![]() In this respect, the non-patched version of the player may allow an attacker in a privileged network position to “inject malicious scripts in the local domain if the user views a template file locally.”Īpple removed the reference to an online script to address this issue. One patch in particular, available for Windows 7, Vista, XP SP2 or later, targets a cross-site scripting issue in QuickTime Player's "Save for Web" export.Ĭupertino explains that “The template HTML files generated by this feature referenced a script file from a non-encrypted origin.” Most patches target the core of the application which suffers from several bugs that may lead to an unexpected application termination or arbitrary code execution, or to the disclosure of memory contents. The link provided by Apple to the document listing all available security updates from Cupertino currently doesn’t work, but the company has posted the advisory that describes the security content of QuickTime 7.7.1 for Windows customers. #Apple quicktime 7.7 windows update#Apple recommends the update to all QuickTime 7 users on Windows XP (SP2 or later), Windows Vista, and Windows 7. QuickTime 7.7.1 targets Windows users only and it’s tasked with improving security. ![]() QuickTime is no longer bundled with iTunes whenever you wish to download Apple’s software on a Windows PC, but the Cupertino computer giant continues to make the player available as a separate download on its web site. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |