AAPL Stock: 109.55 ( -0.83 )

Printed from

Apple security update fixes QuickTime flaw

updated 04:15 pm EST, Tue December 19, 2006

Security Update 2006-008

Apple today released Security Update 2006-008, which provides a fix for security issue in QuickTime for Java and Quartz Composer, an underlying graphics display software component of Apple's Mac OS X. The update, available now via the Software Update and the Web, is available for Mac OS X 10.4.8 Tiger systems only (both client and Server). The company said that the flaw could malicious websites to access private information without the users' consent or knowledge: "Java applets may use QuickTime for Java to obtain the images rendered on screen by embedded QuickTime objects and upload them to the originating web site. When this facility is used in conjunction with Quartz Composer, it becomes possible to capture images that may contain local information," Apple wrote in its security update. The update addresses the issue by disallowing Quartz Composer compositions in unsigned Java applets, but allow Quartz Composer compositions continue to function locally. The company said that applications and signed Java applets that utilize QuickTime and QuickTime for Java are unaffected. The same Mac OS X Tiger security update for PowerPC-based Macs is also separately available.

by MacNN Staff





Comments are closed.


Network Headlines

Follow us on Facebook


Most Popular


Recent Reviews

Polk Hinge Wireless headphones

Polk, a company well-established in the audio market, recently released a new set of headphones aimed at the lifestyle market. The Hin ...

Blue Yeti Studio

Despite being very familiar with Blue Microphones' lower-end products -- we've long recommended the company's Snowball line of mics ...

ZTE Spro 2 Smart Projector

Home theaters are becoming more and more accessible these days, but maybe you've been a bit wary about buying a home projector. And h ...


Most Commented