Apple released an update on Thursday for QuickTime that fixes several security issues in the application.
Fixed in QuickTime 7.3.1 is the application’s handling of Real Time Streaming Protocol (RTSP) headers that allowed arbitrary code execution. This security issue was found in late November and a proof-of-concept was published days after it was discovered.
The second issue involves fixes a bug that allowed a maliciously crafted QTL file that may lead to an unexpected application termination or arbitrary code execution.
The final security issues fixed in this update include multiple vulnerabilities in QuickTime’s Flash media handler. With this update, the Flash media handler in QuickTime is disabled except for a limited number of existing QuickTime movies that are known to be safe, according to Apple.
There are updates for Panther, Tiger, Leopard and Windows. Run software update in your operating system to get the update.