Slashdot Mirror
Security Hole in Windows' QuickTime Player
Zonoprh writes "A Security Hole was found in QuickTime player that allows attackers to compromise a user's system with a malicious URL. The hole is fixed in QuickTime 6.1 available here. Until then, hold off on playing "unusually" enticing QT files."
QuickTime 6.1.1 is also available on software update. Seems to container mpeg 4 streaming bug fixes.
Since when do notices of security holes that have been fixed for months rate /. articles?
"The worst tyrannies were the ones where a governance required its own logic on every embedded node." - Vernor Vinge
WTF do you mean "extension to DOS"? You mean command line parameters (arguements)? Unix does the same thing. There are plenty of ways around using parameters under Windows, but they're more trouble to code for (IMO) for such a simple task, and not backward compatible - there is nothing wrong with the parameter method as long as idiot programms check their fucking buffers.
Opportunity knocks. Karma hunts you down.
Perhaps there should be a search topic titled "Security" which would check all sections and articles for known security issues...
http://slashdot.org/search.pl?topic=172
Or, ya know, we can just stick a huge fricken padlock right next to the slashdot logo...
--"It's Bradford Company, slash your last name, dot your first name"
Keep the Quicktime Player. Throw out your copy of Windows.