It is time to remove Apple's QuickTime from your computer
Digital System Support Services
Over the last several days numerous IT security sources have been advising Windows users to uninstall Apple QuickTime from their computers.
Tokyo based security firm Trend Micro disclosed two flaws in QuickTime that could let a malicious web page or email attachment hijack your computer.
When Trend advised Apple of the flaws, they were told that there are no plans to fix the problem, and that QuickTime for Windows has been "deprecated" (abandoned).
How to remove Quicktime in Windows 7
Open Programs and Features by clicking the Start button , then Control Panel, then clicking Programs and Features.
Select Quicktime 7 from the list, and then click Uninstall.
US-CERT, the United States Computer Emergency Readiness Team (a division of the Department of Homeland Security) has advised all PC users to uninstall QuickTime, saying...
Computer systems running unsupported software are exposed to elevated cybersecurity dangers, such as increased risks of malicious attacks or electronic data loss. Exploitation of QuickTime for Windows vulnerabilities could allow remote attackers to take control of affected systems.
Here's how Apple responded after being advised of the vulnerability
Apple states:
This vulnerability is being disclosed publicly without a patch because vendor indicates that the product is deprecated.
11/11/2015 - ZDI reported two vulnerabilities to Apple
11/11/2015 - The vendor acknowledged receipt of both reports
29/2/2016 - ZDI wrote to the vendor requesting a status update
8/3/2016 - The vendor replied, inviting ZDI to a call
9/3/2016 - ZDI joined a call with the vendor:
ZDI was advised that the product would be deprecated on Windows and the vendor would publish removal instructions for users.
ZDI advised the vendor that the cases would be 0-day.
24/3/2016 - ZDI notified the vendor of the intent to 0-day on or after April 13th
1/4/2016 - The vendor acknowledged and provided a link to their removal instructions
Vendor Response:
https://support.apple.com/HT205771
Disclosure Timeline
11/11/2015 - Vulnerability reported to vendor
14/4/2016 - Coordinated public release of advisory
Apple took five months to advise the public that their QuickTime product was compromised.
April 18th, 2016
Copyright © Digital System Support Services. All rights reserved.16 Nicholas Avenue, Glen Waverley, Victoria, Australia
Get Directions »
0412 504 181
john@johncrawford.com.au