14 DAY TRIAL // Apple has released the Security Update 2008-005 for client and server users of Mac OS X 10.4 (Tiger) and 10.5 (Leopard). With the release of this update, Apple has addressed a few previously-acknowledged vulnerabilities in Mac OS X.
The update fixes a vulnerability in QuickLook - loading a malicious Microsoft Office file could lead to "arbitrary code execution," according to the Mac maker. The recently reported ARDAgent and SecurityAgent issues are also addressed by this update, says Apple, as is a DNS vulnerability reported in February, sources indicate.
From Apple's Support section:
About Security Update 2008-005
Security Update 2008-005 is recommended for all users and improves the security of Mac OS X. Previous security updates have been incorporated into this security update.
About Security Update 2008-005 Server
Security Update 2008-005 is recommended for all servers and improves the security of Mac OS X. Previous security updates have been incorporated into this security update.
Both downloads support: Dansk, Deutsch, English, Espa?ol, Finnish, Fran?ais, Italiano, Japanese, Korean, Nederlands, Norwegian, Polish, Portuguese, Russian, Simplified Chinese, Svensk, Traditional Chinese.
The two just-released security updates from Apple are available for free download and install following the links provided below:
Apple Security Update 2008-005
Apple Security Update Server 2008-005
After downloading the DMG file, simply double click it to mount the image, and double click again to install. NOTE: your computer will need to restart following the updating process, so be sure to save all work in progress prior to hitting the install button.
Additionally, you can update using the Software Update mechanism provided by Apple: Apple Menu > Software Update. Just select the Apple Security Update 2008-005 or the Apple Security Update Server 2008-005 from the list and hit install. Your Mac will take it from there (this includes rebooting).