Focus on Apple
"Secretly Monopolizing the CPU Without Superuser Privileges" Jul 16 2007 02:04PM
doug brethower (dougab centurytel net)
http://www.cs.huji.ac.il/~dants/papers/Cheat07Security.pdf

Link found @ http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3724 Original
release date: 7/12/2007

"While the cheat attack is simple, to our knowledge, there is no published
record of it, nor any mention of it on the web. Related publications point
out that general-purpose CPU accounting might be inaccurate, but never
raise the possibility that this can be maliciously exploited."

"From the seven OS/scheduler pairs we have examined, only Mac OS X was
found to be immune from the cheat attack."

Will Leopard be similarly immune?

Requested and noticeable "performance improvements" are reported as a
reason linux became more vulnerable from 2.4 to the 2.6 kernel.

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus