You are here: silicon.com > Networks > WebWatch

WebWatch

iTunes security hole discovered

Dance flaw?

Tags: flaw, security flaw, itunes music store, apple itunes music store steve jobs ipod digital music

Printer Friendly Email Story RSS

By Dawn Kawamoto

Published: 18 November 2005 16:00 GMT

A critical vulnerability has been found in some versions of Apple's popular iTunes that could allow attackers to remotely take over a user's computer, according to a warning issued on Thursday by a security research firm.

The discovery of this latest flaw comes days after Apple issued its iTunes 6 for Windows security update.

The latest iTunes flaw, however, runs on all operating systems from Windows XP to Mac OS X, according to a security warning issued by eEye Digital Security.

This flaw allows malicious hackers to launch arbitrary code remotely, which in turn can take control of a user's computer.

Although an Apple spokesman was not immediately available for comment, the company has a policy of not discussing or confirming security issues until it has conducted an investigation and issued any needed patches, according to Apple's posting on its site. eEye, meanwhile, does not provide extensive details on the flaws it finds until a vendor releases a patch to resolve the security flaw.

When Apple released its iTunes 6 for Windows security patch earlier this week, it was designed to prevent the wrong helper application from launching. The helper program searches multiple system paths to figure out which program to run but the flaw could allow an attacker to create a way for an alternate program to be initiated by iTunes.

Dawn Kawamoto writes for CNET News.com

Add Comment Add comment  Printer Friendly Print story with   Email Story Email story  
In
Broadband & ISPs

Mobile & Wireless

WebWatch

LANs

Telecoms


Related Links

Apple 'already in talks' over video iTunes and iPod

'iTunes worm' drops adware on PCs

Nominet claims victory in iTunes.co.uk dispute

iTunes scores 80 per cent of UK downloads

Apple unleashes iPod Nano - and iTunes mobile

Jobs: Video, Bluetooth, radio, 3G iTunes for iPod? Doubt it

iTunes breaks one million video barrier

£100 iTunes download exposes mobile roaming rip-off

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure
Read and write about internet access at the airports of the world at atlarge.com. Be the first to rate an airport, win champagne...

Steve Ranger Editor's Blog: The naked truth about DSL Is it time to rethink broadband pricing?

Natasha Lomas ¿Dónde está el iPhone 3G? Comment: It's clear who calls the shots in this relationship...

Parliament websites go to the polls

Euro 2008 blues dents online booze and TV sales

Skype 4.0 gets richer

PC security warning for banking online

House of Lords embraces YouTube

Workers waste company time online


  • Jobs
SYSTEMS ADMINISTRATOR - APPLE MAC & OS X DESKTOP SUPPORT - Cambridge, South East

SYSTEMS ADMINISTRATOR - APPLE MAC & OS X DESKTOP SUPPORT - Cambridge, South East The European Bioinformatics Institute (EBI) is a non-profit academic ...

Lead Program Planner- Watford- 41-47,000

A leading financial services organisation are currently looking for a Lead Program Planner to come and join their bustling Watford based team. You ...

IT Support Analyst - Asset Management

You will be required to provide first line support for all Front Office applications, liase between business and in-house technical staff / 3rd party ...

CIO50 2008
The silicon.com CIO50 2008 profiles the most influential and innovative tech chiefs in the UK across all industries and organisation size, from the biggest FTSE100 companies to high growth dot-com start ups and the public sector. The list was voted on by the UK CIO community and a panel of experts. Find out more in our latest special report.

College classrooms go high-tech

Travis Perkins builds its tech future

Thin clients switch on digitally excluded

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

Live Webcast: Simplified Management with IT Automation

MSDN Webcast: Driving Contextual Collaboration With Office Communicator 2007 (Level...

TechNet Webcast: Video Conferencing and Interoperability With Existing Systems (Level...

Stories from the web...


Peter Cochrane's Video Blog: Power outrage

Business agility through flexible IT

What are you really saying?


London data centres hit by credit crunch

Ofcom: Mobile broadband driving interest in fibre

3G iPhone to storm enterprise world, says O2

MoD IT - late and over budget

Terrorists turning to tech, warns gov't




Quick Sitemap Links: