1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Apple kills QuickTime for Windows, two vulnerabilities announced

Discussion in 'CSO' started by RSS, Apr 15, 2016.

  1. RSS

    RSS New Member Member

    On Thursday, Trend Micro announced that Apple would no longer provide security updates to QuickTime on the Windows platform.

    This status update via Apple comes on the same day that ZDI disclosed two vulnerabilities in the multimedia tool, which if exploited could lead to remote code execution. The vulnerabilities are heap corruption flaws that require users to visit a malicious webpage, making them perfect for drive-by-downloads or Phishing.

    "We’re not aware of any active attacks against these vulnerabilities currently. But the only way to protect your Windows systems from potential attacks against these or other vulnerabilities in Apple QuickTime now is to uninstall it," Trend Micro's Christopher Budd wrote on the company blog.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page