iTunes 9.2.1 (http://www.apple.com/uk/itunes/download/) closes a significant security hole in earlier Windows versions, whereby a specially-crafted “itpc” URLs can enable a buffer overflow attack. However, as Heise (The H) has pointed out, Apple users benefit too since the update addresses encrypted backup issues with IOS 4.0, device synchronization, and obsolete plug-ins: see the Knowledge Base article here.
David Harley CITP FBCS CISSP
Mac Virus Administrator
Small Blue-Green World
AVIEN Chief Operations Officer
Leave a Reply