Archive for the ‘Apple’ Category

Apple further locks down CUPS (CVE-2010-0540)

|
No Comments »

Posted in Apple, Blog, csrf, cups, security on June 16th, 2010 by pagvac

Some time ago, we released a proof-of-concept (PoC) that would crash CUPS when visiting a webpage containing a specially-crafted payload. The POC was tested on Ubuntu 8.04.1 LTS (hardy) and would crash the CUPS daemon which listens to localhost on port TCP/631 – even when the user would not currently be logged into CUPS.

The crash was only possible for the following reasons:

  1. By default CUPS <1.3.8 did not require authentication to add new RSS subscriptions (CVE-2008-5184)
  2. A NULL pointer dereference condition was triggered when more than 100 RSS subscriptions were added (CVE-2008-5183)
  3. Adding RSS subscriptions (among other configuration changes) did not require random tokens within HTTP requests. In other words, all HTTP requests submitted to the CUPS daemon were vulnerable to CSRF (also known as Session Riding).

Issue #1 and #2 were fixed around the time we released our findings. Today Apple has also resolved issue #3. This is great news as it means that the vector where it was possible to probe CUPS functionalities via a specially-crafted webpage has been closed. As far as I know, this was the only way to remotely probe CUPS and bypass the listen-to-localhost-only default setting.

Kudos to the Apple Product Security team for further locking down CUPS and thanks for crediting us!

---
recent posts from the gnucitizen cutting-edge network:

The Making of Metagun
Automatic Vulnerability Screenshot Taking with Websecurify 0.7
Websecurify 0.7
ColdFusion directory traversal FAQ (CVE-2010-2861)
Websecurify 0.7RC2

iTunes Meet the Director: Skins 3

|
No Comments »

Posted in Apple, TV & Radio Recordings, charlesmartin, director, itunes, simonmassey, skins on January 21st, 2009 by User Input

skins-160.jpgThe directors of Skins 3, Charles Martin and Simon Massey, will be at the Apple Store on Wednesday 21 January along with members of the cast to discuss the new series and answer questions.

The BAFTA-nominated series returns to E4 on 22nd January and introduces a gang of new faces with just two of the original cast resuming their roles. The event will also be recorded and made available to download as a podcast from the iTunes Store.

The event kicks off at 7pm but as ever if you want a prime seat mosey on over as soon as you can.

From 19th January, Skins fans can visit the iTunes Store to own a free clip from the first episode of the new series and sign up for Season Pass to get the whole season at a discount.

The full first episode and all subsequent episodes will be available to purchase the day after they air. Catch up with Skins by downloading series two from the iTunes Store for the special price of £9.99 (available from 17th January).

Also coming soon to the iTunes Store are exciting Skins extras including celebrity playlists from the cast, music from the series and podcasts.

Meet the Director events are an opportunity to gain insights into the world of film and television with the most innovative talent in the industry. Previous events at the Apple Store Regent Street have included Baz Luhrmann (Australia), Anne Hathaway/Dwayne Johnson/Pete Segal (Get Smart) and Dave Gibbons (The Watchmen).

How to get there:

The closest tube stations are at Piccadilly Circus and Oxford Circus.

If travelling by bus the 3, 6, 8, 9, 10, 12, 13, 14, 15, 19, 22, 23, 25, 38, 55, 73, 88, 94, 98, 113, 137, 139, 159, 176, 189, 390 and 453 serve the area.