Apple Quick Time 7.5 Security update for XP and Vista

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Music Apple has released some important security changes for Quick Time. Users should update their systems promptly for improved protection.

Apple QT 7.5 - Overview of Security improvements
http://support.apple.com/kb/HT1991

Apple QT 7.5 Download site
http://www.apple.com/support/downloads/quicktime75forwindows.html

Apple Downloads
http://www.apple.com/support/downloads/

QUOTE: Apple's security improvements include fixes for:

CVE-2008-1581: PICT images can lead to an heap overflow and code execution
CVE-2008-1582: AAC coded media can lead to code execution
CVE-2008-1583: PICT images can lead to an heap overflow and code execution
CVE-2008-1584: Indeo video codec can lead to a stack buffer overflow and code execution - note the fix: "This update addresses the issue by not rendering Indeo video codec content."
CVE-2008-1585: handling of file: URLs in QuickTime files could lead to an attacker controlled application launch and code execution - note the fix: "This update addresses the issue by revealing files in Finder or Windows Explorer rather than launching them."

Posted: Jun 10 2008, 02:43 PM by Harry Waldron | with no comments

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.