Security Forces Windows Journal Exit

Wednesday, September 28, 2016 @ 12:09 PM gHale

Microsoft removed the Windows Journal application from its operating systems because of several vulnerabilities that can end up exploited through specially crafted Journal files.

Windows Journal is a note-taking application available in Windows versions from XP Tablet PC Edition through Windows 10. Notes and drawings created with the app are saved in .jnt files.

Microsoft Issues Monthly Patches
Way to Bypass Windows UAC
Microsoft August Security Update
Windows 10 UAC Bypass

Over the past few years, researchers from various companies discovered denial-of-service (DoS) and remote code execution vulnerabilities in Windows Journal.

The most recent issue came into Microsoft last month by Fortinet researcher Honggang Ren. The flaw identified by the researcher is a heap overflow that can cause the application to crash.

Microsoft has not released a patch for the vulnerability found by the Fortinet researcher, Instead, it decided to remove the component altogether. The update that removes Journal from Windows 7, 8, 8.1 and 10 is KB3161102.

The company said customers could migrate to OneNote, but users who depend on Journal can install it separately after they apply KB3161102. Those who want to continue using the app will be shown a security alert whenever they attempt to open Journal Note (JNT) or Journal Template (JTP) files.