All the latest UK technology news, reviews and analysis
|
|
|
03 Apr 2008
Apple has issued an update for the Mac and Windows versions of QuickTime.
The update addresses 11 vulnerabilities in the multimedia player software, nine of which could be exploited by an attacker to remotely execute code on a target system.
All the flaws affect Windows XP and Vista systems. Eight of the vulnerabilities also affect the Mac OS X version of QuickTime.
Five remote code execution flaws could be exploited by way of specially-crafted movie files.
Such files could also be used to execute another flaw which allows for the launching of external URLs, which Apple said could allow for information disclosure.
Three of the flaws could be exploited by way of Pict files and used by an attacker for remote code execution.
The remaining two flaws include a remote code execution flaw in the handling of QuickTime VR files and a flaw which could allow Java applets to obtain elevated privileges.
The QuickTime update can be obtained via Apple's Software Update utility or at the Apple Downloads site.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
A leading global provider of critical information to...
Playstations and table football in the kitchen? Standard...
Systems Engineer - 2nd/3rd Line Support - Microsoft OS...
A leading global provider of critical information to...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?