Users of Apple's iTunes software need to upgrade immediately to avoid their computers being compromised, security experts have warned.
Hackers can build malicious playlist files which they can use to crash the application and seize control of the computer by inserting Trojan code, according to security firm iDefence. The rogue playlists can be identified by their unusually long URLs.
"The problem specifically exists when parsing playlist files that contain long URL file entries," warned iDefence in an advisory this morning.
"Malicious playlist files can come with either the .m3u or .pls extension. Although their formats are different, the vulnerability in each is the same."
The company advises users to upgrade to iTunes 4.7.1, which fixes the problem, and to avoid downloading playlists from unknown sources.
Kicking Palantir off of AWS is among their demands, too
Rafaela Vasquez was watching The Voice at the time of the crash, new evidence shows
PUBG price slashed on Steam after selling more than 50 million copies - as daily player numbers plunge
Use the same password for every website? It might be time to change them all