Critical QuickTime Update Released

May 03, 2007

Apple has fixed a bad QuickTime security flaw exposed at a recent security conference.

A flaw in QuickTime that was revealed at a show in order to win a prize for hacking a Mac was fixed by Apple 10 days later.

Users should immediately upgrade to Apple's QuickTime 7.1.6 which addresses the problem in QuickTime for Java.

Apple's advisory describing the problem says it "...may allow reading or writing out of the bounds of the allocated heap. By enticing a user to visit a web page containing a maliciously-crafted Java applet, an attacker can trigger the issue which may lead to arbitrary code execution."

Copyright 2007 by Ziff Davis Media, Distributed by United Press International

Explore further: Detecting and blocking leaky Android apps

Related Stories

Recommended for you

NSA winds down once-secret phone-records collection program

18 hours ago

The National Security Agency has begun winding down its collection and storage of American phone records after the Senate failed to agree on a path forward to change or extend the once-secret program ahead of its expiration ...

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.