Homeland Security: Remove QuickTime for Windows Immediately
Posted by: Jon Ben-Mayor on 04/15/2016 08:08 AM
[
Comments
]
If you are one of the few that actually use Apple's QuickTime on your Windows PC then the Department of Homeland Security recommends that you remove it - now.
The DHS security bulletin comes from the US-CERT or United States Computer Emergency Readiness Team informing users that Apple is ending support for QuickTime for Windows with 2 new vulnerabilities being announced - Both vulnerabilities have a CVSS 2.0 score of 6.8.
For more details, please see:
http://zerodayinitiative.com/advisories/ZDI-16-241/
http://zerodayinitiative.com/advisories/ZDI-16-242/
Computers running QuickTime for Windows will continue to work after support ends. However, using unsupported software may increase the risks from viruses and other security threats. Potential negative consequences include the loss of confidentiality, integrity, or availability of data, as well as damage to system resources or business assets. The only mitigation available is to uninstall QuickTime for Windows.
Users can find instructions for uninstalling QuickTime for Windows on the Apple Uninstall QuickTime page.
These vulnerabilities are not found to be in the OS X version of QuickTime - so Mac users are currently exempt from these security alerts.
Sources: TrendMicro, DHS.
The DHS security bulletin comes from the US-CERT or United States Computer Emergency Readiness Team informing users that Apple is ending support for QuickTime for Windows with 2 new vulnerabilities being announced - Both vulnerabilities have a CVSS 2.0 score of 6.8. For more details, please see:
http://zerodayinitiative.com/advisories/ZDI-16-241/
http://zerodayinitiative.com/advisories/ZDI-16-242/
Computers running QuickTime for Windows will continue to work after support ends. However, using unsupported software may increase the risks from viruses and other security threats. Potential negative consequences include the loss of confidentiality, integrity, or availability of data, as well as damage to system resources or business assets. The only mitigation available is to uninstall QuickTime for Windows.
Users can find instructions for uninstalling QuickTime for Windows on the Apple Uninstall QuickTime page.
These vulnerabilities are not found to be in the OS X version of QuickTime - so Mac users are currently exempt from these security alerts.
Sources: TrendMicro, DHS.
Comments
