WHILE THE THINK DIFFERENT COMPANY Apple continues to smugly tell users that its OS is safer than Windows, an insecurity expert has claimed that it has 20 zero day security flaws.
Security researcher Charlie Miller, who is already known for having discovered a number of bugs in Mac OS X, told Heise Security that the holes are found in closed source Apple products.
He said that the attack surface of OS X is so wide you can land a 747 on it, sideways.
There are bugs in the open source components and vulnerabilities in the closed source third-party and Apple components. All of which can lead to remote compromise of the Mac OS X operating system.
Miller found all the holes by fuzzing, which involves bombarding an application's input channels with as much corrupted data as possible.
He said that Mac OS X is the safest OS because it is miles away from the action. However it is so full of bugs that any hacker who wants to can easily take it down.
"Mac OS X is like living in a farmhouse in the country with no locks, and Windows is living in a house with bars on the windows in the bad part of town," Miller said.
Apple's position with regard to security continues to be quite relaxed. "It will not think it has a security problem until it affects [the company's] bottom line, which hasn't been the case, yet", he said. µ
Is restoring from backup really the better than prevention?
Allowed anyone to pinpoint locations visited by customers of SVR Tracking
Hackers gained access to systems using unsecured administrator's account
But Canonical's Mark Shuttleworth doesn't agree