Apple Patches QuickTime Flaw
5 Comments
Apple patched a QuickTime exploit Tuesday that was revealed by researchers who were investigating bugs within the Macintosh operating system and third-party products for it as part of the "Month of Apple Bugs" program. In total, 31 vulnerabilities will be listed. In this specific flaw, a specially crafted Web site could be used to cause a buffer overflow vulnerability in order to execute arbitrary code.
The fix would force QuickTime to perform additional validation of the RTSP URL, which should prevent the application from launching malicious ones. As of Wednesday, the QuickTime bug was the only issue patched by Apple itself.