RSS FeedsOverflow vuln found in iTunes and QuickTime
Posted on 13 Mar 2006 at 12:38
Apple has announced a vulnerability affecting iTunes and QuickTime that could lead to code being run on the system.
The integer overflow and heap-based buffer overflow vulnerability affects both the Mac OS X and Windows versions of QuickTime Player 7.0.3 and 7.0.4 and iTunesj 6.0.1 and 6.0.2.
An attacker who successfully exploited the flaw would be able to run code in the context of the logged in user. Most Windows users have admin accounts for day to day use with much greater privileges than Mac users, whose user accounts have limited rights and permissions.
Security company eEye Digital describes the flaw as high in terms of severity.
Apple has yet to issue any patches for the affected software, but will have around two months to issue a suitable fix before it comes under pressure, as the flaw is only at the initial report stage of the process.
Author: Matt Whipp
Find a review
advertisement
Arctic Cooling Ultra Slim Case for iPhone 4
Category: GadgetsRating:
Price: £12
Proporta Kindle Book cover (2011)
Category: GadgetsRating:
Price: £25
SteelSeries SRW-S1
Category: GadgetsRating:
Price: £87
Aeris Muvman
Category: GadgetsRating:
Price: £341
Kingston Ultimate 64GB SDXC
Category: GadgetsRating:
Price: £110
- Waterstones and Amazon partner up for Kindle sales
- Microsoft So.cl social network site launched
- Sony patent points to piggy-backed wireless power
- UK broadband users getting 42 per cent lower speed than advertised
- LG Cloud takes on Apple iCloud
- Greenpeace protests Apple's coal-powered data centres
- John Lewis broadband now available
- Android users targetted with malicious Instagram app
- BT Infinity doubles top speed to 76Mbit/s
- PowerPot combines gadget charging and cooking
Software Store
advertisement
