AfterDawn: Tech news
AfterDawn > News > New Quicktime vulnerability allows malicious attack

New Quicktime vulnerability allows malicious attack

Written by Dave Horvath @ 02 Jan 2007 10:34 User comments (6)

New Quicktime vulnerability allows malicious attack A newly discovered vulnerability in Apple's Quicktime application could allow your computer to be open to specific attacks. Currently unpatched, this vulnerability appears to effect version 7.1.3.100 for the Windows client and is reported to effect the Macintosh OSX version as well.
The vulnerability uses a flaw in the RTSP (Real Time Streaming Protocol) handling part of the code. If a user were to retrieve a streaming video that contained more than 256 bytes in the "src" portion of the URL, this would then compromise the machine. A successful attack then allows malicious code to be processed on the user's computer. No word yet on a patch.

Source:
Secunia

<75 million PS3 units sold by 2010? >IGA Europe boss says in-game ads help developers retain IP
Previous Next  

6 user comments

12.1.2007 10:52
rav009
Send private message to this user
Senior Member

<---- Updates his security software and hopes for the best until a patch is out.

22.1.2007 11:09
halfhere
Send private message to this user
Member

looks likes macs won't be "virus free" now

32.1.2007 12:53
CiDaemon
Send private message to this user
Member

Just because a vulnerability exists, that doesn't mean that virus coders will jump on it. Why write viruses that only effect 3% of the population? Until malicious coders feel that Apple computers make up a large enough population that it would be worth it, no one will bother.

42.1.2007 16:23
akaangus
Send private message to this user
Member

"Until malicious coders feel that Apple computers make up a large enough population that it would be worth it, no one will bother."

How many iTunes users are out there? Millions I'm sure. That's how many people and more this exploit will affect.

Although this is not a system virus, macs are not quite relatively virus "free", there has always been Mac office exploits out there. I think there was another last week, as well as Java and Flash exploits that have always been around and can still affect macs. Remember in the old SE days the renaming of the Hard Drive ".sony"?

I am a linux user and only have QT on Wine through CrossOver so this doesn't really affect me anyways.

(edited for grammar)

This message has been edited since its posting. Latest edit was made on 02 Jan 2007 @ 4:25

52.1.2007 19:21
gogochar
Inactive

Quote:
looks likes macs won't be "virus free" now
Macs have always had viruses. It's just that they are built better than Windows.

62.1.2007 20:59
CiDaemon
Send private message to this user
Member

"How many iTunes users are out there? Millions I'm sure. That's how many people and more this exploit will affect. " The exploit is within Quicktime, not iTunes. Granted, they install together, but few use QT; iTunes is the real draw. There are plenty of iTunes users out there, but that's not what I said. Remember that I said Apple computers, not Apple software. There are plenty of hacks/viruses/etc. that exploit apple software-but only when it's released for windows. I never said this exploit wouldn't be used by people writing malicious code on a PC. I said no one will bother exploiting it for Mac.

Comments have been disabled for this article.

Latest news

VLC hits milestone: over 5 billion downloads VLC hits milestone: over 5 billion downloads (16 Mar 2024 4:31)
VLC Media Player, the versatile video-software powerhouse, has achieved a remarkable feat: it has been downloaded over 5 billion times.
2 user comments
Sideloading apps to Android gets easier, as Google settles its lawsuit Sideloading apps to Android gets easier, as Google settles its lawsuit (19 Dec 2023 11:09)
Google settled its lawsuit in September 2023, and one of the settlement terms was that the way applications are installed on Android from outside the Google Play Store must become simpler. In the future, installing APK files will be easier.
8 user comments
Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets (06 Jun 2023 9:19)
Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
Neato, the robot vacuum company, ends its operations Neato, the robot vacuum company, ends its operations (02 May 2023 3:38)
Neato Robotics has ceased its operations. American robot vacuum pioneer founded in 2005 has finally called it quits and company will cease its operations and sales. Only a skeleton crew will remain who will keep the servers running until 2028.
5 user comments
How to Send Messages to Yourself on WhatsApp How to Send Messages to Yourself on WhatsApp (20 Mar 2023 1:25)
The world's most popular messaging platform, Meta-owned WhatsApp has enabled sending messages to yourself. While at first, this might seem like an odd feature, it can be very useful in a lot of situations. ....
18 user comments

Reviews

Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets
Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner
Samsung's Jet Bot 90 AI+ is a top-class robot vacuum cleaner that can avoid obstacles and empty its own dust container. Here we review the product.
1 user comment
Samsung Jet Bot 80+ review - excellent robot vacuum cleaner Samsung Jet Bot 80+ review - excellent robot vacuum cleaner
We review Samsung's Jet Bot 80+ robot vacuum cleaner over a period of three months.
1 user comment

Guides

Guide: Phone battery drains quickly - how to fix (iPhone / Android) Guide: Phone battery drains quickly - how to fix (iPhone / Android)
In this guide, we go through the most typical reasons for rapid battery drain with phones, and look at potential reasons or solutions.
Windows 11: Check if TPM is enabled on your computer Windows 11: Check if TPM is enabled on your computer
In this short guide we will look at how you can check the status of Trusted Platform Module (TPM) on your PC ahead of the coming launch of Windows 11.
What IP rating for dust and water resistance means What IP rating for dust and water resistance means
An IP classification (such as IP68) is given to mobile phones, Bluetooth speakers, and other devices, but what do these classifications mean?
1 user comment
Guide: Is Your Wi-Fi Sluggish or Slow? Here's How to Fix Guide: Is Your Wi-Fi Sluggish or Slow? Here's How to Fix
Do you have problems with you Wi-Fi? Slow connection or is it cutting off constantly? This guide aims to remedy these problems.
1 user comment
HOWTO: Boot Android device into Safe Mode HOWTO: Boot Android device into Safe Mode
Are you having trouble with your Android device? If you find that your device has become sluggish, is freezing, takes too long to boot or any of a host of other performance concerns, you may want to boot into Safe Mode.

News archive

Sections:

Follow us:

© 1999-2024 AfterDawn Oy. All rights reserved
Back to Top ⇧
AfterDawn is powered by Powered by UpCloud