Friday, 13 July 2007
Apple Fixes Eight QuickTime Problems
|
| |
Apple has released a QuickTime security patch that fixes eight vulnerabilities, including seven that could be used for remote code execution... |
| |
|
| |
Apple has released a QuickTime security patch that fixes eight vulnerabilities, including seven that could be used for remote code execution.
The update applies to QuickTime for Mac OS 10.3.9, 10.4.9 or later, as well as Windows XP and Vista.
Seven of the vulnerabilities allow for remote code execution, meaning that a successful exploit could allow an attacker to install malware or take control of a target system.
Apple knew about the vulnerabilities last year itself, however as a policy, the company did not acknowledge the flaws till it launched the updates.
Four of the remote code execution vulnerabilities were found in QuickTime's Java components. Three will allow an attacker to execute arbitrary code, while a fourth will allow the attacker to capture a screenshot of the victim's computer.
QuickTime has been a system component of Mac OS since 1991. It has also become a staple of Windows systems in recent years because it is included as a component of Apple's iTunes media player. |
| |
|
|
| |
|
|
| |
|
|
| |
|
