Blog

Critical Vulnerabilities Affecting QuickTime for Windows

used with permission from Norton by Symantec, by Christina Schubert

Two zero-day vulnerabilities showed up recently that could spell trouble for Apple users who use QuickTime for Windows.

The ZDI-16-241 and ZDI-16-242 vulnerabilities allow an attacker to run malware or malicious code remotely. It gains access to a computer when a user is tricked into visiting a malicious webpage or opens a malicious file.

This vulnerability is critical because Apple is no longer providing security updates for QuickTime on Windows. Since these vulnerabilities are never going to be patched, the best line of defense is to uninstall QuickTime for Windows immediately.

Since the primary mode of entry for these vulnerabilities is through phishing, users are advised to be cautious before clicking on a suspicious link or opening emails from unknown sources. It is best to keep all your software and operating systems up-to-date and keep your devices safe with a reliable security suite like Norton Security.

There are times when it is not possible to remove Quicktime because important business applications are using it. If you’re unsure, contact ASIS and we can assist.



About the Author: