Yet Another Quicktime Vuln

I’m starting to question how much we really need Quicktime. We deployed 7.1.5 last week. As luck would have it, word of a new Quicktime vulnerability came out this week.

The attack successfully used in last week’s CanSecWest competition exploits a Java-based flaw in QuickTime and affects all browsers on systems with the multimedia software installed, possibly including Windows