Home : Security : News

Apple patches 10 QuickTime vulnerabilities

Tech vendors had flagged up vulnerabilities which Apple gets around to fixing.

By Asavin Wattanajantra, 2 Jun 2009 at 12:43

Apple has released a new version of QuickTime that fixes ten vulnerabilities, some of which could have lead to an attacker running code on a user’s computer.

The update is available for Mac OS X, Windows XP and Windows Vista, with the vulnerabilities potentially making movie, video, image and audio QuickTime files vulnerable.

Tech vendors Secunia, TippingPoint, IBM, and Sourcefire were all given credit for reporting QuickTime issues, which all could have led to unexpected application termination or arbitrary code execution.

Charlie Miller of Independent Security Evaluators, which was responsible for hacking into a fully patched Macbook via Safari recently, was also given credit for reporting one of the vulnerabilities.

There was also a patch for iTunes, where visiting a maliciously crafted website was the problem.

Microsoft recently reported criminals taking advantage of DirectX using a problem with Microsoft Directshow handling QuickTime files, although in this case QuickTime was not what was vulnerable.

Email to a friend

Print this page

< Previous Security : News Next >

Be the first to comment on this article

You need to Login or Register to comment.

Latest Security Analysis & Insight

What is your password worth?

Would you be tempted to sell off company passwords for a fee? If not, seems like you're in the minority, acccording to research.

More Security Analysis & Insight

Latest Security Reviews

Check Point 2210 Appliance review

Rating:

Check Point's new 2200 Appliances combined enterprise level network security with an SMB price tag. Its software blades provide a wealth of features, but do they complicate deployment? Read this exclusive review to find out.

More Security Reviews