November 29 - 4:45pm EST
Networking security hardware manufacturer SonicWALL recently announced that it has distributed defensive measures to users of it's Unified Threat Management technology, against zero-day vulnerability exploits found in QuickTime. Malicious websites are able to create a stack-based buffer overflow in Apple's media player, by providing a phony movie file that, when activated, executes a series of code that allows a users machine to be taken over. SonicWALL says that the problem lies within the "Content-Type" header field that is sent from the server, which is not properly verified by the client's QuickTime. Once the "Content-Type" field reaches a certain length, a Buffer ... [full story]<< first1last >>
- top stories
- Promotional iPhone apps
- Widespread iPod shortage?
- 2008 App Store downloads
- RSPlug.E Trojan manifests
- Adobe Macworld
- Apple liquid cooler patent
- Needham on iPhone Share
- In-Ear Headphones on sale
- more...
- most popular
- Google Calendar and iCal
- New LaCie accessories
- Apple shipping discount
- QuickerTek power extender
- DealNN: MacBook, iBook
- Cyber Monday Mac deals
- Video Converter update
- Apple liquid cooler patent
- more...
- most commented
- Apple liquid cooler patent (19 comments)
- Simpsons parodies Apple (16 comments)
- UK iPhone ad no. 2 banned (15 comments)
- In-Ear Headphones on sale (14 comments)
- Greenpeace rates Apple (13 comments)
- Widespread iPod shortage? (12 comments)
- Nokia N97 (11 comments)
- Adobe Macworld (11 comments)
- more...
MacNN
- Promotional iPhone apps
- Liquid Defense game
- FormSpring for iPhone
- NVIDIA on Netbooks
- Monster Dr. Dre headphones
- more...
- Promotional iPhone apps
- Monster Dr. Dre headphones
- QuickerTek to ship charger
- 2008 App Store downloads
- Boomwave Nano cases
- more...
Top