Mar 21
QuickTime flaw could download spyware – JS/SpaceTalk
March 21, 2007 at 4:46 am 455 views
Filed under: News
A flaw in Apple’s QuickTime file format could allow spyware to be downloaded to collect personal information from users. According to Didier Stevens, who works as an independent security researcher, the flaw can allow a QuickTime movie to execute a piece of Javascript code that in turn downloads spyware onto a victim’s computer. He said that at present a French rock band is using the technique to find out information about users visiting the band’s MySpace page. On the page is embedded an invisible QuickTime video which uses the software’s HREF function to run the script.
Posted on Wednesday, March 21st, 2007 at 4:46 am and under category News.
You can read any responses through the RSS 2.0 feed.
You can give a response, or trackback from your site.