Apple depricates QuickTime for Windows support after vulnerabilities found by Trend Micro

Apple recently pulled support for QuickTime for Windows, after Trend Micro found two critical vulnerabilities in the software.

Published Date
18 - Apr - 2016
| Last Updated
18 - Apr - 2016
 
Apple depricates QuickTime for Windows support after vulnerabilit...

Apple pulled support for QuickTime for Windows recently, after two vulnerabilities, rated cricital were found. If you haven't uninstalled QuickTime for Windows yet, this may give you a good reason to do so.

Read the press release below

New Delhi, April 15, 2016 – Apple is pulling support for QuickTime for Windows on the heels of Trend Micro’s Zero Day Initiative’s discovery of two new, critical vulnerabilities affecting the software.

These are remote code execution vulnerabilities that could allow an attacker to gain control of the victim’s system. In an enterprise setting, this could mean opening the door for hackers to access larger, company-wide networks. 

This is for two reasons.

First, Apple is deprecating QuickTime for Microsoft Windows. They will no longer be issuing security updates for the product on the Windows Platform and recommend users uninstall it. Note that this does not apply to QuickTime on Mac OSX.

Second, our Zero Day Initiative has just released two advisories ZDI-16-241 and ZDI-16-242 detailing two new, critical vulnerabilities affecting QuickTime for Windows. These advisories are being released in accordance with the Zero Day Initiative’s Disclosure Policy for when a vendor does not issue a security patch for a disclosed vulnerability. And because Apple is no longer providing security updates for QuickTime on Windows, these vulnerabilities are never going to be patched.

We’re not aware of any active attacks against these vulnerabilities currently. But the only way to protect your Windows systems from potential attacks against these or other vulnerabilities in Apple QuickTime now is to uninstall it. In this regard, QuickTime for Windows now joins Microsoft Windows XP and Oracle Java 6 as software that is no longer being updated to fix vulnerabilities and subject to ever increasing risk as more and more unpatched vulnerabilities are found affecting it.

However, even with protections, ultimately the right answer is to follow Apple’s guidance and uninstall QuickTime for Windows. That is the only sure way to be protected against all current and future vulnerabilities in the product now that Apple is no longer providing security updates for it.