This might be old news by now but QuickTime has a bug that exposes a "highly critical" vulnerability in *ANY* browser with Java enabled, not just Apple's Safari, as originally thought but also Mozilla's Firefox and (no surprises here) Microsoft's IE6 and 7 (even on Vista). As of 25th April there is no exploit code out in the wild but I'm sure this wont last for long. Let's hope Apple can fix their bug before the scriptkiddies figure out how to use it to their advantage.
Is it me or do competitions like Pwn-2-Own advertising results like this just make it *MORE* likely for unscrupulous types to turn their attention to something they now know has a flaw that can be exploited?
No comments:
Post a Comment