digg

Facebook Connect Join Digg About

eEye Flags More iTunes, QuickTime Flaws

eweek.com "Researchers at eEye Digital Security have pinpointed two high-risk vulnerabilities in iTunes and QuickTime that could put millions of Windows and Mac users at risk of code execution attacks."

Who dugg this? Made popular Mar 10, 2006

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

38 Comments

show profanity settings
expand all
  • darthsnoopy, on 10/12/2007, -5/+17ah, fanboys, come out to play!

    Look, anyone that develops knows that you walk a tight rope with every line of code you write. Every time you have an input mechanism, you light that tight rope on fire. And if your software gets popular enough, hackers start sawing at your wires. And reality is, hackers have more time collectively than you did writing the code.

    I'd say that security flaws are almost a metric of popularity anymore. I bet noone found exploits for the N-Gage. (duck)
  • strcmp, on 10/12/2007, -11/+19@seumas

    You're right: the parent post is not funny. The "Mac users think they're invulnerable" joke is quite tired by now.
  • Xipher, on 10/12/2007, -6/+14I have confidence that Apple will patch them soon.
  • inactive, on 10/12/2007, -23/+30As a proud powerbook owner, let me just say THERE ARE NO OSX VULNERABILITIES!

    Now excuse me while I put my head back in the sand.
  • brandizzle, on 10/12/2007, -2/+8Apple's getting more popular. This ***** happens. If it's useful and used, then it's also vulnerable.

    But you know what makes Apple good? They'll fix it and we'll all move on.
  • spider-man, on 10/12/2007, -1/+6Yeah, the joke is real tired. But all those M$ and Bill Gates jokes are still fresh after 15 years, right?
  • joeyjojo, on 10/12/2007, -4/+7All software has flaws. What matters is if the vendor calls them flaws instead of 'we're aware of the issue' and whether or not they fix them in a timely manner.
  • MoeB, on 10/12/2007, -3/+6no they just use the word update because it doesnt sound as bad as patched, which is really what they are doing.
  • nigeltufnel, on 10/12/2007, -1/+4Usually Apple patches their flaws BEFORE the ZD Media sites (CNet motto: "We [heart] Apple flaws") hop all over Symantec's press releases. So in a way, this one is worse than normal.

    The Bush thing above cracks me up -- that IS supposed to be a parody, right...?
  • alfoy, on 10/12/2007, -2/+5Nice how this article seems designed to promote a Symantec security workshop. The "monster"update? A tad hyperbolic...
  • CanuckMakem, on 10/12/2007, -5/+8Yeah me too... they're usually pretty quick with patches.
  • gookie, on 10/12/2007, -4/+7Now Apple's robustness is being put into test now that more peole get to use their product (software).
  • mcbesq, on 10/12/2007, -3/+5That's my point. Semiotics is part of Apple's business strategy.
  • 16x9, on 10/12/2007, -5/+7They've been quick to patch potential flaws i the past. I can't imagine that they'd change this game plan.
  • drakethegreat, on 10/12/2007, -1/+2OK and this keeps up the digg trend of report on every Apple security flaw they can. I never see any Windows flaws anymore, probably because its expected by now.

    Anyways while its obvious that the popularity of Apple's software has increased, that's about the only useful thing people have brought up in these comments so far.

    The only other thing I would like to add is that the author of this article seems to get off on this thing. He stated that apple is under "intense scrutiny" lately and links to an article on the same site...

    Now don't get me wrong, there has been more attention but intense? I think the fan boys are quick to jump on the band wagon to protect their baby but then there's a group of elitists who enjoy attacking Apple as well. Both are getting really old.
  • paulchu, on 10/12/2007, -1/+1i don't know where people get the idea that apple patches things quickly... for instance

    http://docs.info.apple.com/article.html?artnum=25466

    unpatched since OSX version 10.2, coming up on FOUR YEARS
  • hayden.evans, on 10/12/2007, -10/+10Worst article ever. back up the claim with evidence. No digg.
  • Eexperts, on 10/12/2007, -0/+0I don't like when they try to threaten us...
  • supersteve, on 10/12/2007, -1/+1Yep it is used a lot in the broadcast world. Most production houses use Quicktime because it is integrated right into Final Cut. When I send finished productions to the Canadian News Wire they want them either in DVC Pro or any number of different broadcast quality quicktime formats.
  • exilio, on 10/12/2007, -2/+1Sadly, all of these supposed security people are going to come out of the word work just to drum up business for themselves and their market. Viral marketing about supposed viruses.
  • NOFXY, on 10/12/2007, -2/+1yeah except when Microsoft says "we are going to release a patch in 5 days" its because the vulnerability/exploit has already been used and abused by everyone including script kiddies and possibly your best friends mom and aunt.

    Apple on the other hand patches/updates these exploits which are usually just "proof of concepts" meaning there is no record of anyone actually using them.

    btw, 3 of my machines run windows and 1 runs linux so i dont really qualify as a mac fanboy :)
  • Kebie, on 10/12/2007, -8/+7I always find the fanboy wars somewhat amusing. Apple fans seem to take the side that Apple is "good and open". While Microsoft is evil closed off and so on.

    Apple I think is just way better at marketing and communication then Microsoft, they are much better at controling the language. They are much more closed lip about everything for product releases to patch (updates) or whatever you want to call them release dates. If Microsoft says "we are going to release a patch in 5 days" you all scream and cry it took 5 days. If apple just releases a patch with little build up to announcement you all praise them because it was basically "instant" in your view.

    Another good war is the DRM war, with apple taking little flack. They are, and have already been doing a lot what Microsoft wants to do with TV Shows and such. They are actually even worst at it, because you have to use it only on their devices. Microsoft just wants to start a more open and competitive business around it where many distributers and platforms could use and play their system.

    This is basically the same war since the introduction of the Mac, Windows, and PC clones.
  • paulchu, on 10/12/2007, -1/+0nofxy - there's a difference between apple fanboy and being anti-microsoft because its the cool thing to do...
  • supersteve, on 10/12/2007, -2/+1I don't buy it.

    "Security flaws in Apple's popular digital media products are beginning to add up."
    1+1=2 wow i can do math

    "including an "extremely critical" flaw that could cause remote code execution attacks if a user simply viewed a maliciously rigged Web page."

    How many people did this actually effect? Every one I know uses a Mac and they have had no problems.

    no digg

  • koktakee, on 10/12/2007, -3/+1Does anybody out there still use Quicktime? Just wondering, no flame here.
  • beta1, on 10/12/2007, -4/+2Dont care...
  • xornor, on 10/12/2007, -3/+0As long as my mom continues to not bother me about computer problems after she got her mac mini, you can post these mac lab virus articles all day long. Her switching to a mac has saved me countless hours in windows support phone calls! speculate all you want!
  • chinolofus, on 10/12/2007, -5/+1who sang that song "no diggity"?
  • TheShrike, on 10/12/2007, -10/+5Great. More FUD.
  • dirtyfratboy, on 10/12/2007, -18/+13I hope to god Apple won't let flaws overtake their products like Microsoft pretty much does.
  • Pottersquash, on 10/12/2007, -12/+6its so amazing, You replace Steve Jobs with George Bush, Apple with War on Terror, or America, War in Iraq, and the exact same statement s are used:

    "I am confident that in spite of all evidence to the contrary, that (War in Iraq, Apple) is as perfect, well going, and on point as all the claims (Steve Jobs, George Bush) would have me believe."

    or

    "Any statement or claim made against (Jobs/Bush) handling of (Apple/America) is obviously miss informed, simply ignorant, or an attempt to under mind the very society we live in"

    Its just fascinating!!! It kinda shows you the ills of blind obedience, fascinating.
  • nbx909, on 10/12/2007, -15/+8Proves that linux is more secure!

    (commence the digg and burry war)
  • rebrad, on 10/12/2007, -18/+10Nothing new. The flaws have been reported and now Apple will fix them, maybe. But the good news is that we love Apple. It's really the media at fault here. OSX, iTunes and Quicktime are perfect and it's hard to improve on perfection but somehow Apple innovates and does it again. Let us all be thankful that we have Apple to show us the way.

    Until then I'm so happy that Quicktime Alternative and Nero plays the best formats in the world so I won't have to stray.
  • mcbesq, on 10/12/2007, -12/+4Apple doesn't patch. It provides updates. There's a huge difference. One is spelled "patch" and the other is spelled "update."

    Proof that Jobs is a Republican
  • dignon, on 10/12/2007, -22/+4Lame. No Diggity.
  • inactive, on 10/12/2007, -27/+8Wow. Some people have no sense of humor.
  • ubergmr, on 10/12/2007, -40/+16so apple's code DOES have vulnerabilities. But why iTunes, I mean its one of there most popular pieces of soft.... O wait.

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...

© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.