Apple fixes critical iTunes bug

Written by moneoa

No Comments

Music fans were this week urged to update their iTunes software following the discovery of a serious security bug that creates a means for hackers to take over vulnerable systems.

A bug in code used by iTunes 4.X to parse MPEG-4 files means that maliciously-crafted media files can crash vulnerable versions of the application. In the process, hostile code can be injected into vulnerable systems. A classic buffer overflow attack. iTunes users are advised to update to version 4.8, which features improved validation checks, to guard against possible exploitation.

Danish security reporting firm Secunia rates the iTunes bug as “highly critical”. Exploitations of both Mac OS and Windows machines running iTunes is possible – providing an attacker tricks a user into opening a malicious MPEG-4 file with a vulnerable version of iTunes.

Zeropaid on Facebook

@TheHuxCapacitor: Hmmm, Couple of things for me - There's no causal relationship proven in the study between P2P and decline in sales...
Stan: I would love to get Ayn Rand's perspective on this situation. The labels may have changed, but the selfishness, ...
soulxtc: Actually no. See this > http://i64.photobucket.com/albums/h187/soulxtc/ip... (From http://www.zeropaid.com/news/10021...
soulxtc: Actually no. See this > http://i64.photobucket.com/albums/h187/soulxtc/ip... (From http://www.zeropaid.com/news/10021...
PekkaK: The discussion about copyright has long ago transcended the question of whether anyone has the right to steal or copy or...
Debbie: hi could I please get an invite please. I was a member of Demonoid but is down.Thanks. ...
D.AN: "... the basic system [...] is Capitalist. Trying to change that [...] just means there will be a lot of corporation own...
D.AN: You seem to have the misinformation that file-sharers are part of one group. However, that is not true. "Even ideas, ...

Apple fixes critical iTunes bug

Related Posts

Comment on the next level:

Trackbacks url:

Leave a Comment...