Researchers Discover Security Flaw in QuickTime

Today's Best Tech Deals

Picked by PCWorld's Editors

Top Deals On Great Products

Picked by Techconnect's Editors

Researchers at Intego have discovered a bug in Apple's recently released QuickTime 7.5.5 media software that could be used as a way to launch malicious attacks on unsuspecting users.

According to Intego, the problem is with the "quicktime type" tag and its inability to handle longs strings. Researchers say any application that uses QuickTime is susceptible to the flaw. This includes applications like iTunes, Safari, Firefox, or Mail, which displays media inline. Even Quick Look, Apple's Finder preview feature is at risk.

The flaw can be executed remotely or locally, according to researchers. Files containing the strings will only cause the affected application to crash, for now. However, malicious code could be added to those files in the future.

There doesn't appear to be any malicious files in the wild yet. Intego said they will continue to watch the bug to see if someone attempts to use it.

This story, "Researchers Discover Security Flaw in QuickTime" was originally published by Macworld.

Note: When you purchase something after clicking links in our articles, we may earn a small commission. Read our affiliate link policy for more details.
Shop Tech Products at Amazon