landon fuller

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Mac OS X vulnerable to 6-month old Java flaw

Attention Mac OS X users:  Turn Java off immediately or you could be at high risk of malicious code execution attacks. Tired of waiting for a patch from Apple for a Java flaw that was fixed upstream six months ago, Mac developer Landon Fuller (of Month of...

Tags: Malicious Code, Apple Macintosh, Java Applet, Flaw, Vulnerability, Apple Inc., Applet, Landon Fuller, CVE-2008-5353, Apple Mac OS X, Apple Mac OS, Java, Programming Languages, Operating Systems, Security, Software, Software Development, Software/Web Development, Ryan Naraine

Blog posts 2009-05-20

Mac Developer mulling OS X equivalent of ZERT

Now that the Month of Apple Bugs project is done, Landon Fuller just wants some rest. Then, if his buddies are up to it, the brain behind the month of Apple fixes counter-project wants to expand the initiative to provide "zero-day patches" for critical issues affecting Mac OS X...

Tags: Zero-day attacks, Apple, Vulnerability research, Exploit code, Apple Macintosh, Moab

Blog posts 2007-02-01

Squashing bugs with an Apple fix a day

Squashing bugs with an Apple fix a daySquashing bugs with an Apple fix a dayWe were supposed to get a mac and be done with it! are you telling us that we are wrong?Why does Landon Fuller hate Apple?[i]I would say that the QuickTime bugs have been the most...

Tags: Desktops, SECURITY, Landon Fuller, Mac Zealots, Apple Macintosh, Apple Inc., flaw

Discussion threads 2007-01-12

Month of Apple bugs being fixed

Today is the third day in the Month of Apple Bugs (a.k.a. MOAB). MOAB is run by a hacker known as LMH, sponsor of the Month of Kernel Bugs and Kevin Finisterre. The project began with Mondays exposure of a rtsp URL handler stack-based buffer overflow in QuickTime where "A...

Tags: Moab, Apple Computer Inc., Security

Blog posts 2007-01-03

Additional Resources

Finally, a 'critical' Java runtime update from Apple

Apple has shipped a long-overdue Java runtime update to plug at least 30 18 vulnerabilities that expose Mac OS X users to remote code execution attacks. The Java Release 6 for Mac OS X 10.4 patches multiple critical holes in Java, Java 1.4 and J2SE 5.0,...

Tags: Apple Macintosh, Apple Inc., Programming Languages, Java, Desktops, Security, Software Development, Software/Web Development, Hardware, Ryan Naraine

Blog posts 2007-12-14

Mac users waiting months for 'critical' Java runtime update

Ten months ago (October 2006), a member of Google's security team discovered and reported two code execution vulnerabilities in Sun's Java ICC image profile parsing code.Seven months later (May 2007), Sun issued an update (JDK 1.5.0_11-b03) that was available for Window, Solaris, and Linux.One big problem. It's August 2007...

Tags: Security, Apple Macintosh, JDK, Java, Sun Microsystems Inc., Apple Inc., Apple Mac OS X, Ryan Naraine

Blog posts 2007-08-23

An OS X zero-day group may clarify security debate

Maybe Apple doesnt have dominant market share in the PC market. Maybe Apple is basically a consumer electronics company these days. But there is one sign of Apples influence in the PC industry--the company is increasingly becoming a security target. Ryan Naraine reports that...

Tags: General, Software Infrastructure, Security, Apple, Apple Computer Inc.

Blog posts 2007-02-02

Mac Developer mulling OS X equivalent of ZERT

Mac Developer mulling OS X equivalent of ZERTHeroes and anti-heroesThe two seemed like Satan and God, but together MOAB and MOAB-fixes have improved security awareness on the Mac. I hope Apple leverages their initiatives to make the Mac the most secure system ever.Hopefully...Microsoft doesn't try to patent zero day...

Tags: Desktops, Operating systems, OSX, Apple Mac OS X, programmer, Apple Macintosh, Microsoft Corp.

Discussion threads 2007-02-01

Apple patches QuickTime bug exposed in MOAB

Apple patches QuickTime bug exposed in MOABBut the Mac zealots said this didn't exist!Remember when [b]t[/b]his was announced? Certa[b]i[/b]n people here (I [b]c[/b]an't name names or they will throw a hi[b]s[/b]sy fit) s[b]w[/b]ore that this w[b]a[/b]s all false because Landon Fuller, Secunia, and several other securit[b]y[/b] sites all hated Apple...

Tags: SECURITY, Apple Inc.

Discussion threads 2007-01-23

News to know: IT exec sellouts; Bezos' spacecraft

The daily reading list:Cisco to spend $830 million for e-mail security firm.Google reader adds metrics.Amazon answers Yahoo: Askville launches.Walt Mossberg says Office 2007 an improvement, but theres a learning curve. How IT execs sell out their organizations. Home Depot’s CEO switch could alter IT strategy. In focus: Apples month of...

Tags: information technology, IT Exec, Consumer Electronics Show, General

Blog posts 2007-01-04

Apple guru combats month of bugs

Apple guru combats month of bugsGoodvolunteering quite commendable, and stepping up to the challenge, beyond what most commercial entities would do. To play devil's advocate, Cisco for example, might just deny and threaten against the flaw announcers.Why does Landon hate Apple so much?Just curious. It is obvious that there...

Tags: Apple Inc.

Discussion threads 2007-01-03

Month of Apple bugs being fixed

Month of Apple bugs being fixedwhywhy is the even writers over here are apple fanboys crazy enough that their eyes are completely closed. Why dont you accept the bugs instead of talking about vendatta.This is paybackMore of the hacker crowd, still angry at Apple for calling out the faked wifi...

Tags: Wireless LANs, Desktops, SECURITY, Apple Inc., Apple Macintosh, Month of Apple Bugs, vulnerability

Discussion threads 2007-01-03