New Apple Vulnerabilities Affect Mac OS X and Mac OS X Server. Immediate Action Required.
Wednesday, May 13, 2009
Apple Computer, Inc. has announced 67 new security vulnerabilities affecting versions of Mac OS X and Mac OS X Server. Several of these vulnerabilities are considered critical. Apple recommends that users immediately obtain the necessary security updates for their computers by installing the updates contained in Security Update 2009-002, which can be found on its Web site at http://support.apple.com/kb/HT3549.
If the required updates are not installed, these vulnerabilities could allow an attacker who successfully exploits them to bypass security restrictions and to perform a number of actions, including terminating applications, executing arbitrary code, escalating privileges, executing cross-site scripting, or executing DNS cache poisoning.
CSSD recommends that all Mac OS X users install the required security updates provided by Apple in Security Update 2009-002. These updates are available from Apple's Web site http://www.apple.com/support/downloads/ or by using the Software Update feature in Mac OS X. Macintosh users can schedule their computers to check for updates on a daily, weekly, or monthly basis by clicking the Apple menu, selecting System Preferences, and clicking Software Update. In the Software Update window, select the checkbox to "Download important updates in the background". You will be notified when updates are ready to be installed. To check for updates immediately, click the Check Now button.
Please contact the Technology Help Desk at 412 624-HELP [4357] if you have any questions or need assistance installing this update.