As reported by MacMinute:
iTunes security flaw
November 18 - A story on CNET News.com today reports that security firm eEye Digital Security issued a warning yesterday that a "critical vulnerability" in iTunes could allow attackers to remotely take over a user's computer. "Although an Apple spokesman was not immediately available for comment, the company has a policy of not discussing or confirming security issues until it has conducted an investigation and issued any needed patches, according to Apple's posting on its site," notes the story. "eEye, meanwhile, does not provide extensive details on the flaws it finds until a vendor releases a patch to resolve the security flaw."
It makes me wonder sometimes ... are people legitimately looking for things like this or is Apple's competition finding these flaws, reporting them to companies like eEye, then said security firms overpublicize these security flaws?
It seems like evey week that Apple announces positive news ... something mysteriously pops up in the news around the Mac web about a bogus lawsuit or bogus security flaw ...