1 reply to this topic

[Nvyseal]

images/news/security.jpgSecurity researchers are warning that exploit code has been published that can take advantage of an extremely critical security flaw in a protocol supported by Apple QuickTime.

Apple QuickTime versions 7.2 and 7.3 on Windows Vista and Windows XP Pro SP2 are both affected, according to an advisory originally posted on Milw0rm.com.

And because Apple's iTunes contains a component of QuickTime, installations of iTunes are also at risk, according to a security advisory by the United States Computer Emergency Readiness Team (US-Cert).

The security flaw is found in the Real Time Streaming Protocol (RTSP) supported by Apple's QuickTime Streaming Server and QuickTime player, US-Cert notes. As a result, users who load a malicious RTSP stream via a QuickTime Media Link file or by visiting a malicious Web page, may find their systems compromised. Malicious attackers, for example, could execute arbitrary code from users' systems or launch a denial-of-service attack.

Earlier this month, Apple released QuickTime 7.3 to address seven security flaws in QuickTime 7.2. The fixes, however, did not deal with the RTSP vulnerability cited by security researchers over the past three days.

Computerworld

[TheBearLT]

Yep.. people blaming Windows for "Bad" system Security.. but If you try to dig into apple and/or unix, you can Find the way Bigger holes..

Still windows stays the most popular Operating system, and Creating Malware for other OSes is actually quite worthless for Hackers..

I speaking about "spread to public" Malware..

Edited by TheBearLT, 27 November 2007 - 03:52 PM.