toggle

AAPL Stock: 109.14 ( -3.96 )

Printed from http://www.macnn.com

Apple security update fixes QuickTime flaw

updated 04:15 pm EST, Tue December 19, 2006

Security Update 2006-008

Apple today released Security Update 2006-008, which provides a fix for security issue in QuickTime for Java and Quartz Composer, an underlying graphics display software component of Apple's Mac OS X. The update, available now via the Software Update and the Web, is available for Mac OS X 10.4.8 Tiger systems only (both client and Server). The company said that the flaw could malicious websites to access private information without the users' consent or knowledge: "Java applets may use QuickTime for Java to obtain the images rendered on screen by embedded QuickTime objects and upload them to the originating web site. When this facility is used in conjunction with Quartz Composer, it becomes possible to capture images that may contain local information," Apple wrote in its security update. The update addresses the issue by disallowing Quartz Composer compositions in unsigned Java applets, but allow Quartz Composer compositions continue to function locally. The company said that applications and signed Java applets that utilize QuickTime and QuickTime for Java are unaffected. The same Mac OS X Tiger security update for PowerPC-based Macs is also separately available.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

Comments are closed.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Thecus N2310 NAS

For every computer user, there comes a point of critical mass in data storage. When it hits, external hard drives, USB sticks and DVD ...

iRig Pads

When it comes to mobile music products, IK Multimedia has positioned itself as one of the top suppliers. Right from the early days of ...

DoxieGo Portable Scanner

Sometimes, people need to scan things, but having a computer at hand to do so isn't exactly feasible. Maybe it's the home of a relat ...

toggle

Most Commented