MacRumors

macrumors bot
Original poster
Apr 12, 2001
54,214
16,030
https://www.macrumors.com/images/macrumorsthreadlogodarkd.png

Apple issued a security update for Mac OS X today. The update specifically addresses a possible security flaw in Quicktime:

Impact: Visiting malicious websites may lead to arbitrary code execution

Description: A buffer overflow exists in QuickTime's handling of RTSP URLs. By enticing a user to access a maliciously-crafted RTSP URL, an attacker can trigger the buffer overflow, which may lead to arbitrary code execution.

http://docs.info.apple.com/article.html?artnum=304989

A proof of concept exploting this bug was published at the Month of Apple Bugs site.
 

bousozoku

Moderator emeritus
Jun 25, 2002
14,508
579
Lard
This is from the Month of Apple Bugs business, on the second day of January.

Glad to see that they're fixing something.
 
Comment

Zwhaler

macrumors 604
Jun 10, 2006
6,979
1,381
First one of 2007. Pretty cool. Well not really, but at least I feel like my computer is more safe :)
 
Comment

iJawn108

macrumors 65816
Apr 15, 2006
1,198
0
Yay! I love getting updates, it's like I'm bonding with my macbook even more. :D
 
Comment

BoyBach

macrumors 68040
Feb 24, 2006
3,026
8
UK
Still there's no update for the iTunes/iPod error-48. :(

My Nano just doesn't want to get along with iTunes.
 
Comment

PDubNYC

macrumors member
May 14, 2003
71
21
NYC
Needs 10.4.8

Guess I can't install it, beacause I don't want to use the turd that it 10.4.8 (my opinion). It has caused me nothing but grief. I stick with 10.4.5 for now.
 
Comment

nagromme

macrumors G5
May 2, 2002
12,546
1,196
I see that the Month of "Apple" Bugs has a bunch of days with bugs in shareware like Colloquy... or with no bugs at all. (To say nothing of whether such bugs are practical to actually do harm with anyway.)

No wonder MOAB vanished from the press.

Still good to see benefits coming from the project... even if the flaws were released in the wrong way (released to crackers and the public without releasing to the vendor for a fix first).
 
Comment

shawnce

macrumors 65816
Jun 1, 2004
1,442
0
I see that the Month of "Apple" Bugs has a bunch of days with bugs in shareware like Colloquy... or with no bugs at all.
The have release issues for every day of the month and yeah some have been in 3rd party software.
 
Comment

shawnce

macrumors 65816
Jun 1, 2004
1,442
0
Guess I can't install it, beacause I don't want to use the turd that it 10.4.8 (my opinion). It has caused me nothing but grief. I stick with 10.4.5 for now.

Huh? What issues have you had with 10.4.8?
 
Comment

PDubNYC

macrumors member
May 14, 2003
71
21
NYC
10.4.8

Huh? What issues have you had with 10.4.8?

so many bizarre issues, such as spontaneously quitting the finder and bringing me to the login window, must have reinstalled half a dozen times. I've seen a handful of machines with strange behavior after the upgrade, and quite a few that were fine. After 10.4.6 gave me trouble with my FullPress servers, I have found that 10.4.5 is fine for me for now.
 
Comment
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.