The Mac Observer

Skip navigational links

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Symantec: QuickTime Flaw Poses Security Threat

Symantec: QuickTime Flaw Poses Security Threat

by , 8:50 AM EST, November 26th, 2007

The security and virus protection software company Symantec is warning that Apple's QuickTime Player application may be open to malicious attacks. According to the company, both QuickTime 7.2 and QuickTime 7.3 are vulnerable to attacks that could lead to denial of service conditions or the execution of unauthorized code on the user's PC.

Symantec claims the threat stems from the way QuickTime Player handles RTSP Response headers. A specially-crafted header could create a buffer overflow because QuickTime apparently does not properly bounds-check incoming data.

The company did not state if this is a Windows-only problem, or if Mac OS X users are at risk, too. Since an attacker could use this flaw to remotely install applications without user consent, however, this is most likely a bigger threat to Windows users because Microsoft's operating systems are routinely the targets of malware and spyware attacks.

Recent Headlines - Updated July 6th

Mon,3:20 PM
3 Free iPhone Apps for Tracking the International Space Station
1:11 PM
TMO Daily Observations 2015-07-06: Dr. Mac’s Apple Music and Siri Problems
10:49 AM
Amazon Invents the New Black Friday: Prime Day
9:32 AM
How to Control Apple Music “For You” Playlists
Fri,6:36 PM
iCloud Music Library and DRM: Now with Slightly Less Disaster
9:38 AM
Apple Music - Or Some Streaming Service - Needs To Steal Discovery From Napster
8:00 AM
Happy U.S. Independence Day
1:38 AM
Apple Posts San Francisco Pride 2015 Video
Thu,8:51 PM
Mpow 3-Port Intelligent Car Charger: $13.99
8:44 PM
Apple Loses iBooks Antitrust Appeal in Split Decision
5:00 PM
Apple Earns a Black Eye for Apple Music
3:04 PM
Apple’s New Design Bosses Report to Tim Cook, not Jony Ive
  • __________
  • Buy Stuff, Support TMO!
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!