Check your QuickTime / iTunes

[mechBgon]

F-Secure's blog mentions there's an update for QuickTime and/or iTunes to fix security vulnerabilities.

Malware/exploit creators will try to use vulnerabilities in popular software to do Bad Stuff? such as installing spyware/adware that earns them a pay-per-install commission, keystroke loggers that nab your eBay/PayPal/WoW/banking log-ins, etc. QuickTime has had its share of their attention before, so this is software you want to keep up-to-date (or uninstall it, if you don't actually use it).

According to F-Secure, if you have QuickTime without iTunes, you must manually update to QuickTime 7.2. If you do use iTunes, then just install iTunes 7.3.1 and you'll get QuickTime 7.2 as well. Apple Downloads for Mac & PC.


Obligatory mention of the Secunia online checkup to help you fix known vulnerabilities

 

[Lemon law]

I don't know about anyone else, but I am long past sick and tired of having to upgrade the same damn software red flagged on Secunia on a monthly basis. And when you deal with many of these programs they have another commonality in being total bloatware. A giant pain for me because I am still stuck on dial up----and these 40 MB file severely impact my ability to use the internet while they download.---and I have to worry about my computer and my wife's computer

Right now the worst offenders seems to be---------at least when I check with Secunia.

1. Sun Java

2. Adobe reader and its Adobe flashplayer.

3. Apple Quicktime player.

In my case, I replaced the Adobe readers with the foxit reader quite some time ago, but my wife stubbornly wants to retain the Adobe reader. But at least the Adobe folks have gotten the clue and have their updates set up as small downloads--rather than forcing users to replace the whole thing like Sun Java still does. But Sun Java has no real competitors or alternatives---and both Apple Quick time and the Adobe reader have no such monopoly.

But I got the news that Apple Quicktime had a new update this morning---when its updater popped up asking to download something huge---I had already replaced the Apple
Quicktime player on my computer---and after using the Apple Quicktime player for years and years on my wife's computer---I made the immediate decision---I don't care what my wifes says---Apple is fired and will no longer be on her computer either---and I simply am not going to go through this monthly security update cycle anymore with apple.

But being the honest type---I felt I owed Apple an explanation---and I spent quite some time searching for an email address so I could give apple my feedback. And I sure did not find a single address---and I guess a company who is unwilling to even have a channel open to listen to what people want---will only get the message by the pitter patter of many feet running away from them.

And adobe flash player is also on my skating on very thin ice list---every one of them seem insecure and they are a bitch to remove.

I somewhat hope the remedy for some of this is to complain, complain, and complain until these jerks get the message.