Critical Security Flaw Fixed in New iTunes
Ed Oswald writes over on BetaNews that:
Security firm Secunia on Tuesday urged Apple iTunes users to upgrade to version 4.8 of the software in order to avoid a recently discovered security flaw, which it has listed as "highly critical." The hole is created by causing a buffer overflow via a specifically crafted MPEG4 file. If the exploit is successful, a user's system could be compromised to run malicious code and cause a denial-of-service attack.