RSS

QuickTime Flaws Corrected With Latest Version

Chris Crum
Staff Writer
2005-11-04

Insider Reports RSS Feed

Four security flaws have been discovered in versions 6.x through 7.x of Apple's QuickTime media player, but have been corrected with the latest version.

Apple recommends that all QuickTime users immediately upgrade to version 7.0.3 to avoid any vulnerabilities leading to DoS attacks.

At Securina, Piotr Bania describes the vulnerabilities in detail:

1) An integer overflow error exists in the handling of a "Pascal" style string when loading a ".mov" video file. This can result in memory overwrite due to a large memory copy, potentially allowing arbitrary code execution via a specially crafted video file.

2) An integer overflow error exists in the handling of certain movie attributes when loading a ".mov" video file. This can result in memory overwrite due to a large memory copy, potentially allowing arbitrary code execution via a specially crafted video file...

The flaws are described as highly critical. It is a good thing Apple was able to correct them so quickly.

About the Author:
Chris Crum is a staff writer for SecurityProNews and WebProNews.

More news_security_news Articles

Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Featured On:

article resources

WebProWorld.com

•	Get in-touch with industry experts and leaders
•	Post your site for review by expert and peers
•	Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com


Titan Quest Forum The #1 Titan Quest forum
Halo 3 Forum The best Halo, Halo 2, Halo 3 forum
Nintendo Wii Nintendo Wii news and views
Mac Software The best in OS X freeware
Graphics Forum Your source for graphic tutorials