Apple fixes Windows Quicktime flaw

Patch doesn't affect Mac OS X systems, just Windows XP and Vista.

Apple today released security updates for the Windows version of Quicktime. The update is available from the Apple Downloads site.

The patch affects users of QuickTime 7.2 on Windows Vista, XP SP2, and addresses the vulnerability in CVE-2007-4673. Currently, viewing maliciously crafted Quicktime files may lead to arbitrary code execution. "A command injection issue exists in QuickTime's handling of URLs in the qtnext field in files with QTL content. By enticing a user to open a specially crafted file, an attacker may cause an application to be launched with controlled command line arguments, which may lead to arbitrary code execution," Apple describes.

Featured Video
6
This content is rated TV-MA, and is for viewers 18 years or older. Are you of age?
Sorry, you are not old enough to view this content.

Everything you can expect at Apple's Sept. 9th event

Apple is expected to throw the kitchen sink at us with new iPhones, iPads, a new Apple TV and MacBooks. We'll breakdown what you can expect to see.

by Brian Tong