Camera Phones Plaza

Apple has put out an update, Mac OS X 10.4.10, that addresses denial-of-service attacks and a security bypass that Type 0 routing headers in IPv6 by disabling support for the headers.

This vulnerability has been left wide open in IPv6 even though it was well-known and shut down in IPv4; by default, all routing engines now turn it off.

This particular type of packet header can be used to crazily bounce network packets back and forth between hops on their route, clogging up bandwidth and potentially causing a DoS.

The ability of users to route their own packets-a procedure optimized automatically in today's IPv4 Internet-allows not only DDoS attacks, but also the ability to bypass security. Researchers say the vulnerability is easy to fix with RH-sensitive filters.

Apple said in its security advisory that the issue doesn't affect systems prior to Mac OS X 10.4.

The update is available for Mac OS X 10.4 through Mac OS X 10.4.9 and Mac OS X Server 10.4 through Mac OS X Server 10.4.9. It can be obtained from Mac OS X's Software Update pane under System Preferences or via Apple's Software Downloads site.