Recently my own anti-virus software attacked an removed a .dll within the installed path of QuickTime Player. This caused me a good deal of concern. I assumed at first that the anti-virus software was being over zealous. Today I was trying to remove the QuickTime Player and thought I would simply uninstall and reinstall a new version. This is where we all start laughing out loud.

Well no big deal I thought, just go trash all the keys. I had no idea just how many keys were assoicated to this software. Go Apple! So after about an half hour of trashing the keys I decided I would look into the problem before I reinstall. I was abit taken in by the topic I was exploring here. Seems when it comes to Apple everyone acts like no negative comments can be made. Personally I have the solution to this problem. Remove it untill apple decides to get it right. I am quickly reminded of the Sony Deal. Are companies actually no longer responsible for setting people up to Remote Code Execution?

eEye Security has posted these short bits on their site. EEYEB-20051031 | EEYEB-20051117a | EEYEB-20051117b

Researchers at eEye Digital Security have taken a bite out of two popular Apple Computer Inc. products, flagging two critical vulnerabilities in the iTunes and QuickTime applications.

The flaws, which put millions of Windows users at risk of code execution attacks, remain unpatched.

Steve Manzuik, security product manager on eEye's research team, said the newest version of iTunes, which was released by Apple earlier this month, contains the vulnerability.

eEye, of Aliso Viejo, Calif., has posted two brief notices on its Web page for upcoming advisories warning that the flaws carry a "high risk" label. "Full Article"