On April 14th news broke via Trend Micro security that Apple is deprecating support for QuickTime for Windows, despite the fact there are two critical vulnerabilities affecting the package, both of which were identified by Trend Micro under their Zero Day Initiative (ZDI), which will not be patched by Apple despite the fact information on both vulnerabilities, as specified in Trend Micro advisories ZDI-16-241 and ZDI-16-242 being passed to Apple in November 2015.
As a result of these vulnerabilities, which could leave Windows systems vulnerable to hijacking – although Trend Micro stress that there is no evidence so far of either being actively exploited – is to uninstall QuickTime for Windows (QuickTime for OSX is not affected).
The advice on uninstalling has most notably come from Trend Mirco, with the call being repeated across other on-line tech media, such as eWeek and The Register. Apple apparently opted to take the route of deprecating in March 2016 – but hasn’t really gone out of its way to really tell QuickTime for Windows users it is doing so, as ExtremeTech points out: the QuickTime for Windows landing page doesn’t reflect the status of the software, but simply references the “more secure” January update, while the Apple software update tool still pushed QuickTime at Windows users.
Obviously, the advisory is something all Windows users should heed. With or without the current ZDI vulnerabilities, the application has reached the end of its supported life. However, as Crap Mariner has been pointing out, there are still media systems which utilise QuickTime for streaming into Second Life, many within public cinemas across the grid. While it might be argued has to how widely such facilities are used, the Trend Micro advisory does heighten the need for in-world systems reliant on QuickTime to be updated / replaced.
5 thoughts on “QuickTime for Windows: “uninstall today””
I wonder if VLC could be used instead to play the MP4 content in world…
I think Chromium and HTML5 video is already shaping up to be a viable alternative.
CEF is the way forward – the issue at the moment is more as case that there is still a lot of in-world content that has not been replaced / updated to make use of it, much of it still utilising QT and Flash.
It may sound cruel to many, but that kind of technology progress keeps RL and SL economy moving, having to replace old technologies with new ones.
I see this problem as an opportunity to further implementation of HTML5 video in Second Life. The current push of implementing Chromium for HTML5 and WebGL is already ongoing and should only gain momentum. Yes, a lot of products will have to be deprecates, reprogrammed and repurchased, but this will only kindle some life into SL economy.
Comments are closed.