Apple QuickTime is Experiencing Security Problems

Apple QuickTime - a multimedia framework developed by Apple Inc., capable to deal with a variety of formats of digital video, media clips, sound, text, animation, music, and interactive panoramic images - has been undergoing a number of different vulnerabilities many times. Security issues have been related to buffer overflow, cross-site scripting attacks and other problems. Luckily, in most cases they were fixed.

Apple QuickTime vulnerability has been put in the list of other distinct vulnerabilities reported this week. Several vulnerabilities have been identified in this particular software product. Undoubtedly, Apple QuickTime , as well as other Apple software products, i.e. Apple iTunes, Apple Safari, iWorkis, are very popular among online computer users. If you are interested in files related to Apple QuickTime, you may take a look at some of them: PLAYER.EXE, 00000055.ew, DISKETTE.INF and corevideo.qtx.

After providing all information regarding a few vulnerabilities existing in Apple QuickTime, it can be said that victimised users can stay calm. There is a great chance to solve these specific issues. The vendor recommends users who have experienced these vulnerabilities to update their installations to Apple QuickTime version 7.6.4. At last, don't forget to follow other vulnerability bulletins to protect your computer system from other security issues.

Resources:

http://www.apple.com/quicktime/download/


http://www.pc1news.com/news/0996/apple-quicktime-is-experiencing-security-problems.html

don't I need it to be able to use iTunes?

Because I really hate QuickTime, always have.......................

I'm testing the RTM version now. It will be a good piece of software for the public.

http://technet.microsoft.com/en-us/evalcenter/cc442495.aspx


Minimum System Requirements*:

1 GHz or faster 32-bit (x86) or 64-bit (x64) processor
1 GB of RAM (32-bit) / 2 GB RAM (64-bit)
16 GB available disk space (32-bit) / 20 GB (64-bit)
DirectX 9 graphics processor with WDDM 1.0 or higher driver
DVD-compatible drive
Internet access

In favour of a virus and malware, security nightmare platform?

No thanks. I'll stick with OS X and Ubuntu.

Doesn't this article just say that these "Security Problems" exist only on Windows OS?
Unless you have a Bootcamp partition, I don't think you'll find any files named PLAYER.EXE, 00000055.ew, DISKETTE.INF or corevideo.qtx functioning on a Mac. So actual Mac users can remain calm ... right?

Holy Crap!!
The article goes on to list the problems in detail:

An error in the parsing of H.264 movie files could be exploited by evil users to lead to memory corruption.
An error in the parsing of MPEG-4 video files could be exploited by vicious users to trigger a buffer overflow.
An integer overflow error occurs while dealing with the "SectorShift" and "cSectFat" fields of a FlashPix file header. This could be exploited by remote attackers to create a heap-based buffer overflow through a malicious FlashPix (".fpx") file.
A boundary error occurs while managing samples from a H.264 encoded MOV file. This could be exploited by spiteful attackers to evoke a heap-based buffer overflow through a manipulated MOV file.

OMG I'm still skeerd!!!

Interesting though that all these things "could" happen, but have they?

The final paragraph states, "After providing all information regarding a few vulnerabilities existing in Apple QuickTime, it can be said that victimised(sic) users can stay calm."
Has anyone been victimized?

My heart can't take this and I don't have medical insurance!

forgot this
:sarcasm:

:evilgrin: