An update for QuickTime was released yesterday that addresses 9 vulnerabilities that could lead to remote code execution or application termination. These vulnerabilities were caused by memory corruption issues in QuickTime that would allow attackers to craft malicious movie files that could lead to unexpected application termination or arbitrary code execution. The reported vulnerabilities fixed by this update are CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090, CVE-2015-7091, CVE-2015-7092, and CVE-2015-7117.

The QuickTime 7.7.9 update resolves these vulnerabilities through improved memory handling and is currently available for Windows Vista and Windows 7. All QuickTime users should upgrade to 7.7.9 immediately.

tines

Break down IAM silos like Bitpanda, KnowBe4, and PathAI

Broken IAM isn't just an IT problem - the impact ripples across your whole business.

This practical guide covers why traditional IAM practices fail to keep up with modern demands, examples of what "good" IAM looks like, and a simple checklist for building a scalable strategy.

Related Articles:

MongoDB warns admins to patch severe vulnerability immediately

FBI and CISA warn of state hackers attacking Fortinet FortiOS servers

Critical RCE flaw impacts over 115,000 WatchGuard firewalls

New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock

Hackers exploit newly patched Fortinet auth bypass flaws