In association with heise online

20 July 2010, 11:47

Apple fixes flaw in iTunes

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

iTunes Logo Apple has released iTunes version 9.2.1 to close a security-relevant vulnerability: In the Windows versions of iTunes up to version 9.2, attackers can use specially crafted itpc: URLs to provoke a buffer overflow and execute arbitrary code. The hole can be exploited remotely, for instance via specially crafted web pages.

Mac users also benefit from the update: for instance, Apple has resolved a problem with encrypted back-ups that occurred when updating iPod touch and iPhone devices to iOS 4.0. Apple also say that initial synchronisation now works more smoothly with certain devices, and that they have disabled obsolete, and therefore incompatible, third-party plug-ins.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit