On CBS MoneyWatch: The perfect car for a teenager
BNET Business Network:
BNET
TechRepublic
ZDNet
38 TalkBacks

By Joris Evers
Posted on ZDNet News: Apr 24, 2007 6:39:00 PM

The security hole used to breach a MacBook in a hack-a-Mac competition last week lies in Apple's QuickTime media player, the flaw finder said Tuesday.

The vulnerability is related to how QuickTime handles Java, said security researcher Dino Dai Zovi. An attacker can exploit the bug through Safari or Firefox, he said. Initial reports were that the flaw was in Safari, Apple's Web browser.

"It is a vulnerability within QuickTime. Safari and Firefox on Mac OS X are vulnerable," Dai Zovi said. QuickTime is also widely used on Windows machines, so Windows users may also be at risk, he said. "At this time, Firefox on Windows is considered at risk," Dai Zovi said.

Security monitoring company Secunia deems the flaw "highly critical," one notch below its most serious rating. "This can be exploited to execute arbitrary code when a user visits a malicious Web site," Secunia said. Apple's most recent QuickTime security update was in March.

Shane Macaulay, a software engineer and a friend of Dai Zovi's, hacked into a MacBook using the QuickTime security hole on Friday. The computer was one of two offered as a prize in the "PWN to Own" hack-a-Mac contest at the CanSecWest conference in Vancouver, British Columbia.

The successful attack on the second and final day of the contest required a conference organizer to surf to a malicious Web site using Safari on the MacBook--a type of attack more familiar to Windows users.

Apple has declined to comment on the MacBook hack specifically, but spokeswoman Lynn Fox last week provided Apple's standard security comment: "Apple takes security very seriously and has a great track record of addressing potential vulnerabilities before they can affect users," she said.

Further details on the flaw are being kept confidential until Apple patches it. Dai Zovi has submitted the vulnerability to TippingPoint's Zero Day Initiative bug bounty program. TippingPoint, which sells intrusion prevention systems, had offered a $10,000 prize for a Mac zero-day vulnerability to make the CanSecWest contest more appealing to hackers.

"TippingPoint has offered to purchase the vulnerability and I have agreed, payment is pending," Dai Zovi said.

Disabling Java in a browser shields a computer against attacks that exploit the flaw, Dai Zovi said. Macs are vulnerable by default because Apple ships QuickTime with the operating system. Windows users are only vulnerable if QuickTime is installed.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 38 Talkback(s)
Apple a small enough target?
By reading tech sites such as this, one might be led to the conclusion that Macs constitute somewhere between 25% to 40% of the market.

Malicious hacks are about (1) fame and notoriety and (2) ... (Read the rest)
Posted by: rgathercoal@... Posted on: 05/04/07 You are currently: a Guest | | Terms of Use
"Macs are vulnerable by default" - what a great headline  A.Typical Zork | 04/24/07
Yeah, what a load of trash. I've used a Mac since 1986  labarker | 04/25/07
Well, that puts a lot of people at ease  markdean | 04/25/07
i think his point was...  jjarman | 04/25/07
Point is:  MacGeek2121 | 04/25/07
Apple a small enough target?  rgathercoal@... | 05/04/07
No fanboys here to dispute the story.  mustangj36@... | 04/24/07
whenever there is fault to be placed...  linuxoverwindows | 04/25/07
Blame Java!  MacGeek2121 | 04/25/07
Where's the followup  Freebird54 | 04/25/07
Hmmm... Java huh?  slylabs13 | 04/25/07
?????????  rkuhn040172@... | 04/25/07
Zombe Windows Systems  lightandshadow | 04/25/07
Interesting  Boot_Agnostic | 04/25/07
Not Root Access  lightandshadow | 04/25/07
wow...so many fluff stories on this one sideshow  jjarman | 04/25/07
/agree  fuzzy2k | 04/25/07
Both Macs and Windows Systems are Vulnerable  Cardhu | 04/25/07
At least they can't get at MY DOG,  Feldwebel Wolfenstool | 04/25/07
OK thats 21 for Apple, and 650 fo Windows.....  rbert16000 | 04/25/07
As they said, that's 21 you know about  Heatlesssun1 | 04/25/07
Now to count the amount of smack talked  GekiritZ | 04/25/07
Zealotry and Name-Calling  Cardhu | 04/29/07
Again, the 2% solution  jc williams | 04/25/07
Not an opinion, a question  bathswife | 04/25/07
legitimate hacking  chickenbob2002 | 04/25/07
It's done by "honest" hackers.  JoeBob_z | 04/27/07
Mac hack  josjoslyn | 04/25/07
Get your facts in line  Doug_Alder | 04/25/07
About time the SMUG Mac Users got some come-uppance  Jeff Hayes | 04/25/07
No smugness  ehwood | 04/25/07
I Must Be Missing Something Here...  kbuscho | 04/25/07
You just sunk your own boat  Media Whore | 04/26/07
You Sunk Your Own Boat??  combrink | 04/26/07
Track record speaks for itself  lightandshadow | 04/26/07
Why do you uncritically repeat BS propaganda  JoeBob_z | 04/27/07
Apple User since 1986  dks_z | 04/29/07
PC User since 1986  thumpz99 | 05/01/07

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

SmartPlanet

advertisement
Click Here