Currently using Apple Inc.’s multimedia software QuickTime for Windows within your business? You might want to reconsider: Trend Micro Inc.’s Zero Day Initiative’s discovery of two new, critical vulnerabilities affecting the software have been revealed as Apple ends support for the software.
In a detailed blog post, the IT security vendor outlines how critical vulnerabilities within the multimedia program can enable remote attackers to take over an IT system.
According to Christopher Budd, Trend Micro’s global threat communications manager, at present there are no active attacks exploiting these vulnerabilities. But in light of the fact Apple currently has no intention to release new security updates or patches for the Windows version of the software, it is recommended that enterprises look at uninstalling the software immediately.
Apple has released instructions for uninstalling the Windows program; while the program will continue to function as support ends, in general using unsupported software can potentially heighten the security risk from malware threats and viruses.
“QuickTime for Windows now joins Microsoft Windows XP and Oracle Java 6 as software that is no longer being updated to fix vulnerabilities and is therefore subject to ever increasing risk as more and more unpatched vulnerabilities are found affecting it,” according to Budd.
“Ultimately the right answer is to follow Apple’s guidance and uninstall QuickTime for Windows.”