We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,259 News Articles

Apple tackles high-profile Quicktime hack

Hack-the-Mac flaw closed by Apple update

Apple has issued a patch to close the hole found by the winner of a recent Hack-the-Mac contest.

Apple described the weakness as an implementation issue in QuickTime. “By enticing a user to visit a web page containing a maliciously crafted Java applet, an attacker can trigger the issue which may lead to arbitrary code execution,” Apple said.

Apple credits Dino Dai Zovi, who won $10,000 in a Mac hacking contest initiated at the CanSecWest security conference in Vancouver about two weeks ago, for reporting the flaw. The contest originally challenged conference attendees to break into a Mac that wasn’t running any programs. When no one managed to do so, the contest allowed participants to try to break in through the browser. Dai Zovi was the first to succeed.

Apple also credits 3Com's TippingPoint division, which put up the $10,000 prize, and the Zero Day Initiative for help in reporting the issue.

Because the flaw lies in QuickTime, which is used by Microsoft’s Internet Explorer as well as Mozilla’s Firefox browsers, PC users are also vulnerable.


IDG UK Sites

Windows 10 launch event as it happened: Read our Windows 10 launch live blog - find out first as...

IDG UK Sites

Windows 9 and the death of the OS as a must-have product

IDG UK Sites

Video trends: 4K is here โ€“ HDR video, VR and 3D audio is coming

IDG UK Sites

Best iPhone 6, iPhone 6 Plus deals: iPhone 6, iPhone 6 Plus tariffs, contracts and prices UK