Apple has released a major security update for the Windows versions of its QuickTime media player.
The company said that the QuickTime 7.7.2 update would address some 17 security vulnerabilities in QuickTime for Windows 7, Vista and Windows XP SP2 or later.
Among the issues addressed in the update are flaws which could allow an attacker to remotely execute code on a target system. Among the vulnerable QuickTime components are tools which handle movie files, MP4 content, and web pages.
Each of the flaws can be triggered by tricking a user into viewing a specially-crafted media file or web page.
Much of the credit for the research was given to HP’s TippingPoint security initiative. Apple cited researchers affiliated with the program in discovering 14 of the 17 patched security issues.
For users running the OS X version of QuickTime, Apple’s release should cause little to no new concern. Many of the listed vulnerabilities were not applicable to OS X, while a number of others were addressed in Apple’s recent OS X Lion 10.7.3 release and OS X10.6 security update.
Users can obtain the security update through Apple’s Software Update tool or by downloading the latest version of QuickTime from the company.
Apple’s security release comes one week to the day after Microsoft posted its monthly security update. The Patch Tuesday release included critical fixes for Windows, Word and the Silverlight platform.