The Mac Observer

Skip navigational links

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Symantec: QuickTime Flaw Poses Security Threat

Symantec: QuickTime Flaw Poses Security Threat

by , 8:50 AM EST, November 26th, 2007

The security and virus protection software company Symantec is warning that Apple's QuickTime Player application may be open to malicious attacks. According to the company, both QuickTime 7.2 and QuickTime 7.3 are vulnerable to attacks that could lead to denial of service conditions or the execution of unauthorized code on the user's PC.

Symantec claims the threat stems from the way QuickTime Player handles RTSP Response headers. A specially-crafted header could create a buffer overflow because QuickTime apparently does not properly bounds-check incoming data.

The company did not state if this is a Windows-only problem, or if Mac OS X users are at risk, too. Since an attacker could use this flaw to remotely install applications without user consent, however, this is most likely a bigger threat to Windows users because Microsoft's operating systems are routinely the targets of malware and spyware attacks.

Recent Headlines - Updated January 30th

Fri,5:40 PM
The Unofficial Apple Weblog Will Shut Down February 3rd
5:18 PM
Peri Duo Case for iPhone Marries Speaker, Battery, and Wi-Fi Audio
4:50 PM
Repatriation Tax Bill Holds Promise, but Faces Uphill Battle
4:32 PM
Microsoft Brings Outlook to iPhone and iPad
2:51 PM
Enter to Win a Pair of Wireless Beats Studio Headphones
1:09 PM
TMO Daily Observations 2015-01-30: Samsung’s Smartphone Numbers, Congress Wants More Corporate Cash
11:09 AM
FiftyThree’s Pencil Stylus for iPad goes Gold
9:48 AM
How to Enable the iTunes Notification Center Widget in OS X Yosemite
9:05 AM
iTunes gets OS X Yosemite Notification Widget
Thu,6:59 PM
Apple Tied Samsung for Global Smartphone Units in Q4
6:14 PM
Wall Street Continues Apple Love Fest as $AAPL Closes at $118.90
5:34 PM
ZeroLemon SolarJuice 20,000mAh Portable Charger: $49.99
  • __________
  • Buy Stuff, Support TMO!
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!