A vulnerability within QuickTime 7.5.5 and iTunes 8.0 has been uncovered by security researchers, and given a CVSS Severity rating of 9.3 (high) by the National Vulnerability Database.
The flaw in security is being exploited by malicious code hidden inside embedded MP3 files on web pages and through a long type attribute in a QuickTime tag. According to the VND, the security gap is a "Heap-based buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 [that] allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code."
So far there's been no response from Apple regarding the bug, though only last week it addressed other bugs in the QuickTime system.
People are also being warned against an email that offers 'Virtual iPhone games!" and sometimes contains the subject line "Apple: The most popular game!". The email attachment (Penguin.Panic.zip) has been confirmed to contain the malware listed as Agent-HNY Trojan, so caution is advised when it comes to Apple related messages and websites for the time being.
Top Stories
News
Apr 19th, 2024
Week in Views - The search for skills, billion dollar birthdays and terrific transmedia
News
Apr 19th, 2024
Get practical tips into key game development tools and methodologies at the Dubai GameExpo Summit
News
Apr 19th, 2024
Week in Views - The search for skills, billion dollar birthdays and terrific transmedia
Feature
Apr 19th, 2024
New release roundup: Take That: This is Life, Neopets: Tales of Dacardia, Persona 5: The Phantom X and more
Feature
Apr 19th, 2024
Speaker Spotlight: Xsolla's Chris Meredith on making the most of D2C and today's revenue opportunities
Events
Arts DAO Fest 2.0 | Middle East | Apr 20th |
App Promotion Summit London | Europe | Apr 25th |
Esports Future Summit | Middle East | Apr 27th |
Dubai GameExpo Summit 2024 | Middle East | May 1st |
The MENA Games Industry Awards 2024 | Middle East | May 2nd |
GameDev Atlantic 2024 | May 4th | |
Mobidictum Meetup Berlin May 2024 | Europe | May 7th |
Mobidictum Meetup Tallinn May 2024 | Europe | May 21st |
Popular Stories
Feature
Apr 15th, 2024
46 top mobile games in soft launch: CSR 3, Plants vs. Zombies 3, LEGO Hill Climb Adventures, Candy Crush Blast, and more
News
Apr 17th, 2024