The Apple Core

Jason D. O'Grady & David Morgenstern
Home / News & Blogs / The Apple Core

Apple pushes security patches with QuickTime 7.5 update

By | June 11, 2008, 9:17am PDT

Apple late Tuesday released an update to QuickTime for Mac and Windows. The Version 7.5 release patches a number of holes that were open to malicious attacks.

Several of the patches fixed problems with handling PICT images, which could lead to arbitrary code execution. One of them was for the Windows version of QuickTime; the Mac version wasn’t exposed to this risk.

Another problem was with embedded URLs in QuickTime files.

Description: A URL handling issue exists in QuickTime’s handling of file: URLs. This may allow arbitrary applications and files to be launched when a user plays maliciously crafted QuickTime content in QuickTime Player. This update addresses the issue by revealing files in Finder or Windows Explorer rather than launching them.

In addition, the update fixes a bug with the handling AAC-encoded files. Apple said QuickTime will now perform additional validation of media files.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “The Apple Core”

Topics

Security, Apple QuickTime, Apple Inc., Digital Music, Digital Media, Personal Technology, Consumer Electronics, David Morgenstern

David Morgenstern has covered the Mac market and other technology segments for 20 years.

Disclosure

David Morgenstern

Freelance journalist/blogger David Morgenstern has nothing to disclose.

Biography

David Morgenstern

David Morgenstern has covered the Mac market and other technology segments for 20 years. In the recent past, he founded Ziff-Davis' Storage Supersite, served as news editor for Ziff Davis Internet and held several executive editorial positions at eWEEK. In the 1990s, David was editor of Ziff Davis' award-winning MacWEEK news publication as well as its successor title, eMediaWEEKly, which focused on multiplatform professional content creation. His byline can be found online and in print publications including CreativePro.com, Peachpit Press' Mac Bible and Popular Photography.

11
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Apple pushes security patches with QuickTime 7.5 update
tomlin21-24319035676893835085146735905770 11th Oct
What principle will you be applying inside your website ? I actually nfl jerseys similar to the style. Many thanks in your submit.
View in thread
0 Votes
+ -
Another QuickTime version, means yet another time I have to ignore iTunes..
PB_z 11th Jun 2008
Another month, another instance of having to re-"ignore selected update" for the iTunes+QuickTime bundle.... UGH!
0 Votes
+ -
Thanks: this is the right way to report it
Narr vi 11th Jun 2008
And eminently more sensible in its understanding of what you do with a very practical piece of software, whose wide capabilities and world-advancing breadth of abilities for its time, come to the point all coding does of needing renewal.

Should they replace it? What exactly there would be to replace is something Apple knows. The bulk is codecs, etc.. If the connectivity has risen to pass the fuzzer tests, or will soon, the what they have is fine. Otherwise that is the part that needs to be replaced, not some imagined 'monster' with a name QuickTime.

Regards,
Narr vi
0 Votes
+ -
RE: Apple pushes security patches with QuickTime 7.5 update
goordman 11th Jun 2008
I have Quicktime Pro. Whenever they come up with a new patch they want me to buy a new license key. I think that sucks not being able to get the update without having to purchase a new license.
0 Votes
+ -
purchase new license with every update?
kolvas Updated - 11th Jun 2008
surely you must be joking.
0 Votes
+ -
RE: Apple pushes security patches with QuickTime 7.5 update
Lerianis 11th Jun 2008
Anyone smart would simply get rid of Quicktime on their system. It is just too usafe anymore to be used in anyone's system, with the NUMEROUS code-execution problems they have found with it.
0 Votes
+ -
RE: Apple pushes security patches with QuickTime 7.5 update
freakyash 11th Jun 2008
Ill be ignoring this update too. iTunes + Nokia PC Suite on Vista 64 Bit = BSOD thanks to a conflict between Nokia's USB driver and Apple's CD Burning plugin.

I don't need the CD burning plugin but its no longer optional... I have to remove it by scraping it out of the registry after installation but before I reboot or ill end up stuck!
0 Votes
+ -
RE: Apple pushes security patches with QuickTime 7.5 update
oldskooldj Updated - 12th Jun 2008
It's time to dump Quicktime from your PC. The incessant attempts to download iTunes and now Safari have crossed the line. How is Apple, that vaunted icon of the computing counter-culture, any different than a malware pusher? Did you see the size of the new Quicktime? Almost 30 Megs!

VLC player works just fine and if it doesn't play a particular QT clip, then the clip probably isn't worth watching.

Good bye QT. You're outta here.
0 Votes
+ -
RE: Apple pushes security patches with QuickTime 7.5 update
phatkat 12th Jun 2008
I have QuickTime Pro also but correct me if I'm wrong, but I thought Apple on asking to purchase new licenses on major version updates (ie between QuickTime 6.0 and 7.0) and not minor ones (ie QuickTime 7.1.5 and 7.5).
0 Votes
+ -
RE: Apple pushes security patches with QuickTime 7.5 update
teknoz 9th Jul 2008
Anybody been to the Apple Support Forum site recently? QT 7.5
update may be causing choppy video and other problems on
some Macs.
0 Votes
+ -
RE: Apple pushes security patches with QuickTime 7.5 update
xiaoming3 15th Dec 2009
Chanel watches
Replica Rolex
Replica A Lange & Sohne Watch
Concord Fake
Replica Montblanc Watch
TAG Heuer Watches
Fake Seiko Watches
Calvin Klein Fake
Breguet Replica Watches
Patek Philippe Watches Replica
Concord Watches
Movado Watches
Wholesale Austria Jersey
Russia Soccer Jersey Wholesale
Replica La Galaxy Jersey
Greece Soccer Jersey Wholesale
Replica Denmark Jersey
USA Shirt
Feyenoord Shirt
Wholesale River Plate Jersey
Man UTD Jersey Wholesale
Marseille Jersey Wholesale
0 Votes
+ -
RE: Apple pushes security patches with QuickTime 7.5 update
tomlin21-24319035676893835085146735905770 11th Oct
What principle will you be applying inside your website ? I actually nfl jerseys similar to the style. Many thanks in your submit.

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix