Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

iTunes and QuickTime flaw detailed
ZDNet News ^ | Dec 21, 2005 | Joris Evers

Posted on 12/21/2005 10:45:03 PM PST by Bush2000

iTunes and QuickTime flaw detailed
By Joris Evers, CNET News.com
Published on ZDNet News: December 21, 2005, 2:47 PM PT

Don't open media files from sources you don't trust--it may lead to your computer being hacked, a security researcher has warned.

Tom Ferris, an independent security researcher, has provided more details on a security flaw in Apple Computer's popular iTunes and QuickTime software that could put systems running Windows and Mac OS X at risk of attack. He first disclosed the flaw in early December.


An attacker could commandeer a vulnerable computer by tricking a user into opening a malicious ".mov" media file, the Mission Viejo, Calif.-based bug hunter said in an advisory posted on his Security-Protocols.com Web site late Tuesday.

"The vulnerability allows an attacker to cause the program to crash and could allow the execution of arbitrary code," Ferris said. "The flaw exists in all current and earlier versions of iTunes and QuickTime."

Security-monitoring company Secunia rates the issue "moderately critical", while the French Security Incident Response Team, a research outfit, tags it "critical." Apple did not respond to a request seeking comment.


TOPICS: Computers/Internet
KEYWORDS: itunes; mac; quicktime
It's gotta be a lie. Everyone knows that Apple only ships secure software... /SARCASM
1 posted on 12/21/2005 10:45:04 PM PST by Bush2000
[ Post Reply | Private Reply | View Replies]

To: Bush2000

You're kind of scary. Do you work for Microsoft? Is this all you post about?


2 posted on 12/21/2005 10:56:08 PM PST by Jean S
[ Post Reply | Private Reply | To 1 | View Replies]

To: Bush2000

I wonder how difficult it must be to exploit.


3 posted on 12/21/2005 11:09:02 PM PST by coconutt2000 (NO MORE PEACE FOR OIL!!! DOWN WITH TYRANTS, TERRORISTS, AND TIMIDCRATS!!!! (3-T's For World Peace))
[ Post Reply | Private Reply | To 1 | View Replies]

To: Bush2000
- Happy New Year -


4 posted on 12/22/2005 12:23:03 AM PST by HAL9000 (Get a Mac - The Ultimate FReeping Machine)
[ Post Reply | Private Reply | To 1 | View Replies]

To: rdb3; chance33_98; Calvinist_Dark_Lord; Bush2000; PenguinWry; GodGunsandGuts; CyberCowboy777; ...

5 posted on 12/22/2005 6:59:29 AM PST by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ShadowAce

It "may" lead to your computer being hacked and "could" allow the execution of arbitrary code - sounds like they have yet to prove their case.


6 posted on 12/22/2005 7:10:58 AM PST by 2 Kool 2 Be 4-Gotten (Is your problem ignorance or apathy? I don't know and I don't care.)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Bush2000
Everyone knows that Apple only ships secure software...

But it's still closed-source, so how can you tell? ;-)

7 posted on 12/22/2005 7:15:59 AM PST by TechJunkYard (Don't be afraid of it: MERRY CHRISTMAS!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Bush2000

Wow. It didn't take long for the personal attacks to begin. Guess some people don't understand the whole don't shoot the messenger" thing.


8 posted on 12/22/2005 7:27:46 AM PST by contemplator (Capitalism gets no Rock Concerts)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Bush2000

bttt


9 posted on 12/22/2005 7:34:18 AM PST by lunarbicep (There is something about a closet that makes a skeleton terribly restless.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Bush2000

Quick time AND mediaplayer manage to get themselves into the startup in scurrilous ways...go to 'magage add-ons' for XP, or msconfig for all OS to check out what's starting up. Bastids.


10 posted on 12/22/2005 4:58:01 PM PST by bitt ('More bad news for the terrorists: This president is no Lyndon Johnson. He won't quit.')
[ Post Reply | Private Reply | To 1 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson