iTunes as Hacker Tool
Reuters is reporting that hackers are no longer solely targeting Windows boxes as vulnerable playgrounds upon which to wreck their havoc. It turns out that several anti-virus programs (HA!) and various media players like iTunes are choice targets for hackers these days; evidently, according to a study by the nonprofit SANS Institute, these types of programs revealed more vulnerabilities than Operating Systems which have started to more diligently plug potential holes.[via iPod Hacks]
Share
Categories
Reuters is reporting that hackers are no longer solely targeting Windows boxes as vulnerable playgrounds upon which to wreck their havoc....
Add a Comment
If you follow some of the links further throughout the article you will reach this page which sums it up well, and basically what Christopher said. http://www.securityfocus.com/archive/1/387080/2005-01-10/2005-01-16/0
May 03 2005 at 8:50 PM Report abuse Permalink rate up rate down ReplyThe iTunes vulnerability is only in versions prior to 4.7.1. Most people will have the newest version via Software Update so this isn't that big of an issue (there are exceptions). Basically, a playlist file (.m3u or .pls) that contains a URL over 3045 bytes long causes a buffer overflow that then allows the attacker to execute arbitrary code on your computer. Solution: Make sure you are running iTunes 4.7.1.
May 03 2005 at 2:45 PM Report abuse Permalink rate up rate down ReplyI admit, I didn't understand that article. It drops the iTunes names, then doesn't mention it again except for a half-sentence. Are they referring to pyMystique (or whatever it's called) because that wasn't malicious and to portray it along with the others is just wrong. Seems to me, that article (crappy in it's own right) just dropped the iTunes name to get people to read. There was absolutely no substance.
May 03 2005 at 2:18 PM Report abuse Permalink rate up rate down ReplyMeh. The Reuters article also fails to give any detail about iTunes hacking so it might just be hype that some writer pulled from his butt.
May 03 2005 at 2:17 PM Report abuse Permalink rate up rate down ReplyHot Apps on TUAW
Deals of the Day
more deals- Altec Lansing Octiv Duo iDock for $48 + free shipping
- Used Apple iMac 17" Core Duo 1.83GHz for $430 + $28 s&h
- Lounge Deluxe Stand for iPhone / iPod touch for $28 + $8 s&h
- Brookstone Surround-Sound Earbuds for $14 + $7 s&h
- Refurbished Skullcandy Tokidoki Smokin' Buds Mic'd Headset for $5 + $2 s&h
- Stitchway Backup Battery for iPod / iPhone for $5 + free shipping
Software Updates
more updates- EFI Firmware Update brings Lion Internet Recovery to 2010-model Macs
- OS X Lion 10.7.3 released with Safari 5.1.3, Wi-Fi bug fix
- Aperture updated to 3.2.2, addresses Photo Stream issue
- Apple updates Keynote to address Lion issues
- Google Search app gets new look on iPad
- Apple releases Apple TV Software Update 4.4.3
Featured Stories
more stories
Popular Stories
TUAW (or The Unofficial Apple Weblog) is a website devoted to tips, reviews, news, analysis and opinion on everything Apple.
4 Comments