QuickTime dirty dozen flaws closed

By on

Apple has pushed out an update to its QuickTime software to close a dozen vulnerabilities.

Version 7.7.4 for Windows 7, Vista, and XP SP2 fixes flaws memory corruption and buffer overflow flaws that could lead to arbitrary code execution or denial-of-service conditions, according to an Apple support document.

Eleven of the vulnerabilities were reported through HP's Zero Day Initiative.

Specifically the flaws included attacks involving a maliciously crafted TeXML file, movie file, or MP3 leading to arbitrary code execution. 

Another involved a crafted QTIF file that could also lead to an unexpected application termination or arbitrary code execution.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition

Most Read Articles

Log In

  |  Forgot your password?