Security Fix In iTunes 7.4

Apple’s Steve Jobs might’ve left it out of the official presentation, as security fixes have become something common and don’t actually raise much interest unless a serious number of users are affected. Or, as the iTunes was lucky enough to avoid becoming the target of an attack, the company chose the “be quiet and just fix it” policy.

According to Secunia, the iTunes flaw would allow anyone skilled enough to execute arbitrary code and thus compromise the user’s system:

“The vulnerability is caused due to a boundary error when processing the "covr" atom in media files. This can be exploited to cause a heap based buffer overflow via a specially crafted cover art embedded in a media file,” the advisory states.

The latest security-related scandal to involve Apple happened in December 2006. Back then hackers took advantage of a QuickTime security hole that enabled a worm to attack MySpace users. As a result, infected users got their MySpace pages altered and their got redirected to a similar (but fake) site whenever they tried to log-in.

Security Fix In iTunes 7.4

Fake YouTube Links Used In New Spam Campaign

Xbox Live Phishing Scam

Do It Yourself Phishing Kit Hits The Web

YouTube Turned Into YouSpam

Fake Mp3 Files Come With Malware

Keys For Your Personal Trojan Account

iTunes and QuickTime Walk Together On Vulnerability Lane

Stay Away From Safari, Warns Microsoft

IT Companies Try To Hire Fujacks Worm Author

Leopard OS Plagued By Mail Security Flaw

Phishers Go To The Top

IOActive Checking Smart Grid For Security Issues

Fresh

The Benefits of Meditation for Depression

Could chloroquine treat coronavirus? 5 questions answered about a promising, problematic and unproven use for an antimalarial drug

China’s failed gene-edited baby experiment proves we’re not ready for human embryo modification

Millions use cannabis, but figures for how many become dependent aren’t reliable

Amazon Black Friday 2018 – Black Friday Deals