By Jo Best, 18 January 2005 11:05
NEWS Code that reveals how a flaw Apple's iTunes software can be hacked is now out in the wild.
The flaw was first revealed earlier this month and could let hackers crash an iTunes user's machine and run code on it. The flaw was shortly patched afterward by Apple, and isn't present in the latest version of iTunes, but it hasn't stopped the programmers having a tinker.
The exploit code has now surfaced as a 'proof of concept' on a security mailing list.
While the code isn't intended as malicious, other proof-of-concept exploits have eventually surfaced in the wild in a malicious form.
The Cabir smart phone virus was originally developed by a group that is renowned for making concept viruses but later made it into the wild, albeit in a limited fashion.
The latest version of iTunes, 4.7.1., which isn't vulnerable to the flaw, can be downloaded Apple's website.
In order to post a comment you need to be registered and logged in.
Log in or create your silicon.com account below