-
Channel Business -
Security -
AI -
Infrastructure -
- Lists & Awards
- Resources Resource HubsFeatured ResourcesLink to Video: Why Most AI Projects Fail According to Spyglass MTG CEO
Video: Why Most AI Projects Fail According to Spyglass MTG CEOSpyglass MTG CEO Dori Albert explains how organizations can build secure and data-driven AI platforms that deliver real business value.
Link to Video: Harbor IT on NENS Acquisition and Why the Generalist MSP Model Is Dying
Video: Harbor IT on NENS Acquisition and Why the Generalist MSP Model Is DyingLeaders from Harbor IT explain why the traditional generalist MSP model is fading and how specialization, cybersecurity expertise, and vertical industry focus are shaping the future of managed services.
Link to Video: Hype, Bubble, or Breakthrough? Talking All Things AI with The Neuron
Video: Hype, Bubble, or Breakthrough? Talking All Things AI with The NeuronIn this Channel Insider crossover, the hosts of The Neuron break down the AI race, the bubble debate, and what today’s tools really mean for businesses and everyday users.
Link to Video: SurePath AI CEO Secure GenAI Adoption with Zero Trust
Video: SurePath AI CEO Secure GenAI Adoption with Zero TrustSurePath AI CEO Casey Bleeker explains how organizations can accelerate generative AI adoption using zero trust principles and AWS guardrails without increasing security and compliance risk.
Link to Video: How Netskope and Optiv Fight Shadow AI
Video: How Netskope and Optiv Fight Shadow AIIndustry experts from Netskope and Optiv explain how their partnership helps organizations secure cloud and AI adoption while balancing innovation governance and real world security outcomes.
Link to Video: Integris CEO and CRO on AI, Acquisitions, and How To Be an Irreplaceable MSP
Video: Integris CEO and CRO on AI, Acquisitions, and How To Be an Irreplaceable MSPIntegris CEO Glenn Mathis and CRO Kyle Wewe share how AI along with verticalization and acquisitions are shaping the future of MSPs in 2026.
- About About
- Events Events
Apple Vulnerability Project Launches with QuickTime Exploit
An easy-to-exploit security vulnerability in Apple Computer’s QuickTime media player could put millions of Macintosh and Windows users at risk of code execution attacks. The QuickTime flaw kicked off the Month of Apple Bugs project, which promises to expose unpatched Mac OS X and Apple application vulnerabilities on a daily basis throughout the month of […]
An easy-to-exploit security vulnerability in Apple Computer’s QuickTime media player could put millions of Macintosh and Windows users at risk of code execution attacks.
The QuickTime flaw kicked off the Month of Apple Bugs project, which promises to expose unpatched Mac OS X and Apple application vulnerabilities on a daily basis throughout the month of January.
According to an advisory released Jan. 1, the flaw exists in the way QuickTime handles a specially rigged “rtsp://” URL.
“By supplying a specially crafted string, [an] attacker could overflow a stack-based buffer, using either HTML, Javascript or a QTL file as attack vector, leading to an exploitable remote arbitrary code execution condition,” said LMH, one of the mysterious hackers behind the controversial project.
He described exploitation of the issue as “trivial” and warned that stack NX can also be rendered useless.
LMH said the issue was successfully exploited in QuickTime Player Version 7.1.3. Previous versions are likely vulnerable as well. Both Microsoft Windows and Mac OS X versions are affected.
The Cupertino, Calif.-based Apple markets QuickTime as a platform for the handling of video, sound, animation, graphics, text and music. The technology—and media player—is available for Windows and Mac users, making it a lucrative target for malware writers.
“The only potential workaround would be to disable the “rtsp://” URL handler, uninstalling QuickTime or simply live with the feeling of being a potential target,” according to the advisory.
