The flaw was first discovered as part of a "hack-a-Mac" contest at the Vancouver, B.C. conference, for which researcher Dino Dai Zovi won $10,000.
Terri Forslof, manager of security response at TippingPoint, said today that "new facts have emerged as we have had time to analyse (the flaw) further."
"Initially the proof-of-concept code provided by the researcher, Dai Zovi, only worked against the Safari and Firefox browsers. We have now verified that this issue affects both Windows and Mac operating systems, including Windows Vista through Internet Explorer," she said. "We strongly believe at this point that any Java-enabled browser that has the vulnerable QuickTime Java extension installed is affected by this issue."
The flaw was initially believed to affect only Apple’s Safari browser.
QuickTime flaw found, also affects Internet Explorer on Vista
By
Frank Washkuch
on Apr 26, 2007 9:48AM
Researchers at TippingPoint said today that the vulnerability exploited last week to hack into a MacBook Pro at CanSecWest also affects Microsoft's Internet Explorer browser on the Windows Vista operating system.
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Promoted Content
Do you know where your data sleeps at night?
Promoted Content
AWS She Builds seeks to bridge the great IT gender gap
Promoted Content
Why cloud data protection is about more than just backup
Promoted Content
Four signs your organisation is paying a massive innovation tax, and how to fix it
Sponsored Whitepapers
The 5 steps to effective data protection
Understanding the next security control points: applications and workloads
Best security practices after rapid Digital Transformation
The CISO View 2021 Survey: Zero Trust and Privileged Access
How and why to backup your Office 365 tenant
