Security Update 2010-003 fixes Pwn2Own hack

Apple Security Update 2010-003 is out and it fixes a Safari vulnerability discovered at Pwn2Own.
Written by Jason D. O'Grady, Contributor

Apple today pushed out Security Update 2010-003 (6.3MB) via Software Update stating that it "improves the security of Mac OS X."

ZDNet's own Ryan Naraine points out that Apple's latest security update fixes the flaw that was used to hack Safari running on a MacBook on March 24, 2010 at Pwn2Own. For three consecutive years Charlie Miller hacked into a MacBook by exploiting a critical Safari browser vulnerability. Miller took home a new MacBook Pro and received credit in the CVE for his efforts.

Naraine notes that Apple still hasn't patched the vulnerability used at Pwn2Own to hack into the iPhone and hijack the SMS database.

Editorial standards