US – CERT (United States Computer Emergency Readiness Team) United States Department of Homeland Security announced new vulnerabilities and instructed Windows users to uninstall Apple QuickTime.
According to trend micro, Windows user might no longer provide with using Apple QuickTime. Due to the lack of security updates to Windows QuickTime users departing this software vulnerable to exploitation.
The two zero day initiative issued advisories vulnerabilities are ZDI – 16 – 241 and ZDI – 16 – 242. Not anymore, Apple providing security updates for QuickTime for Windows user.
Trend Micro stated to follow the Apple guidance and to uninstall QuickTime for Windows as soon as possible with two stated reasons:
At first, Apple is expressing disapproval of Microsoft Windows and will be no security updates on Windows platform and advice to uninstall it which does not apply to QuickTime on MAC OS. Secondly, Zero day initiative proclaimed two advisories are specifying critical vulnerabilities affecting QuickTime for Windows released in agreement with ZDI disclosure policy.
Impact for those who has not uninstalled QuickTime from Windows incorporates, admit remote aggressor to take control of affected systems. Computers operating unsubstantiated software exposed to elevate cyber security hazards, such as increased exposure to malicious attacks or electronic data loss.
Mitigation available is to uninstall QuickTime for Windows. Users can find how to install QuickTime instructions at support.apple.com/en-in/HT205771