" points to a local program, then the program will run. iChat has been modified so that "links" of this type will open a Finder window that displays the program instead of running it. Credit to aaron@vtty.com for reporting this issue.
Availability: This update is available for the following iChat versions:
- iChat AV v2.1 (Mac OS X 10.3 or later)
- iChat AV v2.0 (Mac OS X 10.2.8)
- iChat 1.0.1 (Mac OS X 10.2.8)
Security Update 2004-09-16 delivers a number of security enhancements and is recommended for all Macintosh users. This update includes the following component:
iChat
For detailed information on this Update, please visit this website: http://www.info.apple.com/kbnum/n61798
There are updates for 10.2.8 + iChat 1.0, 10.2.8 + iChat 2.0, and 10.3.5 + iChat 2.1.
[Update] Details of the update:
CVE-ID: CAN-2004-0873
Impact: Remote iChat participants can send "links" that can start local programs if clicked
Description: A remote iChat participant can send a "link" that references a program on the local system. If the "link" is activated by clicking on it, and the "link" points to a local program, then the program will run. iChat has been modified so that "links" of this type will open a Finder window that displays the program instead of running it. Credit to aaron@vtty.com for reporting this issue.
Availability: This update is available for the following iChat versions:
- iChat AV v2.1 (Mac OS X 10.3 or later)
- iChat AV v2.0 (Mac OS X 10.2.8)
- iChat 1.0.1 (Mac OS X 10.2.8)
Top Rated Comments
(View all)
97 months ago
the knowledge base info link only tells about the 9/7 update. What's new in this. Isn't Apple having a lot of these lately? What gives?
97 months ago
y does macrumors need to post these security updates on their homepage. it could at least be on p. 2. Maybe cause they dont have enough rumors anymore... hint hint macrumors
97 months ago
I'm sick of all these security updates. Can't everyone just leave everyone else alone? Let's unlock our front doors and simplify computing. ;)
97 months ago
Wow, Mac users get more frequent security patches than Windows does. Sweet!
That's ok because they actually work.
97 months ago
Whoo Hoo! Installed and the ftpd bug is fixed. If I can just keep the flames from shooting out of the optical drive door, this would be a perfect update. :)
[ Read All Comments ]
Analytics firm Chitika today released a report showing that by its metrics iOS has now surpassed OS X in overall web traffic share in the United States. Chitika's methodology involves an analysis...
One of the most frequent reasons for an iPhone to go on a trip to the Apple Store's Genius Bar is because of water damage. Typically, a water damaged iPhone can be replaced for a flat $199...
TheVerge's Joshua Topolsky summarizes the iPad 3 casing findings reported earlier today, but also adds his own sources regarding some details of the iPad 3.
Image from RepairLabs
As...
Last July, Apple discontinued the white MacBook from its consumer lineup, pushing consumers toward the company's popular MacBook Air line or the 13-inch MacBook Pro. The company didn't kill...
Popular iPhone Twitter client Tweetbot has finally arrived on the iPad, with a user interface instantly familiar to any current Tweetbot user. Designed for the Twitter power-user, Tweetbot packs a...
