The Mac Observer

Skip navigational links

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Symantec: QuickTime Flaw Poses Security Threat

Symantec: QuickTime Flaw Poses Security Threat

by , 8:50 AM EST, November 26th, 2007

The security and virus protection software company Symantec is warning that Apple's QuickTime Player application may be open to malicious attacks. According to the company, both QuickTime 7.2 and QuickTime 7.3 are vulnerable to attacks that could lead to denial of service conditions or the execution of unauthorized code on the user's PC.

Symantec claims the threat stems from the way QuickTime Player handles RTSP Response headers. A specially-crafted header could create a buffer overflow because QuickTime apparently does not properly bounds-check incoming data.

The company did not state if this is a Windows-only problem, or if Mac OS X users are at risk, too. Since an attacker could use this flaw to remotely install applications without user consent, however, this is most likely a bigger threat to Windows users because Microsoft's operating systems are routinely the targets of malware and spyware attacks.

Recent Headlines - Updated May 30th

Wed,3:10 PM
How to Deauthorize All Devices in iTunes 12
Fri,5:00 PM
Swatch Plans to Release Internet-Connected Smartwatch Late Summer
4:50 PM
Hope Springs Eternal: a New Approach to OS X at WWDC
3:32 PM
Complete Arduino Starter Kit and Course Bundle: $75.99
1:45 PM
TMO Daily Observations 2015-05-29: The Big iCloud Photos Alternatives Show
12:45 PM
OS X: A Better Way to Handle Tabs in Apple’s Safari
11:21 AM
Skype for Mac Hotfix Released to fix Audio Selection Issues
11:19 AM
Apple’s Fix for the Messages Text String Crash
10:50 AM
Want Great Movie Deals? There’s an App for That
9:55 AM
Apple Buys Augmented Reality Company Metaio
9:14 AM
Use AppleScript To Create a Custom Evernote PDF Menu Action
8:40 AM
Safari: Turning Off Push Notifications
  • __________
  • Buy Stuff, Support TMO!
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!