The Channel logo


By | John Leyden 4th October 2007 11:05

Apple patches Windows QuickTime bug

Look before you link

Windows users of QuickTime, Apple's popular media player software, need to apply an update following the discovery of a serious security bug.

The vulnerability allows hackers to inject malicious code onto vulnerable systems providing users are tricked into opening a maliciously-constructed QTL (QuickTime Link) file. These files could be hosted on websites and disguised as links to movie clips or smut.

Apple published an update on Wednesday for QuickTime 7.2 on Windows Vista and XP SP2 that fixes the flaw. Users of QuickTime for Mac OS X are immune to the bug.

In a security notice, Apple explains the bug stems from flaws in the way Windows versions of QuickTime handle URLs in the qtnext field of QTL files. The fix involves improving the handling of these URLs. ®

comment icon Read 8 comments on this article alert Send corrections


Frank Jennings

What do you do? Use manual typwriters or live in a Scottish croft? Our man advises
A rusty petrol pump at an abandoned gas station. Pic by Silvia B. Jakiello via shutterstock

Trevor Pott

Among other things, Active Directory needs an overhaul
Baby looks taken aback/shocked/affronted. Photo by Shutterstock

Kat Hall

Plans for 2 million FTTP connections in next four years 'not enough'
Microsoft CEO Satya Nadella


League of gentlemen poster - Tubbs and Edward at the local shop. Copyright BBC
One reselling man tells his tale of woe