Tuesday, June 19, 2012

Update iTunes to Patch Security Hole That Could Allow Remote Code Execution

iTunes logoIf you use iTunes, you may want to stop and check to make sure you have the most recent version (10.6.3) installed on your machine.

Last week, Apple released version 10.6.3, which addressed a security flaw that would allow remote code execution if you made the mistake of opening a malicious playlist (.m3u).

Per Apple’s release notes:
Description: A heap buffer overflow existed in the handling of .m3u playlists.

Impact: Importing a maliciously crafted .m3u playlist may lead to an unexpected application termination or arbitrary code execution.

Don’t leave your system at risk, update iTunes now.

Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet,  “Like” us on Facebook or add us to your circle on Google+

No comments:

Post a Comment