Apple has updated QuickTime and iPhoto to close security holes, reports vnunet.com.
The patches affect Mac OS X, Windows Vista and Windows XP users.
The QuickTime vulnerability would allow an attack through a Web page with an embedded streaming-media file. The iPhoto fix addresses a flaw that also would allow remote code execution. The attacker could create a malformed Photocast stream that could commander the system of everyone who tries to subscribe.
Adobe also has updated Adobe Reader to correct more than two dozen bugs, including several security holes, reports Washington Post blogger Brian Krebs.
He also notes that a plug-in to Microsoft's Internet Explorer that helps users upload photos to popular sites such as Facebook and MySpace contains several vulnerabilities, and the attack code is publicly available. He advises everyone who uses IE to employ the fix he explains, whether or not you go to those social-networking sites.
And ZDNet's Larry Dignan has the low-down on spammers that have created bots that target Windows Live Mail.