Apple yesterday was suddenly released an iOS update as one was discovered vulnerability on SSL connections. Can the same vulnerability affect OS X systems? The answer is YES, “the vulnerability affects both iOS and OS X operating systems,” according to the Crowdstrike.
With the release of iOS 7.0.6, iOS 6.1.6, and Apple TV firmware 6.0.2, Apple has fixed a flaw in which an attacker with a privileged network location could capture or modify data from protected sessions. by SSL / TLS ”according to the company documentation.
Apparently the vulnerability exists not only in iOS, but also in OS X systems. Security researchers from the aforementioned company revealed that "Due to this vulnerability in authentication on iOS and OS X platforms, an attacker could bypass SSL authentication routines / TLS from the initial connection attempt. ”
"This allows an attacker to masquerade as coming from a trusted remote endpoint, such as your webmail provider, and monitor the encrypted movement between you and the destination server. It can also modify the data in transit," explains its Alex Radocea crowdstrike. Com.
Apple is currently testing OS X 10.9.2 for an imminent release sometime in the coming days or weeks. THE discovery of such a serious vulnerability could speed up circulation.