QuickTime patched

Apple issued a new version of its QuickTime video player for Windows to address a critical vulnerability that could allow cybercriminals to execute arbitrary code on an affected system.

QuickTime 7.6.7 resolves a stack buffer overflow vulnerability in QuickTime's error logging process, according to Apple's advisory. Because of the flaw, viewing a maliciously crafted movie file could lead to unexpected application termination or arbitrary code execution. The flaw impacts Windows 7, Vista, and XP SP 2 and 3. The issue does not affect Mac OS X systems.

During the week, Apple also issued updates for its iOS mobile operating system to fix a vulnerability widely being used to jailbreak the latest iPhone. The updated operating system versions are iOS 4.0.2 for iPhone and iPod Touch devices, and iOS 3.2.2 for iPad devices.

Source: SC Magazine.