Apple has released a security update for QuickTime 7.2 for Windows.
About Security Update for QuickTime 7.2 for Windows
This update is recommended for all users and improves the security of QuickTime 7.2.
For detailed information on this update, please visit this website: http://www.info.apple.com/kbnum/n61798
The 7MB security update can be downloaded at Apple Support page
Apple KB 306560 wrote:Security Update for QuickTime 7.2
QuickTime
CVE-ID: CVE-2007-4673
Available for: QuickTime 7.2 on Windows Vista, XP SP2
Impact: Viewing a maliciously crafted QTL file may lead to arbitrary code execution
Description: A command injection issue exists in QuickTime's handling of URLs in the qtnext field in QTL files. By enticing a user to open a specially crafted QTL file, an attacker may cause an application to be launched with controlled command line arguments, which may lead to arbitrary code execution. This update addresses the issue through improved handling of URLs. This issue does not affect Mac OS X.
UserAgent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en-US; rv:1.8.1.7) Gecko/20070914 Firefox/2.0.0.7
