Yesterday, Ryan pointed out a QuickTime bug that affected Java-Enabled browsers. The bug affected those using Firefox and Safari on Macs, and those using IE7 on Vista. Very few people were immune to this issue, and all it took was visiting a malicious website and the user’s computer could have been compromised.
Thankfully Apple got on the issue pretty quickly, and today they released QuickTime 7.1.6 which patches the bugs that were previously mentioned. Had it not been for the CanSec West Security Conference, this bug wouldn’t have been found, and Apple thanks Dino Dai Zovi, Tipping Point, and the Zero Day Initiative for reporting what could have caused some problems for users.
Also included with this release is support for Final Cut Studio 2, and display fixes for timecode and closed caption.
If you use QuickTime, I’d definitely take the time to download the update so that you don’t have to worry about the security of your computer being compromised.
Thanks anonymous tipster!
Enjoyed the post? Subscribe to our feed to get a daily dose of CyberNet!
Tags: General, Apple, Downloads, Microsoft, Screenshots
Related Posts:
- Apple Patches 25 Mac OS X Security Flaws
- Microsoft’s December 2005 Patch Tuesday
- Firefox 2.0.0.7 – QuickTime Vulnerability Squashed
- 1st iPhone Vulnerability Discovered Now Patched
- Google Exploit Found – Pretends To Be GMail Plus
Does anyoone know if this effects Quicktime Alternative?
I don’t know for sure, but I don’t believe it would. I don’t even think that the Quicktime Alternative is Java based but I could be wrong in.
I think not. According to Secunia that issued the advisory it affects QuickTime only as specifically it affects the QTJava.dll. So unless the alternatives use this extension and in the same way then I would think it unlikely. Also unlikly that they have aby Apple code as well.
[secunia.com]
Cheers