Friday, October 5th 2007

Apple Patches Year-Old Windows QuickTime Vulnerability

by
malware
 Discuss (7 Comments)
Apple has taken another swing at fixing a troublesome spate of QuickTime vulnerabilities. The company released an update for the Windows version of QuickTime media player on Wednesday afternoon to patch what Apple calls a "command injection issue" in the way the media player handles URLs. The flaw, which affects Windows XP and Windows Vista, was first disclosed in September of 2006 by Petko D. Petkov, a penetration tester. Petkov noted in a blog post this September that he reported two QuickTime bugs in the early fall of 2006. Only one, however, was patched. To bring attention to the year-old vulnerability, Petkov posted several proof-of-concept exploits on his blog last month. The issue does not affect computers running Mac OS X, according to Apple.
Source: InformationWeek

Related News

Add your own comment

7 Comments on Apple Patches Year-Old Windows QuickTime Vulnerability

#1
Casheti
The vulnerability is there yes but let's think about this in real world terms, how many people running quicktime are actually going to be invaded/exploited using this method? I'm sure hackers or whatever have far better methods than this.
Posted on Reply
#2
malware
CashetiThe vulnerability is there yes but let's think about this in real world terms, how many people running quicktime are actually going to be invaded/exploited using this method? I'm sure hackers or whatever have far better methods than this.
Yes, but leaving world-wide known vulnerability in your own software code for a year, does not speak well for you either. ;)
Posted on Reply
#3
DRDNA
malwareYes, but leaving world-wide known vulnerability in your own software code for a year, does not speak well for you either. ;)
that app is utter crap anyways and so is its publisher!:nutkick:>apple
Posted on Reply
#4
Ravenas
Now if Microsoft would only fix their vulnerablity issues on the Mac with MS Office... ;)
Posted on Reply
#5
Darkrealms
RavenasNow if Microsoft would only fix their vulnerablity issues on the Mac with MS Office... ;)
ROFL
Posted on Reply
#6
Helvetica
how about they dump quicktime? the thing is absolute trash. It's clogged up every rig I've ever owned.
Posted on Reply
#7
WarEagleAU
Bird of Prey
I agree Casheti. I hardly use quicktime unless the thing I am viewing requires it.

I think the files play beautifully and look wow like, but honestly, its a hog and it sucks.
Posted on Reply
Jan 17th, 2025 17:57 EST change timezone

Latest GPU Drivers

New Forum Posts

Popular Reviews

Controversial News Posts