1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Apple Patches Year-Old Windows QuickTime Vulnerability

Discussion in 'News' started by malware, Oct 5, 2007.

  1. malware New Member

    Joined:
    Nov 7, 2004
    Messages:
    5,476 (1.54/day)
    Thanks Received:
    956
    Location:
    Bulgaria
    Apple has taken another swing at fixing a troublesome spate of QuickTime vulnerabilities. The company released an update for the Windows version of QuickTime media player on Wednesday afternoon to patch what Apple calls a "command injection issue" in the way the media player handles URLs. The flaw, which affects Windows XP and Windows Vista, was first disclosed in September of 2006 by Petko D. Petkov, a penetration tester. Petkov noted in a blog post this September that he reported two QuickTime bugs in the early fall of 2006. Only one, however, was patched. To bring attention to the year-old vulnerability, Petkov posted several proof-of-concept exploits on his blog last month. The issue does not affect computers running Mac OS X, according to Apple.

    Source: InformationWeek
  2. Casheti

    Casheti New Member

    Joined:
    May 3, 2006
    Messages:
    4,422 (1.47/day)
    Thanks Received:
    29
    The vulnerability is there yes but let's think about this in real world terms, how many people running quicktime are actually going to be invaded/exploited using this method? I'm sure hackers or whatever have far better methods than this.
  3. malware New Member

    Joined:
    Nov 7, 2004
    Messages:
    5,476 (1.54/day)
    Thanks Received:
    956
    Location:
    Bulgaria
    Yes, but leaving world-wide known vulnerability in your own software code for a year, does not speak well for you either. ;)
  4. DRDNA

    DRDNA

    Joined:
    Feb 19, 2006
    Messages:
    4,768 (1.55/day)
    Thanks Received:
    561
    Location:
    New York
    that app is utter crap anyways and so is its publisher!:nutkick:>apple
  5. Ravenas

    Ravenas

    Joined:
    May 24, 2007
    Messages:
    4,635 (1.77/day)
    Thanks Received:
    344
    Location:
    Tennessee
    Now if Microsoft would only fix their vulnerablity issues on the Mac with MS Office... ;)
  6. Darkrealms

    Joined:
    Feb 26, 2007
    Messages:
    851 (0.31/day)
    Thanks Received:
    23
    Location:
    USA
    ROFL
  7. Helvetica New Member

    Joined:
    Sep 13, 2007
    Messages:
    159 (0.06/day)
    Thanks Received:
    3
    how about they dump quicktime? the thing is absolute trash. It's clogged up every rig I've ever owned.
  8. WarEagleAU

    WarEagleAU Bird of Prey

    Joined:
    Jul 9, 2006
    Messages:
    10,796 (3.67/day)
    Thanks Received:
    545
    Location:
    Gurley, AL
    I agree Casheti. I hardly use quicktime unless the thing I am viewing requires it.

    I think the files play beautifully and look wow like, but honestly, its a hog and it sucks.

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)

Share This Page