Unpatched QuickTime Vulnerability Exploited - MacRumors
Skip to Content

Unpatched QuickTime Vulnerability Exploited

A recent vulnerability in Apple's QuickTime software is reportedly being successfully exploited on the internet, according to security research vendor Symantec.

The vulnerability affects recent versions of QuickTime, including 7.2 and 7.3, and remains unpatched by Apple. The vulnerability lies in improper handling of RTSP headers which can lead to a buffer overflow where an attacker can execute their own code. Symantec rates the vulnerability as "High" criticality.

Now, Symantec reports (via Macworld) that the vulnerability is being exploited in the wild. Both known exploits involve redirection from the intended web page to a server that uses the vulnerability to load code onto the victim's machine.

Initially, the attacks appear to be loading Windows executables, however Symantec warns that the vulnerability affects both Windows and Mac operating systems.

Symantec suggests the following for mitigating risk until a patch is released:

To protect systems from attack, Symantec recommended blocking access to affected sites. Filter outgoing access to 85.255.117.212, 85.255.117.213, 216.255.183.59, 69.50.190.135, 58.65.238.116, and 208.113.154.34. Additionally 2005-search.com, 1800-search.com, search-biz.org, and ourvoyeur.net should be filtered, it said, adding IT managers can also block outgoing TCP access to port 554.

Symantec also suggests that as a last step, users and IT managers consider uninstalling QuickTime until a patch is released.

Popular Stories

Waze logo

5 New Waze Features Rolling Out Now: Here Are All the Details

Monday July 13, 2026 3:42 am PDT by
Google today announced that Waze is getting a handful of new features, including some Gemini-powered personalization enhancements for Conversational Reporting. Conversational Reporting already uses Gemini when users report traffic incidents like slowdowns, but now you can use it to suggest map updates like road closures or outdated addresses. Saying something like "The road is closed here"...
apple silicon 1 feature

Apple Silicon is Taking an Unexpected Turn

Friday July 10, 2026 7:24 am PDT by
Ever since the Mac switched from Intel processors to Apple silicon starting in 2020, each generation of M-series chips has included higher-end Pro and Max variants. If a recent report proves to be accurate, though, that streak will be coming to an end. According to Bloomberg's Mark Gurman, Apple will be releasing a regular M6 chip, but it has no plans to offer higher-end M6 Pro and M6 Max...
Mac Pro Feature Teal

Apple's M7 Ultra Chip Designed to Match a 2019 Mac Pro Feat

Sunday July 12, 2026 8:53 am PDT by
Apple's M7 Ultra chip coming in 2028 is designed to support up to 1.5TB of unified memory, according to Bloomberg's Mark Gurman. However, whether such a configuration is offered may depend on the state of the ongoing memory chip shortage. In 2019, Apple released an Intel-based Mac Pro with up to 1.5TB RAM....