Apple plugs zero-day QuickTime flaw

TalkBack 11 of 30:: Next »; « Previous

Thread View
Flat View

Did you even read it?: Or are you just spreading FUD?

Security Update 2007-001

QuickTime

CVE-ID: CVE-2007-0015

Available for: QuickTime 7.1.3 on Mac OS X v10.3.9, Mac OS X Server v10.3.9, Mac
OS X v10.4.8, Mac OS X Server v10.4.8, Windows XP/2000

Impact: Visiting malicious websites may lead to arbitrary code execution

Description: A buffer overflow exists in QuickTime's handling of RTSP URLs. By
enticing a user to access a maliciously-crafted RTSP URL, an attacker can trigger
the buffer overflow, which may lead to arbitrary code execution. A QTL file
that triggers this issue has been published on the Month of Apple Bugs web site
(MOAB-01-01-2007). This update addresses the issue by performing
additional validation of RTSP URLs.; Posted by: Rick_K Posted on: 01/24/07 You are currently: a Guest | Members login | Terms of Use

Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

It was fast greenwizard88 | 01/23/07

It was fast enough 999ad@... | 01/23/07

As long as mdemuth | 01/23/07

Sure anything within "30" days is reasonable too me. Laff | 01/24/07

"23" days is the perfect amount NonZealot | 01/24/07

Man you AppleZealots are too much....:P Laff | 01/24/07

I don't think Shelendrea | 01/24/07

Oh I realize he was NOT being an AppleZealot.... Laff | 01/24/07

Took longer than I would have said for Apple Boot_Agnostic | 01/23/07

Apple's security "alert" document is a joke. PB_z | 01/23/07

Did you even read it? Rick_K | 01/24/07

But I thought Macs were flawless? NonZealot | 01/23/07

Message has been deleted. whisperycat | 01/24/07

It's a common and understandable misconception:P Laff | 01/24/07

Yes, I'd love to use an OS like OSX NonZealot | 01/24/07

MORTAL!!! Do not doubt the Apple!!!! Laff | 01/24/07

Keep on posting, buddy Tigertank | 01/24/07

Please don't reply to my posts any more NonZealot | 01/24/07

raving lunatic... and i'm serious.. that's my conclusion. doctorSpoc | 01/24/07

Apple stocker? NonZealot | 01/24/07

please do us and yourself a favour and get back on your meds nt. doctorSpoc | 01/24/07

Dispute....who cares!?! Laff | 01/24/07

Pay attention! frabjous | 01/24/07

It's true... Rick_K | 01/24/07

No, there are not Boot_Agnostic | 01/24/07

Very Amusing Shelendrea | 01/24/07

22, 23 days? joe6pack_z | 01/24/07

Well... nomorems | 01/24/07

Really? frabjous | 01/24/07

I've had no problems with Windows or Linux either NonZealot | 01/25/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
Open Standards Technologies Provide the Ingredients for Delivering Security Across the Papa Gino's Enterprise Dell Papa Gino's Holdings Corporation founded by the entrepreneur operates one ... Download Now
Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
Smart People The best and worst moves in the management and strategy trenches. Learn More

Read the original story

Apple plugs zero-day QuickTime flaw

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads