Submit a Story!
Votes
topics:

vote down flag
The Mac Security Blog
blog.intego.com - 9/18/2008
The Mac Security Blog
QuickTime Bug Discovered: May Be Vector for Attack Apple’s QuickTime, the media software used to play music and movies on Mac OS X and Windows, has recently been update to version 7.5.5, but a serious bug has already been discovered that may be used as a vector for malicious attacks. The ...
informationweek.com - 9/18/2008
Zero-Day Exploit Code For Apple iTunes, QuickTime Posted -- Apple Security -
informationweek.com — A week after Apple updated its QuickTime software to version 7.5.5 and its iTunes software to version 8.0, a proof-of-concept exploit for a purported zero-day vulnerability in Apple's newly patched software has been posted at Milw0rm.com. Someone ... (more) Zero-Day Exploit Code For Apple iTunes, QuickTime Posted ...

Comments vote down The Unofficial Apple Weblog (TUAW) found this 9/18/2008found this
artenscience.co.uk - 9/23/2008
Quality Solutions for Windows / Mac and Linux
artenscience.co.uk — Overview macVCR allows you to record what happens on your computer screen to a Quicktime movie which you can then replay later at your leisure. macVCR doesn't require any form of installation, just double click the Icon and the program will launch. ... (more) Quality Solutions for Windows / Mac and Linux

Comments vote down Macsimum News found this 9/23/2008found this

Blog Reactions

Macsimum News:  Intego says QuickTime bug discovered

Macworld:  Researchers discover security flaw in QuickTime

The Unofficial Apple Weblog (TUAW):  'MacGuard' double-plus ungood, avoid

More
Comments
Blog Reactions

Intego says QuickTime bug discovered
Macsimum News — ... put XML content in an MP4 or MOV file, or could add a QuickTime media file to a web page which could then cause a browser to crash while executing malicious code.” Intego’s Virus Monitoring Center is reportedly keeping a close eye on this bug and whether malicious users are attempting to add payload to QuickTime files. Intego says it will update the virus definitions for Intego VirusBarrier X5 if this occurs. Intego will be posting more information, as it becomes available, on the Intego Mac Security Blog .

Researchers discover security flaw in QuickTime
Macworld — Researchers at Intego have discovered a bug in Apple’s recently released QuickTime 7.5.5 media software that could be used as a way to launch malicious attacks on unsuspecting users. According to Intego, the problem is with the "quicktime type" tag and its inability to handle longs strings. Researchers say any application that uses QuickTime is susceptible to the flaw. This includes applications like iTunes, Safari, Firefox, or Mail, which displays media inline. Even Quick Look, Apple’s Finder preview feature is at risk. The flaw can be executed remotely or locally, ...

'MacGuard' double-plus ungood, avoid
The Unofficial Apple Weblog (TUAW) — Filed under: Security The fine folks at Intego sent out a warning this morning about MacGuard, a bogus piece of software that claims to clean up your system and remove adware, spyware, and trojans. It doesn't. According to the warning, MacGuard is simply a clone of a Windows app called WiniGuard. The company releasing the software, Innovagest 2000 SL, may be using the credit card numbers they harvest during the purchase process for "nefarious purposes." WiniGuard "hijacks the user's desktop and typically displays exaggerated or false ...

Mac malware program MacGuard masquerades as antivirus app
Infinite Loop — [image] Although Macs are considered to be comparatively free of viruses and other types of malware, some Mac owners still purchase antivirus software for a bit of additional peace of mind. Unfortunately, at least one unscrupulous company is attempting to prey on concerned Mac users by selling an antivirus application that is actually malware. Last week, Mac security software firm Intego released a security advisory about MacGuard, a security application that appears to be anything but secure. Recent statistics suggest that up to ...

Trojan Horse Targets Anti-Virus Maker Intego
Cult of Mac — ... Another wrinkle in the spy-vs-spy Mac security game appeared Wednesday when a Mac Trojan Horse attempted to disguise itself as Intego, the anti-virus ...

Mac specialist anti-malware
MacBytes.com — While the debate rages about whether Macs need virus protection or not, the anti-virus software makers keep producing full featured programs. This one is no exception, except Intego is a Mac only company. That said, to some extent this package is aimed at Mac users in PC environments, to stop them being the unsuspecting conduits passing PC viruses on to their Windows’ using colleagues. Schools and corporate entities increasingly want protection on their Macs to protect their entire networks, and this may be the answer. Meanwhile, of course, Apple keeps on closing loopholes that could be used for malware by issuing ...

Related: mac security blog
QuickTime vulnerability discovered, world keeps turningMacUser
So y'allz might not want to keep this one on the QT, even though it involves QT. Intego's Mac Security Blog reports that the company has discovered a vulnerability on the latest update to QuickTime, version 7.5.5. Basically, the way it works is that the quicktime type tag doesn't know how ...