Earlier last month, Microsoft patched its Windows operating system to protect against attacks exploiting a flaw within the DNS system, that was discovered by security researcher Dan Kaminsky, allows attackers to divert traffic to Web sites of their choice through an issue with BIND, software that powers DNS servers.
For unknown reasons, Apple did not fix the problem at the time of disclosure, and the exploit code’s accidental leak late last month made action all the more necessary.
For Apple customers, the DNS fix is now available for Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.4, and Mac OS X Server v10.5.4. Users can download the security update through Apple’s Web site or use the Software Update feature within the operating system.
In addition to the DNS patch, Apple also fixed a Microsoft Office file issue where a problem with QuickLook could lead to code execution, according to an advisory.