Apple issues 8 critical QuickTime security updates

Today Apple issued a security update for QuickTime 7.6. The update addresses flaws in both the Mac OS X and Windows XP and Vista implementations of the media viewer.
Specifically, the update fixes flaws CVE-2009-0001 through CVE-2009-0007.
The eight vulnerabilities within QuickTime can all be exploited to cause an unexpected application termination (denial of service) or [...]

January 21, 2009 Tags: Apple, arbitrary code execution, CVE, Defense in Depth, denial of service, QuickTime, Robert Vamosi, security update, vulnerablity, Windows Posted in: Apple, CVE, Defense in Depth, Mac OS X, QuckTime, Robert Vamosi, Windows, arbitrary code execution, denial of service, security update, vulnerability Comments Closed

I'm currently senior analyst at Mocana and author of When Gadgets Betray Us: The Dark Side of our Infatuation with New Technologies.
As an award-winning journalist with more than nine years of major news organization experience, I specialize in computer security, cybercrime, and computer viruses. Additional skills include editing, product review, on-camera talent, and podcast host.
I've written extensively about computer security, criminal hacking, incident response, vulnerability disclosure, data loss prevention, botnets, malware, virus writers, cross-site scripting attacks, and flaws within DNS.
I've received professional training in securing wireless networks, how attackers profile and exploit social engineering, and digital forensics and incident response.
E-mail: robvamosi "at" gmail dot com
Other pages
- Facebook
- LinkedIn
Defense in Depth blog
- The Best Hacking Film You Haven't Seen (Yet) July 20, 2012
  When was the last time you saw a good documentary about the origins of computer hacking? Well, Code 2600, a new documentary film from a young filmmaker named Jeremy Zerechak comes really close to being both accurate and entertaining while at the same time scaring the pants off anyone who doesn't yet know that computer data is eternal and can be stolen b […]
  Robert Vamosi
- Why Cybersecurity Should Focus on Failure March 4, 2011
  When a computer crashes, our instinct is to reboot and not to question its root cause. But perhaps we should try to understand our failures before trying to forget them. Paul Kocher, president and chief scientist, of Cryptography Research, Inc. in San Francisco thinks that computer security industry’s understanding of failure is still in its infancy, and tha […]
  Robert Vamosi
- Cybercriminals phone it in May 18, 2010
  The mobile phone provides additional customer security for financial transactions. Either by voice or text, banks–in real time–may question account holders about large transfers of funds, potentially stopping fraud in process. While attending a recent public-private summit for the financial services industry, however, I heard of several ways that criminals a […]
  Robert Vamosi

Robert Vamosi

Computer Security Writer

Apple issues 8 critical QuickTime security updates

Archives

Twitter

Other pages

Defense in Depth blog