Apple posts QuickTime 7.3.1 security update

The exploit sends an improper header through QuickTime's Real Time Streaming Protocol (RTSP) service, triggering a buffer overflow that permits a hacker to run their own code and compromise an affected system.

In recent days, a website known as Ourvoyeur.net has reportedly been hijacked and used to infect systems with malware that opens a back door for hackers. That exploit targets Windows users but could theoretically apply to Mac OS X as well given the existence of the flaw in Apple's own operating system, according to one report.

The QuickTime patch is available both for the critically affected Windows systems in a 20MB download but is also offered as a roughly 50MB fix for Mac OS X Panther, Tiger, and Leopard.

Subscribe to: Post Comments (Atom)

Blog Archive

• ►  2008 (75)
  • ►  January (75)
    • Jan 03 (34)
    • Jan 02 (28)
    • Jan 01 (13)

• ▼  2007 (365)
  • ▼  December (365)
    • Dec 31 (16)
    • Dec 30 (7)
    • Dec 29 (10)
    • Dec 28 (23)
    • Dec 27 (16)
    • Dec 26 (9)
    • Dec 25 (3)
    • Dec 24 (33)
    • Dec 23 (1)
    • Dec 22 (3)
    • Dec 21 (11)
    • Dec 20 (21)
    • Dec 19 (32)
    • Dec 18 (32)
    • Dec 17 (50)
    • Dec 16 (1)
    • Dec 15 (3)
    • Dec 14 (25)
    • Dec 13 (24)
    • Dec 12 (3)
    • Dec 11 (6)
    • Dec 09 (1)
    • Dec 08 (2)
    • Dec 07 (2)
    • Dec 06 (3)
    • Dec 05 (3)
    • Dec 04 (4)
    • Dec 03 (21)