QuickTime dirty dozen flaws closed

By

Apple pushes update.

Apple has pushed out an update to its QuickTime software to close a dozen vulnerabilities.


Version 7.7.4 for Windows 7, Vista, and XP SP2 fixes flaws memory corruption and buffer overflow flaws that could lead to arbitrary code execution or denial-of-service conditions, according to an Apple support document.

Eleven of the vulnerabilities were reported through HP's Zero Day Initiative.

Specifically the flaws included attacks involving a maliciously crafted TeXML file, movie file, or MP3 leading to arbitrary code execution. 

Another involved a crafted QTIF file that could also lead to an unexpected application termination or arbitrary code execution.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

Microsoft knew of SharePoint security flaw in May, initial patch ineffective

Microsoft knew of SharePoint security flaw in May, initial patch ineffective

Allianz Life says majority of US customers' data stolen in hack

Allianz Life says majority of US customers' data stolen in hack

NT gov agency targeted in alleged $3.5m BEC scam

NT gov agency targeted in alleged $3.5m BEC scam

Gov to encourage vuln research, puts insurers and NFPs on notice

Gov to encourage vuln research, puts insurers and NFPs on notice

Log In

  |  Forgot your password?