Apple has released a QuickTime update , but this one’s only for Windows XP and Vista. Mac users are familiar with QuickTime, but may not realize that it is also part of iTunes on Windows: it’s what iTunes uses to play back audio and video. So while Mac users don’t need to worry, anyone who runs Windows on their Mac should make sure to get this update, which fixes:
A command injection issue exists in QuickTime’s handling of URLs in the qtnext field in files with QTL content. By enticing a user to open a specially crafted file, an attacker may cause an application to be launched with controlled command line arguments, which may lead to arbitrary code execution.
Don’t you just love the way they explain these security issues?
Note that, just in case, Intego Virus Barrier X4 can spot and stamp out this exploit. So if it does eventually have an effect on Macs, you’ll be safe.
