ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

iTunes flaw helps hackers

Dawn Kawamoto CNET News.com

Published: 18 Nov 2005 16:05 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

A critical vulnerability has been found in some versions of Apple's popular iTunes that could allow attackers to remotely take over a user's computer, according to a warning issued on Thursday by a security research firm.

The discovery of this latest flaw comes days after Apple issued its iTunes 6 for Windows security update.

The latest iTunes flaw has been confirmed on Windows, and is being investigated on Mac OS X, according to a security warning issued by eEye Digital Security.

This flaw allows malicious hackers to launch arbitrary code remotely, which in turn can take control of a user's computer.

Although an Apple spokesman was not immediately available for comment, the company has a policy of not discussing or confirming security issues until it has conducted an investigation and issued any needed patches, according to Apple's posting on its site. eEye, meanwhile, does not provide extensive details on the flaws it finds until a vendor releases a patch to resolve the security flaw.

When Apple released its iTunes 6 for Windows security patch earlier this week, it was designed to prevent the wrong helper application from launching. The helper program searches multiple system paths to figure out which program to run, but the flaw could allow an attacker to create a way for an alternate program to be initiated by iTunes.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
61 out of 112 people found this useful


Company/Topic Alerts

Create a new alert from the list below:








Related Jobs

Messaging support analyst- Investment banking city based

Meeeting/Office Communicator server environment, including transition into full production support troubleshoot and resolve cross platform message ...

DESKTOP SPECIALIST- Financial Traders- London City (40-45k)

Additional knowledge of energy trading applications, application packaging and imaging, and security patch management would be useful as well as ...

Messaging Support Analyst (AD,TREND protection,Exchange) BANKING

Other main functions of the role are troubleshooting & resolving cross platform message flow related issues, problem resolution & estate & patch ...

Featured Talkback

What was achieved there is recognised to be of fundamental importance to both winning the war (Churchill visited to say 'thank you' to them) and the development of the computer. Maybe Bill Gates doesn't want to support this museum because it underlines where electronic computing started i.e. here, not the U.S.

By: 1000103773

Read full story:
Bletchley Park faces bleak future

Sentry Posts Blog

Skype - The Roach Motel

Here is an interesting article from The National Business Review, pointing out once again that you can never delete a Skype account. Never. Period. This is something I am familiar... More

Post a comment

The vPhone: Why Visa Should Go Mobile

The vPhone: Why Visa Should Go Mobile Author: Eric Everson, Founder MyMobiSafe.com With all of the success of Apple’s iPhone, there is a growing case to support a company like Visa... More

Post a comment

The Google Apple Merger: Fantasy or Fu...

The Google Apple Merger: Fantasy or Future? Author: Eric Everson, Founder MyMobiSafe.com Market research suggests that Microsoft controls upwards of 90% of the respective computer-based... More

2 comments