Critical Security Alert: New Vulnerabilities Affect Apple QuickTime and iTunes on Apple and Microsoft Platforms. Immediate Action Required.
Tuesday, June 02, 2009
Apple Computer, Inc. has announced 10 critical new security vulnerabilities affecting Apple QuickTime media player and one vulnerability affecting Apple iTunes on both Apple Macintosh OS X and Microsoft Windows platforms.
CSSD recommends that all QuickTime users install the required security updates provided by Apple in QuickTime version 7.6.2 and that that all iTunes users install the required security updates provided by Apple in iTunes version 8.2 to correct these vulnerabilities. Both updates are available from Apple's Web site at http://www.apple.com/support/downloads/.
If the latest versions of QuickTime and iTunes are not installed, an attacker could exploit this vulnerability by enticing a user to open a maliciously crafted file. This may lead to unexpected program termination or arbitrary code execution.
Please contact the Technology Help Desk at 412 624-HELP [4357] if you have any questions or need assistance installing this update.