Apple Releases QuickTime 7.5 |
|
Apple has released QuickTime 7.5 to address multiple vulnerabilities. These vulnerabilities include the following:
- a heap-based buffer overflow condition in the handling of PixData structures when processing a PICT image that may allow an attacker to execute arbitrary code or cause a denial-of-service condition
- a memory corruption condition in the handling of AAC-encoded media content that may allow an attacker to execute arbitrary code or cause a denial-of-service condition
- a heap-based buffer overflow condition in the handling of PICT images that may allow an attacker to execute arbitrary code or cause a denial-of-service condition
- a stack-based buffer overflow condition in the handling of Indeo video codec content that may allow an attacker to execute arbitrary code execution or cause a denial-of-service condition
- an unspecified error in the handling of file: URLs that may allow an attacker to execute arbitrary files and applications
US-CERT encourages users to review Apple Article HT1991 and upgrade to QuickTime 7.5.
Read more: |
US-CERT Computer Emergency Readiness Team