In association with heise online

« previous | next »
2 July 2009, 11:02

Apple's iDisk sealed

Apple has closed a vulnerability in its online storage service iDisk after it was discovered that unauthorised access to other users' files was possible. According to Apple, it was a directory traversal issue; this is when access to directories using relative paths is allowed, for example, when the path is prefixed with "../".

iDisk is a pay-for storage system with public and private areas for users who want to move information between different computers or share files with other users. Apple responded with a fix less than 24 hours after the security expert Jeremy Richards reported the problem. Whether the vulnerability has been used in the past to allow unauthorised access to data is not known.

See also:

(djwm)

Add your comment

« previous | next »
Print version | Send by email
  • Share this article
  • digg this
  • submit to slashdot
  • post to delicious
  • StumbleUpon
  • submit to reddit

Price Insight Top 10

  1. Sapphire Radeon HD 5850
  2. Intel X25-M G2 Postville 80GB
  3. HTC Desire
  4. AVM Fritz!Box Fon WLAN 7390
  5. Intel Core i5-750
  6. MSI R5770 Hawk, Radeon HD 5770
  7. AMD Phenom II X4 955 (C3) Black Edition
  8. XFX Radeon HD 5850
  9. ASUS EAH5850/2DIS/1GD5
  10. Samsung EcoGreen F3 2000GB

The H

The H open source

The H Security

The H Internet Toolkit