Severe vulnerability to SSL / TLS connections and OS X Mavericks operating systems

warning_smallApple yesterday was suddenly released an iOS update as a vulnerability was discovered in SSL. Can the same vulnerability affect OS X systems? The answer is YES, “the vulnerability affects both iOS and OS X operating systems,” according to the Crowdstrike.

With the release of iOS 7.0.6, iOS 6.1.6, and Apple TV firmware 6.0.2, Apple fixed a flaw that allowed an "intruder with a privileged network location to capture or modify from sessions protected by SSL/TLS” according to the company's documentation.
Apparently the vulnerability doesn't just exist on iOS, but on OS X systems as well. Researchers s from the aforementioned company revealed that “Due to a specific authentication vulnerability on the iOS and OS X platforms, an attacker can bypass the SSL/TLS verification routines from the initial connection attempt.”

“This allows the attacker to masquerade as coming from a trusted remote endpoint, such as the provider's and monitor the encrypted traffic between you and the destination server. It can also modify the data during its transfer," explains o Radocea by crowdstrike.com.

Apple is currently testing OS X 10.9.2 for an upcoming release sometime in the next few days or weeks. The discovery of such a serious vulnerability could accelerate traffic.

iGuRu.gr The Best Technology Site in Greeceggns

Get the best viral stories straight into your inbox!















giorgos

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).