All the latest UK technology news, reviews and analysis
|
|
|
21 Dec 2006
The latest security patch for Mac OS X fixes a QuickTime vulnerability that could let attackers capture images from a user's screen and upload them to a remote site.
Apple said that the vulnerability does not affect Windows users or versions of Mac OS prior to 10.4.
The vulnerability is not related to the QuickTime flaw that spread through social networking site MySpace last week.
The new flaw involves QuickTime for Java, a component that lets Java applets display QuickTime movies, and Quartz Composer, a software tool used to render images in Mac OS.
According to Apple, an attacker could place JavaScript code on a website that would use the QuickTime for Java component to obtain screen images and send them to a remote location, possibly allowing the attacker to obtain sensitive information displayed on the screen.
The security fix closes the vulnerability by not allowing unsigned Java applets to access Quartz Composer.
The patch can be downloaded from Apple's website or through OS X Software Update.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
My multi- national Partner client has charged me exclusively...
Senior IT Operations Engineer -MCSE, IIS7/7.5, SAN, CDN...
I have an urgent requirement for short term contract...
User Interface Developer x 1/2 - Leading Organisation...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?