Apple + Security & Privacy

We recently wrote about a critical threat to Mac OS X which allows malicious programs to execute code as root when run locally, or via a remote connection, on computers running Mac OS X 10.4 and 10.5. This vulnerability exploits a flaw in ARDAgent, an application that allows remote users to legitimately control Macs using Apple Remote Desktop software. (This is used in schools, labs and businesses by administrators who manage multiple Macs.) Rob Griffiths, writing at Macworld, gives an under-the-hood look at exactly how this vulnerability works and what the implications are.

We’re still waiting for word from Apple about this vulnerability, which has been universally criticized, and which remains a critical threat. In the meantime, Intego VirusBarrier has updated its virus definitions several times to protect against Trojan horses that exploit this flaw. Keep your copy of VirusBarrier up to date so you can ensure your Mac is protected.