-
Tips for becoming a good boxer - November 6, 2020
-
7 expert tips for making your hens night a memorable one - November 6, 2020
-
5 reasons to host your Christmas party on a cruise boat - November 6, 2020
-
What to do when you’re charged with a crime - November 6, 2020
-
Should you get one or multiple dogs? Here’s all you need to know - November 3, 2020
-
A Guide: How to Build Your Very Own Magic Mirror - February 14, 2019
-
Our Top Inspirational Baseball Stars - November 24, 2018
-
Five Tech Tools That Will Help You Turn Your Blog into a Business - November 24, 2018
-
How to Indulge on Vacation without Expanding Your Waist - November 9, 2018
-
5 Strategies for Businesses to Appeal to Today’s Increasingly Mobile-Crazed Customers - November 9, 2018
Microsoft has released a critical security update for all versions of Windows
Security firm FireEye has claimed the credit for finding the bug, explaining that it picked it up while trawling through documents released from the hack on the infamous Hacking Team operation.
Advertisement
Microsoft today disclosed a security vulnerability that could lead to remote code execution – someone taking unwanted control over a PC or server – affecting several versions of Windows.
Microsoft says there’s no evidence of the vulnerability being exploited as yet, but now its existence is out in the open, Windows users should update their software as soon as possible.
The relatively short period between the launch of Windows 10 on July 29 and the planned update will allow Microsoft to correct any major performance issues fairly quickly.
The Windows Adobe Type Manager Library “improperly handles” certain OpenType fonts, which trigger a remote code execution vulnerability.
When Hacking Team’s server was breached and gigabytes of the company’s internal data made public, it was bad news for everyone.
If you want to get a headstart on the upgrade process, you should “reserve” your download.
If you’ve got automatic updates enabled, the patch should come through automatically.
Microsoft says that it has information that the vulnerability and its exploitation are known in the wild, although it has not heard of any active exploits yet. The company last issued an emergency patch like this in November 2014. It already brought Windows 8.1 to the Surface RT and Surface 2, and a substantial update expected in September is meting swift compromise to the remaining user base. Microsoft delivers security patches every second Tuesday of the month (hence the name Patch Tuesday). The new operating system will feature new protective features and technology like Device Guard and Windows Hello, which is a new biometric security system.
Advertisement
There are multiple ways an attacker could exploit the vulnerability, mostly via social engineering.