p2pnet.net News:- Around the same time Sasser was spotted, Apple Computer was issuing a security advisory and fix for a QuickTime vulnerability it described as minor, but which was in fact serious, said eEye Digital Security which found the flaw.

"Apple said the flaw in the QuickTime movie player for Mac OS X could cause the player to crash," says a ZDNet story here, going on:. "Playing a malformed .mov (movie) file could cause QuickTime to terminate.

"The company that found and reported the flaw to Apple in February, eEye Digital Security, claimed Apple is downplaying the seriousness of the flaw in its advisory. A movie file could be created, the firm maintained, that would cause malicious code to execute when the user opened the file.

"An Apple representative could not be reached for comment."

Serious or not, unlike a previously discovered spoofing technique, the QuickTime issue actually involves a security flaw in the program, says ZDNet, adding that Apple released patches for several other vulnerabilities earlier this month.

This entry was posted on Monday, May 3rd, 2004 at 2:42 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 1489 times