also @ TechSpot: Building a Thin Mini-ITX PC: Small and Silent Performance

Vulnerability discovered in QuickTime

By Justin Mann

On January 11, 2008, 2:48 PM

A new vulnerability has been discovered in QuickTime, this one affecting even the most updated version of Apple's software. An independent security researcher posted proof-of-concept for the newly discovered flaw, which is present in both the Windows and Mac OS X builds.

The flaw is a result of how QuickTime handles invalid RTSP links. QuickTime will attempt to load a stream, and if it is unable, tries to load the same stream on the standard HTTP port - and the server may feed the client too much data and cause it to overflow. While so far nothing more than crashing the software has been proven, it is possible the flaw could lead to code execution. There's no word from Apple if they are working on a fix.

No tags on this story

Post a comment

Post a new comment

Social Login & Guest Posting TechSpot Members
Login here or sign up for free,
it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.
TechSpot on:

Most Popular

Trending Featured
More Trending Topics

Featured on Cases

Downloads and Drivers

Downloads   Drivers  

IObit Malware Fighter 2.0

Instantbird 1.4

BitTorrent Sync 1.0.134

Spybot - Search & Destroy 2.1.19

Google Chrome for Windows 27.0.1453.93

More Downloads

Latest Discussion

Modems - Routers 6 replies on Storage and Networking

Which is the best smartphone to buy? 23 replies on Mobile Computing

Screen saver stop working after installing Norton 8 replies on Software Apps

External hard drive not showing up on my MacBook Pro 29 replies on Storage and Networking

IPod Home Button Problems 11 replies on Other Hardware

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.