Apple issues QuickTime updates
Apple has released a QuickTime security update to address "highly critical" security flaws in its media player that could allow malicious attackers to take control of a user's system.
The security flaws affect QuickTime 7 versions running on the Mac OS X and Windows. Users are advised to update to QuickTime 7.4.5, according to an Apple advisory issued Wednesday.
Apple issued 11 security updates designed to prevent malicious attackers from disclosing users' sensitive information, executing arbitrary code, or causing an application to suddenly crash.
Users can be hit with such evil dealings when visiting a Web site rigged with malicious Java applets, view a tampered movie file or open a malicious PICT image file, according to the advisory.
Lovely, eh?
For those who want to delve deeper into the nitty gritty details of the vulnerabilities check out TippingPoint Zero Day Initiative, which discovered some of these flaws, as well as security researcher Secunia, which lists all 11 updates.
Dawn Kawamoto covers enterprise security and financial news relating to technology for CNET News. E-mail Dawn. 
Lovely that Apple issued a fix?
Lovely that Apple issued a fix?
apply Apple's recent Quicktime Updates!" The headline, "Apple
issues QuickTime updates," implies that there is a new update.
apply Apple's recent Quicktime Updates!" The headline, "Apple
issues QuickTime updates," implies that there is a new update.
http://www.flickr.com/photos/kool_skatkat/
http://www.eweek.com/c/a/Security/Apple-Adds-AntiHacker-
Features-to-QuickTime/
I don't understand the technology aspect, but in the story Apple
even gets props from one of the guys who's made breaking into
Quicktime a personal crusade.
http://www.flickr.com/photos/kool_skatkat/
http://www.eweek.com/c/a/Security/Apple-Adds-AntiHacker-
Features-to-QuickTime/
I don't understand the technology aspect, but in the story Apple
even gets props from one of the guys who's made breaking into
Quicktime a personal crusade.
usage of PICT files is an excuse for Apple, but it got me wondering
if anybody uses the format anymore.
Also, I agree with the other post. I actually ran software update
thinking there was a new update. Timeliness is always appreciated
c|net
If I remember my history studies, the Picts pretty much got
absorbed in with the Scots :)
Seriously the support for PICT images is just a legacy thing from
the old Mac days. Schools and such may still have clip art in PICT
format. Lovely eh?
usage of PICT files is an excuse for Apple, but it got me wondering
if anybody uses the format anymore.
Also, I agree with the other post. I actually ran software update
thinking there was a new update. Timeliness is always appreciated
c|net
If I remember my history studies, the Picts pretty much got
absorbed in with the Scots :)
Seriously the support for PICT images is just a legacy thing from
the old Mac days. Schools and such may still have clip art in PICT
format. Lovely eh?
quick patching the exploit uncovered in CanSecWest's
competition (all we know for sure is Safari was used to connect
to the exploit site, but it could easily have been a QuickTime
flaw used). Turns out this was an update released a week ago
(VERY unlikely to address the recent exploit).
At least it prompted me to check again and verify that I'm up to
date.
quick patching the exploit uncovered in CanSecWest's
competition (all we know for sure is Safari was used to connect
to the exploit site, but it could easily have been a QuickTime
flaw used). Turns out this was an update released a week ago
(VERY unlikely to address the recent exploit).
At least it prompted me to check again and verify that I'm up to
date.
- by paulanewton September 20, 2008 11:12 AM PDT
- I lost my QuickTime and Safari. I went back to September 19, 2008 to see if it they were deleted by a mistake and for some reason I can not retrieve them. Help!
- Like this Reply to this comment
-
(19 Comments)