Apple today released Security Update 2005-004 via the Mac OS X Software Update utility. The 1.1MB update fixes a flaw in iSync 1.5 on Mac OS X v10.2.8 and Mac OS X v10.3.x. “The iSync helper tool mRouter contains a buffer overflow vulnerability. This could result in the execution of arbitrary commands as root by local system users. Security Update 2005-004 fixes this issue by providing a patched version of mRouter.”