Apple QuickTime on Windows stick serious security vulnerabilities, should be removed immediately
As if on your Windows computer you install Apple's QuickTime software, then it is time you should removed by security experts in the us have discovered many vulnerabilities can be exploited easily on this app and Apple also has confirmed is no longer support for QuickTime on Windows for a long time.
QuickTime is often "bonus" each time you install iTunes digital content processing tools (such as Adobe Creative tools) also requires QuickTime to play certain content. The "latest" version of QuickTime for Windows is QuickTime 7.7.9 and it was released on March 8, 2011. So is nearly 5 years and are not updated to the new version and Apple also doesn't intend to do this.
Until recently, the Zero Day Initiative parts belonging to Trend Micro has announced recommendations table 2 ZDI-07-241 and ZDI-07-242, which describes the details of two serious vulnerabilities impacted QuickTime on Windows. The recommendations are published by the public policy of Zero Day Initiative in cases where a producer does not give a software patch for a security vulnerability has been discovered. Because Apple no longer provides security updates to QuickTime on Windows so the holes will never be mended.
According to Trend Micro, currently not interfering in any attacks exploiting this vulnerability. The only way to protect your computer against the risk of attack through the loopholes of QuickTime is uninstalled this software. As such, the QuickTime along with Windows XP and Java 6 is the software has no longer been updated to patch the security hole and faced with the risk of security attacks are very high.
Followed the move on, a report has just been published by quick response Teams security computer network US-CERT in The Homeland Security had warned to all users who are using QuickTime on Windows operating systems, and requested immediate removal of this software by Apple has discontinued development and there will be no more security updates are released.
Dodi Glenn – Vice President of security at PC Pitstop said: "2 this vulnerability is considered the vulnerabilities can ' exploit to execute malicious code from a distance '. This means an attacker can lead example a victim to click on a link or visit a website and hack into their computer from a distance. Although we have yet to see offensive operations through 2 this vulnerability but said the experience Toolkit exploit vulnerabilities will soon be developed and sold on the black market. "
Statement from US-CERT also stressed: "QuickTime on Windows will still work even though the end is supported. However, the use of a software no longer supported may increase the risk of sticking a virus as well as other security threats. Bad consequence may be lost or damaged security data system resources and other business assets. Currently minimise solution still is to uninstall QuickTime. "
Sanjay Rannath-Director of product management Department of security Barracuda explains: "Apple has the right to discontinue the product development of the company and this can be done in a manner with the least risk for the user. Unfortunately, QuickTime has been used quite popular and Apple simply discontinued support without notice nor overcome the security problems persist in causing the increased security risk. "
Fellow, Cris Thomas-strategists from Tenable Network Security security company said: "not only Apple, many other companies also often discontinued support of their products. QuickTime for Windows has existed since the early 1990 's to today and I think this is also the software that runs on the first Windows Apple released. However, since the features were many other software in the past years, the discontinuation of support is completely understandable. In fact, most users will not need to QuickTime. iTunes also no longer depend on QuickTime and other video content on the web now works with HTML5. "
The user can simply uninstall QuickTime but for software development firms which depend on QuickTime then this problem becomes more complex. All applications require QuickTime will need to re-edit and this change will take a lot of time, the impact on the performance and brings many risks. Adobe has also just published a document explaining why removing QuickTime can adversely affect Adobe Creative Cloud users.
However, besides the bad news, the good news is that recovery may also have 1 year, Apple has QuickTime version 7.7.9 editing with the removal of the plugin on your browser as a way of limiting the ability of an attacker to automatically intervene through QuickTime flaw system. So hackers will have to convince the victim to download a file and ask the victim to open that file using QuickTime. This behavior can be stopped if the user set the security layer, such as the software