Thursday, December 22, 2005
iTunes and Quicktime Flaw Discovered
Posted by Kent Pribbernow in "NEWS" @ 04:00 PM
"Security researcher Tom Ferris has posted details on a security vulnerability that affects the latest versions of Apple's iTunes and QuickTime software. A specially crafted .mov video file could cause a heap overflow and potentially give an attacker the ability to execute arbitrary code. Ferris first reported the problem earlier this month and says he notified Apple at that time. He says both Mac OS X and Windows machines are affected, as are older versions of iTunes and QuickTime. Security firm Secunia has rated the vulnerability "moderately critical," as code execution has not been confirmed."
This isn't surprising. Similar security issues have afflicted Windows Media Player and RealPlayer in the past, so it was only a matter of time before vulnerabilities were discovered in Quicktime as well. This should put an end to the delusional belief that Apple's software is somehow infallible and cannot be breached. :roll:
This isn't surprising. Similar security issues have afflicted Windows Media Player and RealPlayer in the past, so it was only a matter of time before vulnerabilities were discovered in Quicktime as well. This should put an end to the delusional belief that Apple's software is somehow infallible and cannot be breached. :roll:
