The Mac Observer

Skip navigational links

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Symantec: QuickTime Flaw Poses Security Threat

Symantec: QuickTime Flaw Poses Security Threat

by , 8:50 AM EST, November 26th, 2007

The security and virus protection software company Symantec is warning that Apple's QuickTime Player application may be open to malicious attacks. According to the company, both QuickTime 7.2 and QuickTime 7.3 are vulnerable to attacks that could lead to denial of service conditions or the execution of unauthorized code on the user's PC.

Symantec claims the threat stems from the way QuickTime Player handles RTSP Response headers. A specially-crafted header could create a buffer overflow because QuickTime apparently does not properly bounds-check incoming data.

The company did not state if this is a Windows-only problem, or if Mac OS X users are at risk, too. Since an attacker could use this flaw to remotely install applications without user consent, however, this is most likely a bigger threat to Windows users because Microsoft's operating systems are routinely the targets of malware and spyware attacks.

Recent Headlines - Updated November 1st

Fri,6:58 PM
Pee-Wee Herman Stars in Avengers Trailer
6:34 PM
Trent Reznor on Working for Apple: ‘It’s Everything I Asked For’
5:50 PM
Last Chance for The Complete iOS 8 Course With Swift for $89
4:42 PM
MacTech Conference 2014: Talk to Kelly and Dave!
4:30 PM
Apple Wins the Old-fashioned Way: Outsmart the Competition
3:00 PM
Judge Rules Cops can Force You to Touch ID Unlock your iPhone
2:02 PM
iOS 8: Adding Fitness App Data to the Health App
1:16 PM
TMO Daily Observations: 2014-10-31
11:25 AM
How To Clean Up and Rebuild Apple Mail Data [Yosemite Update]
9:39 AM
Judge to Unseal GT Advanced Bankruptcy Filing Documents
8:45 AM
Yosemite: Maximizing Windows & the Green “Stoplight” Button
Thu,7:17 PM
Meijer, the CurrenctC/MCX Member Who Refuses to Block Apple Pay
  • __________
  • Buy Stuff, Support TMO!
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!