Apple Patches QuickTime Vulnerability

Apple has released version 7.0.4 of QuickTime to resolve several vulnerabilities that could be exploited to provoke denial of service or execute arbitrary code on affected systems.

The security problems are related with buffer overflows when processing graphic and multimedia files. An attacker could cause arbitrary code to be executed when viewing GIG, TIFF, TGA or QTIF files or specially crafted multimedia files.

Users of QuickTime on Windows 2000, Windows XP, Mac OS X (version 10.3.9 and later) are advised to install the update provided by Apple, which can be downloaded from: http://www.apple.com/quicktime/download/standalone.html

More information about the vulnerabilities and the update are available in the Apple advisory at: http://docs.info.apple.com/article.html?artnum=303101