April 03, 2008

Apple closes 11 QuickTime holes

Apple late Wednesday released an update to its popular media player QuickTime, addressing 11 vulnerabilities that could be exploited by attackers to compromise PCs.

Most of the flaws, ranked "highly critical" by tracking firm Secunia, can be exploited to cause buffer overflows when unsuspecting end-users are tricked into viewing a maliciously crafted video file.

All of the 11 vulnerabilities affect unpatched Windows Vista machines, while nine impact systems running Mac OS X.

This is the third time this year that Apple has pushed out QuickTime updates.

Experts said many attackers are turning to media player exploits because users tend to trust links promising video. As a defense, users are advised not to visit untrusted websites or click on unknown links.
Related Articles
Related Topics
Related Links

Sign up to our newsletters

More in News

CISPA moves forward, but rejected amendments frustrate privacy advocates

The amendments to the threat intelligence sharing bill would have tightened controls around the corporate release of personally identifiable information to three-letter agencies, including the NSA.

Bitcoin mining botnet has become one of the most prevalent cyber threats

Fortinet researchers have tracked 100,000 new ZeroAccess trojan infections per week, making the botnet very lucrative to its owners.

House Intelligence Committee OKs amended version of controversial CISPA

House Intelligence Committee OKs amended version of controversial ...

Despite the 18-to-2 vote in favor of the bill proposal, privacy advocates likely will not be satisfied, considering two key amendments reportedly were shot down.