Apple QuickTime Updates for Multiple Vulnerabilities
Original release date: November 6, 2007
Last revised: --
Source: US-CERT
Systems Affected
Vulnerabilities in Apple QuickTime affect
- Apple Mac OS X
- Microsoft Windows
Overview
Apple has released Apple QuickTime 7.3 to correct several
vulnerabilities. These vulnerabilities could allow an attacker to gain access to your computer.
Solution
Upgrade QuickTime
OS X users should use the Mac OS X Software Update feature to download and install Apple QuickTime 7.3. Consider scheduling Software Update to check for updates automatically (this option is enabled by default).
Microsoft Windows users should upgrade to Apple QuickTime 7.3.
Description
QuickTime prior to version 7.3 has multiple image and media file handling vulnerabilities that could allow an attacker to run malicious programs on your computer. This could happen by visiting a malicious web site. Upgrading to Apple QuickTime version 7.3 will correct these vulnerabilities.
Note that Apple iTunes installs QuickTime, so any system with iTunes is vulnerable.
For more technical information, see US-CERT Technical Security Alert TA07-310A.
References
Feedback can be directed to US-CERT.
Produced 2007 by US-CERT, a government organization. Terms of use
Revision History
November 6, 2007: Initial release