Apple iTunes security flaw discovered

Apple iTunes security flaw discovered: "A vulnerability in software that helps manage iTunes could allow an attacker to launch arbitrary code."

The discovery of this flaw comes days after Apple issued its security update for iTunes 6 for Windows.

This flaw existed on the earlier version of iTunes 6 for Windows and was not addressed by the newest security update, according to a warning issued by eEye Digital Security.

After eEye mistakenly posted a note on its Web site saying the iTunes flaw affected "all operating systems," the security firm updated its warning to indicate that the flaw had been found only on the Windows operating system so far.

However, eEye is now testing whether the flaw also affects iTunes running on Mac operating systems.

Apple iTunes 6 for Windows, as well as the previous version, are affected by the flaw, said Steve Manzuik, product manager at eEye.

MORE