Apple Finally Patches Dangerous DNS Flaw

Apple has at last issued a patch for the DNS flaw considered one of the most dangerous vulnerabilities ever to affect the Internet. On Friday, Apple posted a security advisory saying that the patch will fix Apple’s implementation of the Berkeley Internet Name Domain (BIND) DNS server in Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.4 and Mac OS X Server v10.5.4. The DNS flaw allows an attacker to execute a cache poisoning attack, where traffic to a legitimate domain name is redirected to a malicious one after an attack on a DNS server. The user can type in the correct name for a Web site, but get a fake one instead, which can enable a phishing attack. While some users might notice if they’re directed to a odd-looking Web page, many people could be successfully fooled