Adobe advises Windows users who depend on the Creative Cloud software to not uninstall the vulnerable QuickTime software, even if it has many critical vulnerabilities. Unfortunately, Apple decided to end support for QuickTime for Windows and now, millions of users aren’t aware of the consequences of removing the QuickTime software from their systems.
At the beginning of April, security specialist Trend Micro has released two advisories in which he explained that there are two new critical vulnerabilities that affect QuickTime for Microsoft Windows and that Apple will no longer issue security updates for the product on this platform. So, since the security vulnerabilities haven’t been patched, this made United States Computer Emergency Readiness Team to alert users about this problem, emphasizing that computers are vulnerable to malicious attacks and that hackers could take advantage of the QuickTime vulnerabilities in order to gain access to affected systems.
But removing QuickTime from Windows PCs will cause problems for Adobe’s Creative Cloud. “Unfortunately, there are some codecs which remain dependent on QuickTime being installed on Windows, most notably Apple ProRes. We know how common this format is in many workflows, and we continue to work hard to improve this situation, but have no estimated timeframe for native decode currently,” has explained The Creative Cloud Team on Adobe’s official blog.
The developers have added that the most used QuickTime formats that would be affected by the removal of the QuickTime software include “Animation (import and export), DNxHD/HR (export) as would workflows where growing QuickTime files are being used (although we strongly advise using MXF for this wherever possible).”
Unfortunately, Adobe’s Flash Player has vulnerabilities as well, and in 2015, it was the number 1 target for cyberattackers. According to the latest Global Threat Intelligence Report, last year, all of the top ten vulnerabilities targeted by exploit kits were related to Flash Player.