AfterDawn: Tech news
AfterDawn > News > Apple patches iTunes bug

Apple patches iTunes bug

Written by James Delahunty @ 07 Sep 2007 7:18 User comments (7)

Apple patches iTunes bug Apple Inc. has issued an update that addresses a vulnerability discovered in its iTunes multimedia software. The company has patched both Windows and Mac operating systems' version of the iTunes software. The iTunes v7.4 update adds support for using purchased music as ringtones and to buy songs wirelessly using iPhone or the recently unveiled iPod Touch.
The update also addresses a serious security vulnerability however, that could lead to a specially crafted music file crashing or giving an attacker control over a victims PC or Mac. "A buffer overflow exists in iTunes when processing album cover art," the company stated. "By enticing a user to open a maliciously crafted music file, an attacker may trigger the overflow which may lead to an unexpected application termination or arbitrary code execution."

Apple has issued more than 100 patches for ts Mac OS X operating system and applications this year and the iPhone received its first security patch in July. Apple credited iSEC Partners with the discovery of the latest iTunes vulnerability.



Source:
The Register

<European Commission, Apple and record labels to meet over antitrust charges >Integra to release HD DVD player
Previous Next  

7 user comments

17.9.2007 17:36
fonzbear
Send private message to this user
Newbie

lol! i thought the mac was supposed to be unhackable!

27.9.2007 19:50
robertmro
Send private message to this user
Member

Everything is hackable.

38.9.2007 12:58
Pop_Smith
Send private message to this user
Senior Member

The only reason Macs seem "Unhackable" is beacuse the user database is extremely small compared to the dominate OS, Windows.

Linux (and all the other Unix variants) is also hackable although it seems as if most hackers use Linux, which is part of the reason why Linux doesn't have many viruses, spyware and other malware including tools to hack into computers running the OS.

Peace

48.9.2007 20:49
WierdName
Send private message to this user
Senior Member

You see you ignorant people who say it's invulnerable? Just like everything else, there will always be unforeseen security loops and holes.

EDIT- er, holes, not wholes.

This message has been edited since its posting. Latest edit was made on 11 Sep 2007 @ 11:43

511.9.2007 01:32
borhan9
Send private message to this user
AfterDawn Addict

i may download this patch if this is the case.

618.11.2007 21:39
spartan96
Send private message to this user
Newbie

1tunes 7.3 sucked. I couldn't even back up my library, it just gave me a stupid error every time.

719.11.2007 02:21
pryme_H
Send private message to this user
Senior Member

They need to make sure that they've checked all avenues for potenial hacks before releasing updates. Apple is prone to hack these days...

Comments have been disabled for this article.

Latest news

YouTube Premium starts showing ads to subscribers YouTube Premium starts showing ads to subscribers (13 Nov 2024 3:09)
For years, YouTube Premium has been marketed as a way to enjoy an ad-free YouTube experience. But apparently, that is no longer the case, as Premium subscribers are now starting to see ads on the platform.
Android 16 will launch sooner than expected Android 16 will launch sooner than expected (01 Nov 2024 6:45)
Google announced that upcoming Android 16 will break the traditional once-a-year cycle of major Android launches. Next Android is poised to launch in Q2 of 2025, so Android 16 should ship before end of June, 2025.
Winamp ends its open source project that wasn't really open source Winamp ends its "open source" project that wasn't really open source (20 Oct 2024 11:12)
Less than a month after the legendary MP3 player Winamp made its source code public, the company has made a sudden U-turn and removed its code from distribution.
2 user comments
Winamp released its source code - but didn't go open source Winamp released its source code - but didn't go open source (25 Sep 2024 12:38)
The source code of Winamp has now been officially released. However, it hasn't become a pure open-source project, as its licensing terms prohibit the creation of new, different versions.
Does your phone rattle? Here's why it happens Does your phone rattle? Here's why it happens (25 Aug 2024 8:30)
When you shake your phone and hear a light rattle, clatter, or jingle, it's likely not broken. The culprit is probably the optical image stabilization (OIS) system in your phone's camera, meaning everything is functioning as it should.
2 user comments

Reviews

Roborock S8 MaxV Ultra review - obstacle avoidance doesn't work as it should, otherwise almost perfect robot vacuum Roborock S8 MaxV Ultra review - obstacle avoidance doesn't work as it should, otherwise almost perfect robot vacuum
We put the Roborock S8 MaxV Ultra through a very, very long review process. The $1800 mopping robot vacuum is almost perfect, but its obstacle avoidance was surprisingly bad, considering the price - and compared to its competitors.
Sharge x OnePlus Pouch review: Beautiful power bank that supports SuperVOOC charging Sharge x OnePlus Pouch review: Beautiful power bank that supports SuperVOOC charging
In our review, we take a look at Sharge's power bank that supports OnePlus SuperVOOC quick charging technology as well as standard USB PD charging. It has small design flaws, but despite those, the Pouch is very nice product.
1 user comment
Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets
Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.

Guides

Does your phone rattle? Here's why it happens Does your phone rattle? Here's why it happens
When you shake your phone and hear a light rattle, clatter, or jingle, it's likely not broken. The culprit is probably the optical image stabilization (OIS) system in your phone's camera, meaning everything is functioning as it should.
2 user comments
What happens if you don't update Android? What happens if you don't update Android?
Sometimes it can be tempting to avoid updating to a new Android version. What happens if you decide to delay major updates to the OS?
What IP rating for dust and water resistance means What IP rating for dust and water resistance means
An IP classification (such as IP68) is given to mobile phones, Bluetooth speakers, and other devices, but what do these classifications mean?
1 user comment
Guide: Phone battery drains quickly - how to fix (iPhone / Android) Guide: Phone battery drains quickly - how to fix (iPhone / Android)
In this guide, we go through the most typical reasons for rapid battery drain with phones, and look at potential reasons or solutions.
GUIDE: Wi-Fi speeds are slow? Here are some tips GUIDE: Wi-Fi speeds are slow? Here are some tips
Having problems with Wi-Fi speed and stability at home? Here are some tips to follow to alleviate the issues.
1 user comment

News archive

Sections:

Follow us:

© 1999-2024 AfterDawn Oy. All rights reserved
Back to Top ⇧
AfterDawn is powered by Powered by UpCloud