vulnerabilities posts - Apple

January 23, 2009 7:38 AM PST

Apple has issued a critical security update for QuickTime media player, aimed at resolving vulnerabilities that could potentially allow a malicious attacker to take control of a person's computer, according to an Apple advisory released this week.

People running QuickTime 7 for Windows and for Mac OS X, are affected, as well as those who are using Mac OS X 10.4 or Mac OS X 10.5, according to Apple.

Apple is advising people to update to QuickTime 7.6 for Windows, QuickTime 7.6 for Leopard, or QuickTime 7.6 for Tiger.

The update seeks to address QuickTime security flaws that could potentially allow a malicious attacker to launch a buffer overflow and execute arbitrary code on a user's system.

The attack could potentially occur via a maliciously crafted movie file, AVI movie file, QTVR movie file, or an RTSP URL, according to Apple.

Security researcher Secunia, in an advisory released Thursday, noted the vulnerabilities are considered "highly critical."

Topics:: Mac OS X,; Applications

Tags:: Apple,; QuickTime,; security flaws,; vulnerabilities,; media player

Share:: Digg; Del.icio.us; Reddit; Facebook; Twitter

About Apple

At the start of the 21st century, there's no tech outfit more influential than Apple. CNET News' Erica Ogg and other reporters will attempt to make sense of the rumors, hype, products, and people that will shape the future of the company. But Apple's not the only game in town, as the established cell phone companies and others strike back against the iPhone. E-mail Erica at erica.ogg@cnet.com.

Add this feed to your online news reader

Apple topics

Most Discussed

Inside CNET News

Scroll Left Scroll Right

Software, Interrupted
Flexing the boundaries of flash memory
Flash memory is already a part of our daily computing lives. A breakthrough in flexible material may open many new market opportunities.
Gallery
Top-rated reviews of the week (photos)
Wireless
AT&T ceases online iPhone sales in NY area
Customers with a New York area ZIP code trying to buy an iPhone on the wireless carrier's Web site are greeted with a message saying that there are no phones available. Is data congestion or credit card fraud to blame?
Beyond Binary
Visual Studio launch delayed by 'a few weeks'
Microsoft says it's still working to resolve some performance issues related to the Visual Studio 2010 developer tool suite, which was slated for a March release.
Video
Behind the scenes of CBS's NFL coverage
Technically Incorrect
Escaped convict continues to update Facebook
Craig "Lazie" Lynch has been on the run from a U.K. prison since September. However, he continues to taunt police by updating his Facebook status. Now he is threatening to quit.
Video
Deep-sea volcanic explosion--part 2 (video)
The Social
Facebook COO nominated to Disney board
Sheryl Sandberg, who has been chief operating officer of the social network for nearly two years now, will join the board if shareholders approve in March.
The Space Shot
Soyuz craft docks, boosts space station crew
A Russian Soyuz spacecraft docked with the International Space Station Tuesday after a smooth, automated approach, boosting the lab's crew back up to five.
Gallery
Lookout keeps an eye on mobile-device security (photos)
Crave
Reports: Panasonic battery to power homes for one week
Panasonic is planning to market a home-use storage cell that will supposedly hold enough juice to power a typical Japanese home for one week, according to reports.
Green Tech
Ford sees bump in hybrid sales
Carmaker says its hybrid sales are up 67 percent this year, despite an 11 percent slump industrywide.

Apple

Apple issues critical security update for QuickTime

Most Popular

15 sites that went kaput in 2009

Top 10 news stories of the decade

About Apple

Apple topics

Apple Corporate

Apple TV

Applications

Chips

Legal

Live Blogs

Mac

Mac OS X

MobileMe

Retail Stores

Rumors

Steve Jobs

iPhone

iPod

iTunes

Most Discussed

Inside CNET News

Apple

Most Popular

About Apple

Apple topics

Blogroll

Most Discussed

Inside CNET News