Tuesday, May 01, 2007

Got QuickTime? Got Java? Oh Dear!

This might be old news by now but QuickTime has a bug that exposes a "highly critical" vulnerability in *ANY* browser with Java enabled, not just Apple's Safari, as originally thought but also Mozilla's Firefox and (no surprises here) Microsoft's IE6 and 7 (even on Vista). As of 25th April there is no exploit code out in the wild but I'm sure this wont last for long. Let's hope Apple can fix their bug before the scriptkiddies figure out how to use it to their advantage.

Is it me or do competitions like Pwn-2-Own advertising results like this just make it *MORE* likely for unscrupulous types to turn their attention to something they now know has a flaw that can be exploited?

Web Comics

In the past I've occasionally mentioned a webcomic or two and that I didn't read them all that regularly. This is my guilty pleasure...