“A newly discovered flaw in iTunes and QuickTime could allow malicious users to compromise users’ systems, according to a new report. Security site Secunia says that a vulnerability in Apple’s QuickTime 7.03 player and iTunes 6.01.3 could be exploited by malicious users to cause a DoS (Denial of Service) attack. The site, however, says the ‘moderately critical’ vulnerability has an ‘unknown impact’ and was unable to confirm arbitrary code execution,” MacNN reports. “The site recommends that users not open .mov media files from untrusted sources to avoid exposing the flaw until Apple issues an update.”
Secunia: Versions Affected:
Apple Quicktime 7.0.3 on OS X 10.4.3
Apple iTunes 6.0.1 (3) on OSX 10.4.3
Apple Quicktime 7.0.3 on Win32
Apple iTunes 6.0.1 (3) on Win32
Advertisements:
• The New iPod with Video. The ultimate music & video experience on the go. From $299. Free shipping.
• Connect iPod to your television set with the iPod AV Cable. Just $19.00.
• The New iMac G5. Built-in camera and remote control. From $1299. Free shipping.
• Apple USB Modem. Easily connect to the Internet using your dial-up service. $49.00.
Related MacDailyNews articles:
Security flaw in Apple iTunes 6 affects Windows version – November 19, 2005
Hey stormy,
MDN is pulling posts again. The author of the link referred to here (http://macdailynews.com/index.php/weblog/comments/7941/) had a reply which was pulled. But MDN didn’t bother pulling the post masquarading as the author that used his real e-mail address.
Interesting, my magic work is “freedom”.
“Moderately critical”
Does this mean it comes to your house and makes caustic, off-handed remarks about the way you dress and clean? Untrusted Source says, “So, is this what you meant by a clean house? That tie does NOT match that shirt. Yeeesh.” <rolls eyes>