May 16th, 2012· Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. Multiple stack overflows existed in QuickTime's handling of TeXML files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A heap overflow existed in QuickTime's handling of text tracks.
· Opening a maliciously crafted MP4 encoded file may lead to an unexpected application termination or arbitrary code execution. An uninitialized memory access issue existed in the handling of MP4 encoded files.
· Viewing a maliciously crafted movie file during progressive download may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of audio sample tables
· Viewing a maliciously crafted MPEG file may lead to an unexpected application termination or arbitrary code execution. An integer overflow existed in the handling of MPEG files.
· Processing a maliciously crafted PNG image may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in the handling of PNG files
· Viewing a maliciously crafted QTVR movie file may lead to an unexpected application termination or arbitrary code execution. A signedness issue existed in the handling of QTVR movie files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A use after free issue existed in the handling of JPEG2000 encoded movie files.
· Viewing a maliciously crafted .pict file may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of .pict files.
· Opening a file in a maliciously crafted path may lead to an unexpected application termination or arbitrary code execution. A stack buffer overflow existed in QuickTime's handling of file paths
· Viewing a maliciously crafted MPEG file may lead to an unexpected application termination or arbitrary code execution. An integer underflow existed in QuickTime's handling of audio streams in MPEG files.
October 27th, 2011· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in QuickTime's handling of H.264 encoded movie files.
· Viewing a maliciously crafted movie file may lead to the disclosure of memory contents. An uninitialized memory access issue existed in QuickTime's handling of URL data handlers within movie files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. An implementation issue existed in QuickTime's handling of the atom hierarchy within a movie file
· An attacker in a privileged network position may inject script in the local domain when viewing template HTML. A cross-site scripting issue existed in QuickTime Player's "Save for Web" export. The template HTML files generated by this feature referenced a script file from a non-encrypted origin. An attacker in a privileged network position may be able to inject malicious scripts in the local domain if the user views a template file locally. This issue is addressed by removing the reference to an online script.
· Viewing a maliciously crafted FlashPix file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in QuickTime's handling of FlashPix files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow existed in QuickTime's handling of FLIC files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. Multiple memory corruption issues existed in QuickTime's handling of movie files.
· Viewing a maliciously crafted PICT file may lead to an unexpected application termination or arbitrary code execution. An integer overflow issue existed in the handling of PICT files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A signedness issue existed in the handling of font tables embedded in QuickTime movie files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A buffer overflow issue existed in the handling of FLC encoded movie files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. An integer overflow issue existed in the handling of JPEG2000 encoded movie files.
· Viewing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution. A memory corruption issue existed in the handling of TKHD atoms in QuickTime movie files.
August 4th, 2011QuickTime Player provides many exciting features:
· H.264 video support. Watch movies created with this state-of-the-art, standards-based codec which delivers exceptional-quality video at the lowest data rate possible.
· Live resize. Playback continues smoothly as you change the size of the QuickTime Player window.
· Zero-configuration streaming. Now QuickTime automatically determines the best Internet connection speed for your computer and adjusts it as necessary. And if a connection is lost during streaming, QuickTime automatically reconnects to the server.
· Surround sound. QuickTime Player can now play up to 24 channels of audio. With QuickTime 7, your PC, and surround speakers, you can enjoy the full effect of your surround sound movie or game.
· Improved playback controls. Use new playback controls to adjust settings for the best viewing experience. Easily change settings including jog shuttle, playback speed, bass, treble, and balance.
· Floating controls. Easily access functions like pause, play, fast-forward, and rewind while watching full-screen movies.
QuickTime 7 Pro:
QuickTime 7 Pro users enjoy not only all the great features in QuickTime Player, but also the following new QuickTime Pro capabilities:
· Create H.264 video. Create incredible-looking video for any use, from 3G (for mobile devices) to HD (high definition) and everything in between.
· Record audio. Capture audio for easy podcast creation or slideshow narration.
· Create video for iPhone, iPod and Apple TV. QuickTime Pro allows you to easily convert your existing movie collection into a format that can be played back on iPhone, iPod or Apple TV.
· Create surround audio. Create a rich multimedia experience by adding multichannel audio to your movie. QuickTime automatically mixes the audio to work with the speaker setup of each user.
· Concurrent exports. Export multiple files at once and continue with your next playback or editing task.
· Improved movie authoring. Editing tasks are much easier with new hot keys for in and out points. In addition, Movie Properties has been completely redesigned to facilitate simple and efficient movie authoring.
· AAC constant-quality mode. In addition to the existing constant bit rate mode, QuickTime 7 Pro allows you to create AAC audio files optimized for constant quality for a consistently high-quality listening experience.
· 3G streaming. Create 3G files for RTSP streaming that are interoperable with 3G streaming handsets and delivery architectures.
· Automate with VB Script. Automate your QuickTime workflow with native VB Script support in QuickTime 7. Developers can also use VB Script to access the new QuickTime Active X control for creating custom multimedia applications.
September 16th, 2010· Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution
· Description: An input validation issue exists in the QuickTime ActiveX control. An optional parameter '_Marshaled_pUnk' may be passed to the ActiveX control to specify an arbitrary integer that is later treated as a pointer. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. This issue is addressed by ignoring the '_Marshaled_pUnk' parameter.
· Impact: Viewing an image in a maliciously prepared directory may lead to arbitrary code execution
· Description: A path searching issue exists in QuickTime Picture Viewer. If an attacker places a maliciously crafted DLL in the same directory as an image file, opening the image file with QuickTime Picture Viewer may lead to arbitrary code execution. This issue is addressed by removing the current working directory from the DLL search path.
August 13th, 2010· Improves security and is recommended for all QuickTime 7 users on Windows.
March 31st, 2010· Includes changes that increase reliability, improve compatibility and address security, including general reliability improvements for iMovie
November 20th, 2009· Addresses a compatibility issue that prevented some applications from loading libraries required by QuickTime at startup.
· Corrects scaling issues with QuickTime movies embedded in webpages using custom scale attributes.
September 10th, 2009· Support for iTunes 9
· Improved audio device support on Windows Vista
November 5th, 2007· Support for iTunes 7.5
· Updated support for creating iPhone-compatible web content
· Updated JavaScript support in the QuickTime Web Plug-in
· Numerous bug fixes
· This release is recommended for all QuickTime 7 users
August 6th, 2007· Support for full screen viewing in QuickTime Player
· Updates to the H.264 codec
· Numerous bug fixes
Find us on Google+
