SecurityZone.org - Information Security Blog

We recently blogged about exploits being released for the RTSP vulnerability Apple’s QuickTime. It did not take too long for some of these exploits to find themselves into the wild and taking advantage of unsuspecting users. There were a number of workarounds that could be done not to mention uninstalling. However, Apple has now released QuickTime 7.3.1 to deal with this issue. Please consider upgrading immediately if you have not done so already. Visit Apple’s website to download the latest:

http://www.apple.com/support/downloads/

In case you haven’t seen there has been a recently release vulnerability and exploit code for a vulnerability in Apple QuickTime 7.x (confirmed 7.3 and exploit code says 7.2 also). You can read details of the issue at http://www.kb.cert.org/vuls/id/659761. This first came to light 6 days ago and is currently unpatched. A steady stream of exploits have appeared on milw0rm that have modifed the exploit to continually support more operating systems and browsers. The latest release today now apparently works on Mac OS X. To make things even worse on Apple’s part is that there is a CVE from 2002 seemingly describing this exact issue in QuickTime 5.0.1 and 5.0.2.

Anyway, if you’ve got QuickTime installed be careful where you browse and be on the lookout for an update to patch this issue.

Well it looks like there is a new Mac trojan going around targeting all of us (I have a powerbook) OS X users — well sort of. It seems that links to pornography websites (and possibly others) have been spread in areas that Mac users frequent. If a user attempts to visit the malicious website they will be prompted to install a video codec in order to see the clip. However, the file is none other than a trojan, that at this point in time just modifies DNS settings. Thus giving the attack control of what your websites resolve to. There’s really nothing special or new here in the security world. It just seems what is being deemed a “professional” (whatever that means exactly) trojan is being targeted at Mac users. Just be on the look out as always, and don’t just arbitrarily install things — especially if you’re surfing naughty stuff.