image

Apple rolled out Security Update 2008-005 this week that contained an important security update for the DNS service.
Now security experts say that Apple did not fix the issue in its entirerty leaving OS X users at risk.
Apparently port randomization is not built-in to help prevent cache poisoning attacks.
Security analyst Dan Kaminsky found the DNS issue that is affecting all platforms. Most vendors already fixed it, but Apple was slow with coming up with a fix. They will be under more critizm if the patch is not complete.
More details on CRN and The Register.

From http://www.i4u.com