QuickTime zero-day bug threatens Macs, PCs | CNET News.com
For more info click on above link
update A newly disclosed security vulnerability in Apple Computer’s QuickTime software could put both Macs and Windows PCs at risk of cyberattacks, experts have warned.
The publication on Monday of the vulnerability and detailed attack code kicks off the “Month of the Apple Bugs” project, which promises to feature a new Apple software bug each day in January.
The QuickTime vulnerability relates to how the media player software handles the Real Time Streaming Protocol, or RTSP, according to an advisory published on the Month of the Apple Bugs Web site. An attacker could create a special RTSP string in a rigged QuickTime file that would cause a buffer overflow, according to the advisory.
