Very portable exploit code has been posted on milw0rm for the most recent Apple Quicktime vulnerability. We're still waiting for a fix Apple... In the meantime, don't use quicktime :), certainly not around people you don't trust... Another tip would be to disable your browser's java/script support while you wait on a fix. Of course, that's not the only delivery method. Milw0rm's site also gives useful information in case you need to build an IDS signature to watch for it. Get it from bleeding edge here.
More information on securityfocus.
Friday, November 30, 2007
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment