Featured Article: TMO Quick Tip - Stickies: New Notes from Selections
Symantec: QuickTime Flaw Poses Security Threat
by , 8:50 AM EST, November 26th, 2007
The security and virus protection software company Symantec is warning that Apple's QuickTime Player application may be open to malicious attacks. According to the company, both QuickTime 7.2 and QuickTime 7.3 are vulnerable to attacks that could lead to denial of service conditions or the execution of unauthorized code on the user's PC.
Symantec claims the threat stems from the way QuickTime Player handles RTSP Response headers. A specially-crafted header could create a buffer overflow because QuickTime apparently does not properly bounds-check incoming data.
The company did not state if this is a Windows-only problem, or if Mac OS X users are at risk, too. Since an attacker could use this flaw to remotely install applications without user consent, however, this is most likely a bigger threat to Windows users because Microsoft's operating systems are routinely the targets of malware and spyware attacks.
Observer Comments
Mon Nov 26, 2007 12:56 pm Subject: Windows only
I read over on CNET that it is a Windows only exploit.
Speaking of computer security. Did you all catch 60 Minutes last night? Hackers got into the retailer TJX computer system via poor wireless security, the stores were using WEP. Millions of credit cards and other ID info was stolen, the hackers had access for over a year.
Recent Headlines - Updated Friday, May 9th, 2008
- Fri., 6:00 PM
- iPO Free on iTunes - Aussie UFOs, StrangeThings, Hometown Tales and More
- 5:30 PM
- StrangeCharm - Fewer Particles, More Debris ( Week of May 5)
- 4:05 PM
- MW: The New Rules for Buying a Mac
- 3:15 PM
- OpenOffice 3.0 beta Released for Mac OS X
- 1:30 PM
- Pogue: Time Capsule is So Simple, Just Ignore It
- 1:05 PM
- C|Net: Why Apple Should Build a Game Console
- 10:45 AM
- Hot Forum Topic - The iPhone's March Across the World
- 10:20 AM
- Mailplane 2 Beta Includes OmniFocus Support
- 9:45 AM
- iPodObserver - Apple Canada Offers $45 Credit in iPod Suit
- 9:05 AM
- Apple Settles Power Adapter Suit
- 8:05 AM
- Microsoft Dissolves Yahoo Proxy Board
- 7:30 AM
- TMO Quick Tip - Tracking Application Updates in Dashboard
The Mac Observer Reader Specials
- Download Typestyler, still the Ultimate Styling Tool for Internet, Print and Video Graphics. Works great in Classic with a Native OS X Version on the way. Free Tryout: www.typestyler.com
- Other World Computing: Power up your PowerMac G4! Make you trusty PowerMac G4 like new again with up to 2.0GHz Processor Power. G4/1.2GHz for $199, Dual 1.8GHz $498, & More Plug & Play for like new A-OK for OS 9 & OS X, etc.
NEW MacPro Memory 800Mhz With Apple Spec Heat Sink 2GB Kit $104 / 4GB Kit $184 / 8GB Kit $362 Click to Maximize your Macs...
Mac observers can now play Party Poker for Mac as well as Mac casino games by going to MacPokerOnline.com.For the latest Apple products use Ciao a comparison website to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate cell phones.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.
Western Digital 320GB SATA300 Scorpio 2.5-inch Notebook Hard Drive: $148.99 Delivered 
4-Pack Canon BCI-24 Compatible Inkjet Cartridge Combo: $7.29 Delivered 
10-Pack TDK Lightscribe 16X DVD+R Media: $19.99 Delivered 
It's Friday, time for the Amazon Friday Sale! 
J&R ComputerWorld's Weekend Sale - Save on TVs, Digital Cameras, Games & Tons More 
