In April 2016, Apple discontinued support for the Windows version of QuickTime. There will be no further updates or security patches for QuickTime on Windows. Apple also confirmed security gaps in QuickTime for Windows which have been discovered previously.
Since the video engine of older Cubase/Nuendo versions requires QuickTime, this concerns many Steinberg software users, too.
The actual risk of security gaps in QuickTime for Windows is unknown. According to reports, an attack through the security gaps in QuickTime for Windows is possible, but not highly likely. It also seems to require user actions like clicking internet links or opening malicious files. In any case, the risk increases constantly due to the missing security patches.
Regardless of Cubase/Nuendo, QuickTime constitutes a security risk on Windows systems. Therefore, Apple recommends to uninstall QuickTime via Control Panel > Programs and Features.
Impact of uninstalling QuickTime on Cubase/Nuendo
It depends on the Cubase/Nuendo version and your requirements if uninstalling QuickTime for Windows affects your installation of Cubase/Nuendo.
You can safely uninstall QuickTime for Windows, if...
- you are using a current Cubase/Nuendo version. A new Quicktime independent video engine has been introduced with Cubase 9.0.30 (all versions: Pro, Artist, Elements, AI, LE) and Nuendo 8. Read more...
- you are generally not using videos in Cubase/Nuendo. Uninstalling QuickTime only disables the video engine of older Cubase/Nuendo versions. Apart from that, Cubase/Nuendo installations will remain fully functional.
- If you are working with videos in Cubase/Nuendo, you should preferably use a current program version - Cubase 9.0.30 and Nuendo 8 or later - that does not require QuickTime. Read more... If required, updates for Cubase and Nuendo can be found in our online shop.
- If you are working with an older Cubase/Nuendo version and depend on the video functions, you should work on an Apple computer under macOS (Mac OS X), if possible. Apart from updating to the latest Cubase/Nuendo version, this is the easiest and safest solution.
- If updating is not an option for you right now and you need to work with videos in older Cubase/Nuendo videos on a Windows machine, you should minimise the security risk by limiting the QuickTime installation to necessary components. Read on to find out how this can be achieved. However, only uninstalling QuickTime will remove the potential threat completely!
Please note that Steinberg cannot be held responsible for any damages caused by installing and/or using QuickTime!
If you already have installed QuickTime for Windows, please uninstall the Software via Control Panel > Programs and Features. Before you start, close all programs, particularly internet browsers.
Download QuickTime for Windows from Apple's website:
After having started the downloaded QuickTime installter, switch to 'Custom' mode instead of 'Typical'.
In the list of components, click on 'QuickTime Player' to open the options menu.
In the newly opened menu select the entry 'Entire feature will be unavailable' marked with a red cross.
All components except for 'QuickTime Essentials' should now be marked with a red cross and thus be disabled.
Click on [Next] and follow the instructions to complete the limited installation.
Even if the QuickTime installer is not asking, restart your system.
Now you have a QuickTime installation without QuickTime Player and the browser plug-in - which are the most vulnerable components.
In this way, the risk of an attack via the discovered security gaps in QuickTime for Windows has been reduced to the minimum.
However, videos containing malicious code still could do harm. Therefore you should only import video of verified origin in Cubase/Nuendo!
In general, security can also be increased by using a Windows user account that has no administrative permissions. In this case, Cubase/Nuendo must have been installed accordingly.