Most Popular Articles
- Prune Your Time Machine Backups Selectively (01 May 2008)
- Back to My Mac Leads to Recovery of Stolen Mac (10 May 2008)
- Time Machine Exposed! (08 May 2008)
- Hand Coding HTML Is Still in Vogue (25 Apr 2008)
Recent TidBITS Talk Discussions
- SSH failing to launch (3 messages)
- Monitor recommendation? (17 messages)
- OmniFocus: the interface is weak but the project is willing (22 messages)
- Goose Your Network to Gigabit Ethernet (23 messages)
In Take Control of Apple Mail in Leopard, by Joe Kissell, you'll learn how to make your email come and go as it should and easily find the email that you want to read. You'll also get help with Time Machine backups of email and much more. $10.
Published in TidBITS 869. Subscribe today to receive TidBITS in email every Monday.
- ExtraBITS Transitions to TidBITS Publishing System
- Parallels Desktop 2.0 Ships
- New Interviews with Adam and Joe
- 22 Million Mac OS X Users
- Macworld Expo Sessions Available for Download
- DealBITS Winners: Panergy's docXConverter Premium
- Security Hacker Returned to Life
- Lessons on Internet Surveys
- iConcertCal: Your Gig-Going Pal
- Picnik Duplicates iPhoto on the Web
- Mac OS X's Mouse Acceleration Problem
- Hot Topics in TidBITS Talk/05-Mar-07
| Recommend?QuickTime 7.1.5 Patches Panther, Tiger, XP, Vista Exploits
Apple has released an update to QuickTime for Mac OS X 10.3.9 and later, Windows XP, and Windows Vista. QuickTime 7.1.5 fixes numerous bugs, along with a flaw that could enable a maliciously crafted file to crash a program employing QuickTime or to allow arbitrary code execution - a phrase that often means there's a potential for an attacker to gain control of a computer or, at least, install malware.
Affected file types are broad: 3GP videos, MIDI files, native QuickTime movies, images in the venerable PICT file format, and QTIF files. Apple's notes indicate that a user need only open a maliciously crafted file, which means that Web sites could be used to launch attacks by embedding QuickTime documents in the right format.
There have been no reports of this flaw being exploited in the wild. A previous QuickTime flaw related to handling of JavaScript was exploited, notably on MySpace. Apple claims to have provided a temporary fix to MySpace, but it's unclear if that fix has made it into QuickTime 7.1.5.
WebCrossing Neighbors Creates Private Social NetworksCreate a complete social network with your company or group's
own look. Scalable, extensible and extremely customizable.
Take a guided tour today <http://www.webcrossing.com/tour>
Bookmark at: del.icio.us | digg | reddit | Slashdot