QuickTime dirty dozen flaws closed

By on

Apple pushes update.

Apple has pushed out an update to its QuickTime software to close a dozen vulnerabilities.

Version 7.7.4 for Windows 7, Vista, and XP SP2 fixes flaws memory corruption and buffer overflow flaws that could lead to arbitrary code execution or denial-of-service conditions, according to an Apple support document.

Eleven of the vulnerabilities were reported through HP's Zero Day Initiative.

Specifically the flaws included attacks involving a maliciously crafted TeXML file, movie file, or MP3 leading to arbitrary code execution. 

Another involved a crafted QTIF file that could also lead to an unexpected application termination or arbitrary code execution.

Copyright © SC Magazine, US edition
Tags:

Most Read Articles

Log In

Username:
Password:
|  Forgot your password?