Categories
Browse
The SMC Update improves the MacBook’s internal monitoring system and addresses issues with unexpected shutdowns. This update is recommended for all MacBook systems, including those that received warranty repair. More …
You must have Mac OS X 10.4.8 installed to see this item in Software Update. However, it can be installed under Mac OS X 10.4.7 or later.
If you have 10.3 or 10.4, run Software Update for any Security Updates. If you have 10.4.8 you are already protected against this vulnerability.
According to a security memo from Intego,
This can affect Macs running Mac OS X 10.3 and 10.4 that have not been updated with all available security updates or system updates. Bluetooth must be active, but Bluetooth file transfer does not need to be turned on. The attacking computer must be within Bluetooth range, which, by default is 10 m or 30 ft, but can be extended with repeaters and/or antennas.
This exploit is installed from a Linux system, and exploits an rfcomm security hole in Bluetooth software. Unlike previous versions of Inqtana malware, no user interaction is required. It installs a user account (named “bluetooth”), with no password, which grants root access to malicious users logging into this account. This account is available immediately, and the Mac OS X 10.4 computers do not need to be restarted (Macs running OS X 10.3 do need to be restarted).
So be sure to apply all Mac OS X security updates issued by Apple.
Calendar
