QuickTime vulnerability patched

apple itunesWoops, seems like our friends at Apple had left a back door open for hackers to enter through QuickTime. It seems like no matter what companies do, hackers always find a way to penetrate and drop harmful code in. Don't worry, Apple has it fixed now with a patch, but the issue in question stemmed from a concern about a buffer overflow. When QuickTime processes a Real Time Streaming Protocol URL it directs the player to a streaming file, and allows the user to play a nd pause the file. During the buffer overflow, a hacker could have penetrated through a malicious RTSP URL embedded into a web page that would open a door to run code on the user's machine.

You can grab the patch now at Apple's download page, or through the Apple Software Update service.

No comments:

Recent Posts