NB Productions  Your guide on the Web since 2000
Microsoft Store
 
Spread The Word!

Bookmark and Share

 Subscrib 

 Follow nbproductioncom on Twitter

Navigation
· Home
· Advertising
· Archive
· Articles
· AvantGo
· Downloads
· Encyclopedia
· FAQ
· Forums
· Knowledge Base
· Latest News
· Legal
· Reviews
· Search
· Statistics
· Syndicate
· Topics
· Tutorials
· Web Links
Translator
Select Interface Language:

Affiliates

NSA

Referrals 

Windows 7 Home Page

Vista Home Page

Microsoft : Fast Facts

 Microsoft Fix It

 

Livin Low

Daniel D Low Franklin

Livin Low

Music Artist


1· AC / DC
· Cliff Adams
· Tori Amos
· The Beatles
· Chuck Berry
· Bon Jovi
· Kate Bush
· Clannad
· Eric Clapton
10 · Clark Hutchinson
11 · Joe Cocker
12 · The Corrs
13 · The Cranberries
15 · Deep Purple
16 · Diamond Rio
17 · The Doors
18 · Steve Earle
19 · Fleetwood Mac
20 · Free
21 · Peter Gabriel
22 · Rory Gallagher
23 · Genesis
24 · Goo Goo Dolls
25 · David Gray
26 · Guns''n''Roses
27 ·  Alex Harvey Band
28 · Jimi Hendrix
29 · John Lee Hooker
30 · Humble Pie
31 · Michael Jackson
32 · Janis Joplin
33 · Norah Jones
34 · B. B. King
35 · Jerry Lee Lewis
36 · Amanda Marshall
37 · Matchbox 20
38 · Nine below zero
39 · Sin?ad O''Connor
40 · Pink Floyd
41 · Elvis Presley
42 · Carlos Santana
43 · Dan Seals
44 · Steely Dan
45 · Steppenwolf
46 · The Rolling Stones
47 · U2
48 · Uriah Heep
49 · Neil Young
50 · Led Zeppelin
51 · ZZ Top

WebKit Security Flaws Haunt Apple iTunes
Todays Apple

Apple has shipped a critical security patch for its iTunes media player to fix several gaping security holes that expose Windows users to hacker attacks.

The vulnerabilities could be exploited to launch remote code execution attacks if a user simply opens an image file or surfs to a rigged Web site. The update applies to Windows 7, Windows Vista and Windows XP machines.

In all, the new iTunes 9.2 fixes 40 documented vulnerabilities, most affecting the WebKit rendering engine.   The WebKit vulnerabilities are the same that affected Apple's Safari browser. 

Here are the details on the iTunes vulnerabilities:

  • ColorSync (CVE-2009-1726) -- A heap buffer overflow exists in the handling of images with an embedded ColorSync profile. Opening a maliciously crafted image with an embedded ColorSync profile may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved validation of ColorSync profiles.  This issue affects Windows 7, Vista, XP SP2 or later.
  • ImageIO (CVE-2010-1411) -- Multiple integer overflows in the handling of TIFF files may result in a heap buffer overflow. Opening a maliciously crafted TIFF file may lead to an unexpected application termination or arbitrary code execution. The issues are addressed through improved bounds checking.  Affects Windows 7, Vista, XP SP2 or later. 
Posted on Friday, June 18, 2010 @ 06:41:03 UTC by NB
 
Login
Nickname

Password

Security Code
Security Code
Type Security Code

Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.
Related Links
· More about Todays Apple
· News by NB


Most read story about Todays Apple:
Install iTunes 10 Minus The Bloatware (PC)

Article Rating
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad

Options

 Printer Friendly Printer Friendly

Associated Topics

Todays Apple

 Back to the top 



 ©  nb-productions.com 2000-2013


:: fiappleblue theme by www.nukemods.com ::