Kelly Martin, 2007-01-24
Colapse all |
Post comment
Apple patches first MOAB vulnerability
2007-01-25
ALF (1 replies)
ALF (1 replies)
Hmmm, the patch is allegedly also available for Windows users of Quicktime. The download that is available doesn't work though. A quick call to Apple customer support in the Netherlands learned me that the windows fix is NOT yet available and would probably take "several more days".
[sarcasm mode]
...
[ more ] [ reply ]
[sarcasm mode]
...
[ more ] [ reply ]
Re: Apple patches first MOAB vulnerability
2007-01-25
Matthew Murphy
Matthew Murphy
Interesting. QuickTime 7.1.3, with a last-updated date of October 2006, is considered "fully updated" by Apple. I tested the MOAB exploits against it, however, and neither one causes any damage at all -- QuickTime hums along normally as if what it was just hit with was nothing unusual....
[ more ] [ reply ]
[ more ] [ reply ]
"Apple has not credited the project in their security bulletin, likely because the researchers refused to notify Apple prior to releasing details of the vulnerability."
is false. Apple's bulletin reads:
"A QTL file that triggers this issue has been published on the Month o...
[ more ] [ reply ]