Friday, April 24, 2015

Apple Couldn’t Fix OS X 10.10.3 Security Vulnerabilities

Apple didn’t fix OS X 10.10.3 security vulnerabilities that were reported major by one former NSA expert. It is curious that the whole Yosemite 10.10.3 update for Mac has been designed to solve the problem with the security and the iOS giant failed to fix it.


The known OS X 10.10.3 vulnerability is dubbed as ‘rootpipe’ and this backdoor flaw has been existing ever since 2011. According to reports, the iPhone maker released 10.10.3 version upgrade to fix this backdoor and this hasn’t happened yet.

The update is available for download but it just doesn’t solve the backdoor issue about which Apple was officially informed in October of 2014. The company promised to patch the holes in its code, still it failed to keep this promise for current public Yosemite launch.

As Patrick Wardle [he used to work for NSA] notes, the ‘rootpipe’ exploit is still alive and working. It can possibly provide root access to OS X system to any hacker who knows about this flaw. The Cupertino-based company tried to protect its users and provided some extra steps that are meant to stop the possible attack on its operating system. Wardle reports that he was able to access root on his Mac using the same backdoor hole that was reported years ago.

Using OS X 10.10.3 vulnerability, Wardle visited the Apple Store to try the hack on some display models. He noted that OS X 10.10.3 virtual machine and his laptop both worked fine.

You know that Apple is working on OS X 10.10.4 beta and this next update might finally fix the security exploit that is present in the system. Let’s keep our fingers crossed and hope everything will be solved and the flaw will be patched.

Till then you can watch OS X 10.10.3 security hack in action:

video

Tags:

0 Responses to “Apple Couldn’t Fix OS X 10.10.3 Security Vulnerabilities”

Post a Comment

Subscribe

Subscribe - How to Unlock Find My iPhone activation status