Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Hacker threat to Apple's iTunes

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Hacker threat to Apple's iTunes
Date: Wed, 19 Jan 2005 01:54:49 -0600 (CST) 
http://news.bbc.co.uk/1/hi/technology/4184887.stm

18 January, 2005

Users of Apple's music jukebox iTunes need to update the software to
avoid a potential security threat.

Hackers can build malicious playlist files which could crash the
program and let them seize control of the computer by inserting Trojan
code.

A new version of iTunes is now available from the Apple website which
solves the problem.

Security firm iDefence, which notified users of the problem,
recommended that users upgrade to iTunes version 4.7.1.

The problem affects all users of iTunes - Windows and Mac OS - running
versions 4.7 and earlier.

Users can automatically upgrade iTunes by opening the "look for
updates" window in the program.

The security firm says users should avoid clicking on or accessing
playlist files - which have the file extension of .pls or .m3u - which
have come from unknown sources.

Itunes is the world's most popular online music store with more than
200 million songs downloaded since it launched in 2003.



_________________________________________
Open Source Vulnerability Database (OSVDB) Everything is Vulnerable - 
http://www.osvdb.org/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Hacker threat to Apple's iTunes, InfoSec News <=
Previous by Date:  [ISN] Call for DEFCON Capture the Flag Organizers., InfoSec News
Next by Date:  [ISN] Sidebar: Fill Your Jump Bag, InfoSec News
Previous by Thread:  [ISN] Call for DEFCON Capture the Flag Organizers., InfoSec News
Next by Thread:  [ISN] Sidebar: Fill Your Jump Bag, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]