A critical hole in Apple Computer Inc.'s QuickTime media player has been identified and is waiting on a patch from the vendor. The vulnerability rated at "high severity" by eEye Digital Security -- the company that discovered it -- enables malicious code to be run on someone's machine "with little user interaction". The hole exists across all versions of QuickTime and is present in the software's default settings, increasing the risk of the hole being used by hackers.
News source: InfoWorld