Language Selection

English French German Italian Portuguese Spanish

Microsoft warns of software flaws in Windows

Filed under
Microsoft

Microsoft Corp. warned users on Tuesday of three new security flaws in its Windows and Word software. and issued patches to fix the flaws, which could allow attackers to take over a computer system.

All three of the "critical"-rated security patches could potentially allow an attacker to take control of a personal computer and use it to steal data or launch other attacks, said Stephen Toulouse, a manager at Microsoft's Security Response Center.

"The key thing is really that we want to make people understand the risk with these flaws and that they enable automatic updates," said Toulouse, referring to a feature in Windows that downloads and installs the software patches automatically.

Two of the flaws are related to imaging technology used by Windows, which could potentially allow an attacker to take control of a system simply by having the user view a digital image that contains software code that exploits the flaw, which could be installed on a computer without the user's knowledge.

"Simply by viewing one of these malicious images you can become infected with anything from adware and spyware to any other suspicious code," said Oliver Friedrichs, senior manager at Symantec Corp.'s Security Response Center.

Full Story.

Remember

When XP was announced they were bragging on how secure it was. hahahahahahahahaha slaps knee...

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

OSS Leftovers

  • DataBasin - object inspector and updates
    First, the underlying DataBasinKit framework got an important update.
  • In-demand dev skills, understanding licensing, and more open source news
  • Higher ed systems expanding access to open-source materials
    Open-source learning technology is at the core of higher education for institutions that want to reach broader audiences with very strict ideas about how convenient learning should be. But developing these initiatives does not happen quickly or easily. It requires strong leadership in information technology, expertise to determine which solutions work best for a campus, and a financial commitment to making sure the technology is sustainable.
  • Proxmark Pro Proxmark3 Standalone Open Source RFID Tester (video)
    Rysc Corp has unveiled a new open source board in the form of the Proxmark Pro which now offers a true standalone client and RFID test instrument, check out the video below to learn more. The Proxmark Pro will feature an FPGA with 5 times the logic cells of the Proxmark3 and will remove the need to switch between HF and LF bit streams during operation, to use developers.
  • ErupteD Brings Vulkan To The D Programming Language
    The D programming language is just the latest to have support for Vulkan alongside C++, Rust (via Vulkano, if you missed that project), Go, and many other modern languages getting bindings for this Khronos Group high performance graphics API. Should you not be familiar with the D language, see Wikipedia.

Leftovers: Security