Apple fixes iPhoto security flaw
- Author:
- Antony Savvas
- Posted:
- 15:58 06 Feb 2008
Apple has issued a security fix for its iPhoto software to stop users being infected with malicious photos.
The bug being plugged could have allowed an attacker to entice a victim into subscribing to a maliciously crafted photocast.
The security fix comes with an update for iPhoto '08 distributed this week.
The new iPhoto '08 7.1.2 addresses a flaw in iPhoto '08 version 7.1. If a user had received a malicious photocast, the attacker could have executed code on the victim's system.
"This update addresses the issue through improved handling of format strings when processing photocast subscriptions," Apple said.