Results 1 to 4 of 4
  1.    #1  
    iTunes Exploit Can Be Used to Attack Windows
    By Larry Seltzer, ARTICLE DATE: 08.20.10

    iTunes Exploit Can Be Used to Attack Windows

    In version 9.1, Apple fixed a "Remote Binary Planting" vulnerability reported by Acros, a security research lab in Slovenia. The vulnerability is interesting in an of itself, but not news in that way.

    What is news is the revelation yesterday on Twitter by HD Moore of Metasploit fame that "...this issue affects about 40 different apps, including the Windows shell".

    The vulnerability describes a way to trick iTunes into loading a DLL from a remote share over WebDAV by tricking the user into loading media from that share. As Acros says, it's not hard to envision social engineering to accomplish this.

    As quoted on Threatpost, Moore says "The bug is bad behavior on the part of certain Windows applications when loading files from a network share." He declined to name the 40 apps (other than the Windows shell), but added that "It's a wide range of things that are vulnerable, some open-source as well as commercial."

    Since the bug is rooted in application behavior, it will probably have to be fixed individually in every application.

    Originally posted to the security blog, Security Watch.

    Copyright (c) 2010Ziff Davis Media Inc. All Rights Reserved
    Please Support Research into Fibromyalgia, Chronic Pain and Spinal Injuries. If You Suffer from These, Consider Joining or Better Yet Forming a Support Group. No One Should Suffer from the Burden of Chronic Pain, Jay M. S. Founder, Leesburg Fibromyalgia/Resources Group
  2. #2  
    Everything can be used to attack Windows! What's your point?
  3. #3  
    He's just posting an article. He does that a lot if you notice.
    HP has officially ruined it's own platform and kicked webOS loyalists and early TouchPad adopters to the curb. You think after you drop it like a hot potato and mention it made no money and is costing you money, anyone else wants it??? Way to go HP!!

    And some people are fools to keep believing their hype. HP has shown they will throw webOS under the bus and people are still having faith in them??? News flash: if it's own company won't stand behind it, it's finished!
  4. #4  
    I know, I was just being flip. My comment was directed more to the writer of the article, not ild for posting it. Sorry bout the confusion.

    ild, keep posting those articles.

Posting Permissions