Most of the articles you read on this topic will tell you to "Uninstall Quicktime now!" But what if your workflow still depends on Quicktime codecs?
Adobe has been working to diminish their dependency on Quicktime in their products but that hurdle has yet to be cleared. Many other video/audio/graphic applications also rely on Quicktime for transcoding, decoding, and encoding.
Most pro shops do not need to immediately uninstall Quicktime and cease using the application altogether as the rest of the internet is suggesting. These vulnerabilities have been around for some time now and we haven't seen much buzz until Apple outright refused to patch the software in the future for Windows products. That said, with all this attention, it's likely that we will see more exploits out there in the wild.
If you can steer away from Quicktime, you should. But if your workflow depends on it, alert your staff to the threat and encourage them to use safe browsing practices.
It also may be a good idea to remove just the Quicktime Player, as that's where the security risks exist, not in the codecs themselves. If you already have Quicktime for Windows installed, you could:
uninstall the software
do a custom install
disable all of the options except for "Quicktime Essentials," which includes the codecs you need to keep working.
We haven't had a chance to test this approach in professional workflows, but this link provides a rough walkthrough for Pro Tools users:
Comments are enabled in case you want to provide feedback on your experience, or if you have any questions!