October 3, 2007 2:17 PM PDT

Apple fixes Windows Quicktime flaw

by Robert Vamosi

Apple today released security updates for the Windows version of Quicktime. The update is available from the Apple Downloads site.

The patch affects users of QuickTime 7.2 on Windows Vista, XP SP2, and addresses the vulnerability in CVE-2007-4673. Currently, viewing maliciously crafted Quicktime files may lead to arbitrary code execution. "A command injection issue exists in QuickTime's handling of URLs in the qtnext field in files with QTL content. By enticing a user to open a specially crafted file, an attacker may cause an application to be launched with controlled command line arguments, which may lead to arbitrary code execution," Apple describes.

As CNET's resident security expert, Robert Vamosi has been interviewed on the BBC, CNN, MSNBC, and other outlets to share his knowledge about the latest online threats and to offer advice on personal and corporate security. Listen to his podcast at securitybites.cnet.com or e-mail Robert with your questions and comments.

Topics:: Security,; Apple

Tags:: security,; Apple,; Quicktime,; Windows

Share:: Digg; Del.icio.us; Reddit; Facebook

About News Blog

Recent posts on technology, trends, and more.

Add this feed to your online news reader

Inside CNET News

Scroll Left Scroll Right

Business Tech
Week in review: A speedier new Firefox
Mozilla's latest version plays catch-up with the browser competition. Also: the latest in Windows 7 news, and a Yahoo data center in a new shade of green.
Gallery
Photos: Spiral Jetty, Robert Smithson's wondrous earthwork
Technically Incorrect
After Wikipedia, Jockipedia
A new site collates the social-networking activity of sports people, tabulated by name, league, and country.
Beyond Binary
Windows 7 may get a 'Family Pack'
Enthusiasts have spotted wording in a leaked test build of the operating system that suggests Microsoft may offer a three-PC deal with the new Windows.
Video
Video: iPhone 3G S launch in New York City
Technically Incorrect
Wife exposes chief spy's personal life on Facebook
The wife of the new head of MI6 reveals details of their vacations, their children, their celebrity friends, and even how he looks in swimming attire.
Video
A recipe for high-tech chocolate
Geek Gestalt
Spiral Jetty, earthwork extraordinaire
On the north edge of the Great Salt Lake, Robert Smithson's masterpiece sits peacefully, awaiting visitors willing to make the long trek to see one of the world's great land art pieces.
The Space Shot
Lunar mapping satellite snaps first test images
NASA's Lunar Reconnaissance Orbiter has snapped its first test images, showing the moon's starkly cratered terrain in preparation for the start of mapping operations.
Gallery
Photos: The Transcontinental Railroad's Golden Spike
The Audiophiliac
Poll: Why don't you have an iPod or MP3 player?
What's wrong with you? Doesn't everybody have one of these things?
The Car Tech blog
Fisker's good Karma
At a dinner speech recently, Henrik Fisker laid out his plans for Fisker Automotive and its first car, the plug-in hybrid Karma.