“Map out your future, but do it in pencil”
Jon Bon Jovi (1962), American singer
(On November 19, 1895, the ‘paper pencil’ was patented by Frederick E. Blaisdell).

Madrid, November 19, 2007 – A vulnerability has been reported in Apple Quicktime 7.2 that could be exploited by remote attackers to run arbitrary code.

The vulnerability occurs during video analysis and could cause a buffer overflow that could then be used by remote attackers to run arbitrary code with the permissions of the user who started the session. For this to happen, affected users must visit a specially crafted page designed to exploit this security flaw.

So far the flaw has only been detected in version 7.2 of the player. Users are therefore recommended to update to version 7.3 available from http://www.apple.com/support/downloads/