×

SUBSCRIBE TO TMCnet
TMCnet - World's Largest Communications and Technology Community

CHANNEL BY TOPICS


QUICK LINKS




 

December 19, 2007

Apple Publishes QuickTime Fix

By Anshu Shrivastava, TMCnet Contributing Editor

Apple (News - Alert) has released an update for QuickTime media player software, QuickTime 7.3.1, that is reportedly fixing at least three security issues in the application.



 
The first fixed security issue in QuickTime 7.3.1, according to reports, is the application’s handling of Real Time Streaming Protocol (RTSP) headers — first disclosed late November by Poland-based researcher Krystian Kloskowski — which enabled arbitrary code execution. The latest update also plugs a bug that allowed a maliciously crafted QTL file that was expected to result in unexpected application termination or arbitrary code execution.
 
In addition, the third major security issue fixed in this update includes multiple vulnerabilities in QuickTime’s Flash media handler. To fix the Flash vulnerabilities, according to a security advisory Apple posted, the company has disabled QuickTime's media handler for all Flash content, except for a limited number of existing QuickTime movies that are known to be safe.
 
There are four different patches available on Apple's site, three for the Mac OS — Panther, Tiger, and Leopard — and one for Windows. Mac users can update QuickTime through the built-in Software Update feature. Windows users who have QuickTime already installed can get the plugs using the Apple Software Update program.
 
In addition, Apple also has published release notes about a new implementation of Java for software developers running Tiger, Mac OS X 10.4, which fixes multiple vulnerabilities. According to Apple’s officials, the problems were corrected with Leopard.
 
The latest update is the seventh security modification to QuickTime this year. Including the latest security issues, Apple has reportedly patched at least 34 vulnerabilities in Quicktime since January.
 
Last Month, Apple had released QuickTime version 7.3, addressing seven security vulnerabilities for QuickTime 7.2. In October, Apple released security updates for the Windows version of Quicktime, the patch affected users of QuickTime 7.2 on Windows Vista, XP SP2.
 
 
 
 
Don’t forget to check out TMCnet’s White Paper Library, which provides a selection of in-depth information on relevant topics affecting the IP Communications industry. The library offers white papers, case studies and other documents which are free to registered users.
 
Today’s featured White Paper (News - Alert) is titled Convergence in Telecommunication, brought to you by Comarch (News - Alert).
 







Technology Marketing Corporation

2 Trap Falls Road Suite 106, Shelton, CT 06484 USA
Ph: +1-203-852-6800, 800-243-6002

General comments: [email protected].
Comments about this site: [email protected].

STAY CURRENT YOUR WAY

© 2024 Technology Marketing Corporation. All rights reserved | Privacy Policy