Your forum username:
Do you already have an account?
Forgot your password?
  • Log in or Sign up


    Welcome to Sky User - The Unofficial Support Forum for everything Sky! - Proudly helping over 65k members.


    Advertisement

    Results 1 to 10 of 10

    Apple just caused a MAJOR headache for Windows users

    This is a discussion on Apple just caused a MAJOR headache for Windows users within the General Computing and Internet forums, part of the Community channel category; Apple just caused a MAJOR headache for Windows users | Tech | Life & Style | Daily Express WINDOWS users ...

    1. #1
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Q Hub ER110
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,200
      Thanks
      842
      Thanked 2,223 Times in 2,092 Posts

      Apple just caused a MAJOR headache for Windows users

      Apple just caused a MAJOR headache for Windows users | Tech | Life & Style | Daily Express
      WINDOWS users have been told to uninstall Apple's QuickTime app from their machines by the US Department of Homeland Security.

      Windows users have been warned not to use Apple's QuickTime video player app.

      Apple is no longer supporting the Windows version of the software, which means any security vulnerabilities or bugs will not be fixed.

      Computers running QuickTime for Windows will continue to work after support ends, so PC users can continue to use the app to play their favourite videos.

      But the US Department of Homeland Security has warned against keeping the app installed after two new vulnerabilities were unearthed in the QuickTime for Windows code.

      The US government agency says "the only mitigation" is to uninstall the software entirely, or else PC users risk "loss of confidentiality, integrity, or availability of data, as well as damage to system resources or business assets."

      The news comes as one of Apple's main rivals has beaten the Cupertino firm to its next major smartphone innovation – some five months before the upcoming iPhone 7 release.

      Online security experts Trend Micro said there is no evidence that either of these vulnerabilities in QuickTime for Windows have been successfully exploited in an attack.

      But since neither vulnerability will be fixed by a patch from Apple, it could invite malicious attacks from now on.

      Apple has remained quiet about its plans for QuickTime for Windows, but the iPhone manufacturer reportedly told Trend Micro that “the product would be deprecated on Windows and the vendor would publish removal instructions for users.”

      However Apple has yet to update its website to reflect this change.

      Given that Apple's web plugin for QuickTime on Windows was disabled by default earlier this year and the US firm has never updated the video player to become a fully-fledged Windows 8 or Windows 10 app, the news isn't that surprising.

      And for those worried, iTunes on Windows no longer requires that QuickTime is installed to run correctly.

      None of the flaws above affect QuickTime for Mac so OS X users can carry on using the default video player without worry.


    2. Advertisement
    3. #2
      BurnIT's Avatar
      BurnIT is offline Sky User Member
      Exchange: 01827
      Broadband ISP: Sky Broadband Unlimited
      Router: Sagem F@ST 2504n
      Sky TV: Sky+HD box
      Join Date
      Mar 2012
      Location
      Polesworth
      Posts
      242
      Thanks
      5
      Thanked 3 Times in 3 Posts

      Re: Apple just caused a MAJOR headache for Windows users

      I haven't used it for ages anyway.
      VLC seems to cheat somehow though other stuff like Calibre seem to use some QT stuff and I seem to have quite a few horrible Language support files called qt_xx that must have been left behind.

      That is a pet hate of mine that programs do NOT remove files they have installed when they are removed. And they cannot argue that the files might be used by another program in this case with such specific file names.

    4. #3
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Q Hub ER110
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,200
      Thanks
      842
      Thanked 2,223 Times in 2,092 Posts

      Re: Apple just caused a MAJOR headache for Windows users

      Playing stuff locally I far prefer VLC too.

      However there are many website geared up to use QuickTime and even more programmes too.

      This will effectively kill off all those programmes and force web designers to dump the product in favour of another.

      Sky Fibre Unlimited Pro: Connected at 80,000 kbps / 20,000 kbps
      Previous ADSL2+ Speed 19999 kbps 1153 kbps, Line Attenuation 17.5 db 6.9 db, Noise Margin 7.5 dB 8.7 dB
      Speedtest: 17.15MB/s 0.97Mb/s Ping 31 ms

    5. #4
      BurnIT's Avatar
      BurnIT is offline Sky User Member
      Exchange: 01827
      Broadband ISP: Sky Broadband Unlimited
      Router: Sagem F@ST 2504n
      Sky TV: Sky+HD box
      Join Date
      Mar 2012
      Location
      Polesworth
      Posts
      242
      Thanks
      5
      Thanked 3 Times in 3 Posts

      Re: Apple just caused a MAJOR headache for Windows users

      Don't you mean the file format MOV rather than the program.
      The big real reason that it is used is because it is the default animation format for Macs and they dominate the film and marketing industries especially in the US.

    6. #5
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Q Hub ER110
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,200
      Thanks
      842
      Thanked 2,223 Times in 2,092 Posts

      Re: Apple just caused a MAJOR headache for Windows users

      With the rise of YouTube, I guess less sites now need to host their own videos, but I guess it would be MOV files.

      As for software, I used to use Starry Night years ago. I haven't for a long time though. It required that you have QuickTime installed in order to view the stars. There are many other programmes which also require QuickTime.

      Sky Fibre Unlimited Pro: Connected at 80,000 kbps / 20,000 kbps
      Previous ADSL2+ Speed 19999 kbps 1153 kbps, Line Attenuation 17.5 db 6.9 db, Noise Margin 7.5 dB 8.7 dB
      Speedtest: 17.15MB/s 0.97Mb/s Ping 31 ms

    7. #6
      davews's Avatar
      davews is offline Sky User Member
      Exchange:
      Broadband ISP: Sky Broadband Unlimited
      Router: Non Sky Router
      Sky TV: none
      Join Date
      May 2013
      Posts
      59
      Thanks
      0
      Thanked 5 Times in 5 Posts

      Re: Apple just caused a MAJOR headache for Windows users

      The VLC browser plugin does not seem to support .MOV even though you can play downloaded .MOV videos in VLC itself. I have Quicktime Alternative installed and its quicktime plugin will play them - it is not clear whether the alleged vulnerability extends to QTAlternative, but that in itself has not been updated for several years.

    8. #7
      JPL's Avatar
      JPL
      JPL is offline Sky User Member
      Exchange: Brookwood
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Q Hub ER110
      Sky TV: Sky Q Silver
      Join Date
      Sep 2008
      Posts
      286
      Thanks
      1
      Thanked 9 Times in 9 Posts

      Re: Apple just caused a MAJOR headache for Windows users

      This means the end of one of my more important applications, the DVD-ROM Guide to British Birds, which uses QT for its videos. The program will not start in the absence of QT and so it is not even possible to use the database. (The individual videos can be played in VLC, but this is not much use as there are >1,700 of them and they have codes for filenames.)

      I asked the software producer about QT and they said

      "Many thanks for your email. There are currently no plans for a non-QuickTime version.".

      At least they replied, if only to say FO. Well, that's that then.
      JPL

    9. #8
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Q Hub ER110
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,200
      Thanks
      842
      Thanked 2,223 Times in 2,092 Posts

      Re: Apple just caused a MAJOR headache for Windows users

      Oh dear....

      Better delete QuickTime! US government warns software is vulnerable to hackers on Windows computers after Apple abandons security updates | Daily Mail Online
      Better delete QuickTime! US government warns video software is vulnerable to hackers on PCs after Apple abandons it


      • Apple has stopped providing security updates for QuickTime for Windows
      • Security experts say they have identified two vulnerabilities in the software
      • These could allow hackers to take control of PCs running QuickTime
      • The issue does not affect Apple Mac users running QuickTime on OS X


      Computer users have been urged to delete Apple's QuickTime media player from PCs running Windows after two vulnerabilities were found in the software.

      The Department of Homeland Security issued an alert after it emerged Apple will no longer be providing security updates for the video player.

      Cyber security experts at the Zero Day Initiative and Trend Micro said they had identified two vulnerabilities in QuickTime for Windows, that could allow hackers to take control of affected computers.

      A statement by the US Computer Security Readiness Team, which is part of the Department of Homeland Security, said the only solution was to uninstall QuickTime.

      It said: 'Computers running QuickTime for Windows will continue to work after support ends. However, using unsupported software may increase the risks from viruses and other security threats.

      'Potential negative consequences include loss of confidentiality, integrity, or availability of data, as well as damage to system resources or business assets.'
      Apple has not officially announced it is no longer supporting QuickTime on Windows, but the software is described as being a 'legacy' tool.

      While Apple has continued to update the software for Mac computers – they currently run QuickTime Player 10 – the software on Windows computers has fallen behind and the most up-to-date version is QuickTime Player 7.

      Apple has previously said that the software is expected to function properly anyway on more recent versions of Windows after Windows 7.

      QuickTime has previously come packaged with Apple's iTunes software and was required to play videos. It is not thought to be needed with current versions of iTunes.

      Trend Micro, a leading online security, has also issued an 'urgent call' for Windows users to delete QuickTime.

      It said users of computers Mac OSX did not need to worry about deleting the software as it would continue to be supported by Apple.

      But it said now Apple was not issuing security updates to the software on Windows computers, the only way to protect against an attack is to remove QuickTime completely.

      Christopher Budd, global threat communications at Trend Micro, said the two vulnerabilities it had detected in QuickTime for Windows exploited memory corruption in the affected computers.

      He said: 'One vulnerability occurs when an attacker can write data outside of an allocated heap buffer.

      'The other vulnerability occurs in the stco atom where by providing an invalid index, an attacker can write data outside of an allocated heap buffer.

      'Both vulnerabilities would require a user to visit a malicious web page or open a malicious file to exploit them.

      'And both vulnerabilities would execute code in the security context the QuickTime player, which in most cases would be that of the logged on user.'

      Apple has yet to comment on the issue.



    10. #9
      lettice's Avatar
      lettice is offline Sky User Member
      Exchange: 0.4 mile away and cabinet 350 yards
      Broadband ISP: Sky Broadband Superfast + Boost
      Router: Sky Broadband Hub SR203
      Sky TV: SkyQ2tbV2+mini
      Join Date
      Jun 2011
      Location
      England
      Posts
      2,036
      Thanks
      12
      Thanked 191 Times in 182 Posts

      Re: Apple just caused a MAJOR headache for Windows users

      Are people really still using quicktime.

      How to uninstall as detailed by Apple in their Mar 9, 2016 statement.
      Uninstall QuickTime 7 from Control Panel, as you would other programs on your PC. When following Microsoft's instructions for uninstalling programs, choose QuickTime 7 as the program to uninstall.
      Or use Windows Search to find “Uninstall QuickTime,” and start the process that way.
      There was a windows update back in January that removed the quicktime web plugin, that has been suspect for a while anyway.
      Many browsers made it an activate only method with a warning. Firefox made that change back in June 2014, other browsers did the same around the same time.
      Last edited by lettice; 18-04-16 at 04:23 PM.

    11. #10
      speedyrite's Avatar
      speedyrite is offline Sky User Member
      Exchange: MYHGT
      Broadband ISP: NOW Broadband
      Router: NOW TV Hub Two
      Sky TV: NOW TV
      Join Date
      Sep 2006
      Posts
      2,360
      Thanks
      382
      Thanked 160 Times in 154 Posts
      Blog Entries
      1

      Re: Apple just caused a MAJOR headache for Windows users

      Quote Originally Posted by Scubbie View Post
      Both vulnerabilities would require a user to visit a malicious web page or open a malicious file to exploit them.
      There's the real nub of the matter though, in my opinion.

      Most (if not all) software products - in support or not in support - *could* contain an as yet undiscovered security vulnerability that would be a problem in the right circumstances. And yet, despite all the warnings people still visit dodgy websites and click on attachments & download files of dubious origin!

      "There but for the grace of god" and all that....
      ++ speedyrite ... powered by NOW Broadband from June 2018 ++
      (previously powered by Sky Broadband from July 2007)

     

     

    Tags for this Thread

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •  
    SkyUser - Copyright © 2006-2020. SatDish and NewsreadeR | SkyUser is in no way affiliated with Sky Broadband / BSkyB
    RIPA NOTICE: NO CONSENT IS GIVEN FOR INTERCEPTION OF PAGE TRANSMISSION