Apple Patches Five Critical Vulnerabilities in QuickTime
Apple issued security updates to patch five critical vulnerabilities in its QuickTime application on June 10, 2008, repairing a number of faults that could allow remote hackers to launch attacks against the vulnerable computers.
Apple addressed the patches in its QuickTime 7.5 update. The patches were released for vulnerabilities affecting the older version 7.4.5 issued in April 2008. Among the five patches, four affect a number of versions of Windows and Mac OS X, while the remaining one affects only Windows XP SP2 and Vista.
A couple of updates repair heap buffer overflow faults that result from QuickTime's improper handling of the PICT image file. It is possible to exploit both these vulnerabilities if a surfer is lured to access a maliciously crafted PICT image file. Wit...
» SPAMfighter News - 26-06-2008