PatchLink Commentary on MS Patch for MAC OS

<p>“The recent trend showing software vulnerabilities moving up the stack to the application layer may require that organizations review their approach to application vulnerability management”, said Chris Wood, Director PatchLink ANZ. “This vulnerability (MS07 036) is an excellent example of an independent software vendor (ISV) reusing application code and introducing a common vulnerability across different platforms. This should cause organisations to evaluate their ability to manage application vulnerabilities across disparate platforms.”</p>
<p>“If organizations currently rely on platform-specific tools to track, remediate and audit vulnerabilities, they will be challenged in their ability to manage these types of vulnerabilities,” continued Chris. “For example organizations that solely rely on WSUS to manage this latest MS07-036 update will be unable to verify the elimination of this vulnerability on the Macintosh platform. Managing application vulnerabilities will become a growing problem as ISVs provide more and more enterprise applications that run on Windows, Linux, and Macintosh.”</p>
<p>Should you wish to discuss this in details with Chris Wood, Director PatchLink ANZ, please contact Sarah at Kinetics on 02 9212 3848 or sarah@kinetics.com.au</p>

• Got more on this story? Email Computerworld
• Follow Computerworld on twitter