Apple Computer Inc. has patched a flaw attackers could potentially exploit in the popular iTunes music program to cause a denial of service or launch malicious code on victims' machines.
According to the company's advisory, the
The company added that iTunes 6.0.5 addresses the problem by improving the validation checks used when loading AAC files.
Danish vulnerability clearinghouse Secunia rated the iTunes flaw highly critical because attackers could exploit it from remote locations.
This is the second security update Apple has released in the last week. Tuesday, the company released Mac OS X version 10.4.7 to address multiple security holes in the operating system.