Language Selection

English French German Italian Portuguese Spanish

Microsoft warns of software flaws in Windows

Filed under
Microsoft

Microsoft Corp. warned users on Tuesday of three new security flaws in its Windows and Word software. and issued patches to fix the flaws, which could allow attackers to take over a computer system.

All three of the "critical"-rated security patches could potentially allow an attacker to take control of a personal computer and use it to steal data or launch other attacks, said Stephen Toulouse, a manager at Microsoft's Security Response Center.

"The key thing is really that we want to make people understand the risk with these flaws and that they enable automatic updates," said Toulouse, referring to a feature in Windows that downloads and installs the software patches automatically.

Two of the flaws are related to imaging technology used by Windows, which could potentially allow an attacker to take control of a system simply by having the user view a digital image that contains software code that exploits the flaw, which could be installed on a computer without the user's knowledge.

"Simply by viewing one of these malicious images you can become infected with anything from adware and spyware to any other suspicious code," said Oliver Friedrichs, senior manager at Symantec Corp.'s Security Response Center.

Full Story.

Remember

When XP was announced they were bragging on how secure it was. hahahahahahahahaha slaps knee...

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Citizens call on Dortmund to use free software

Four citizens of the German city of Dortmund have started a citizens’ initiative, asking the city council to seriously consider the use of free and open source software. “The city needs to recognise free software as a topic in the public interest”, the DO-FOSS initiators write. Read more

NVIDIA Tegra DRM Driver Supports Atomic Mode-Setting In Linux 3.20

The latest work landing in the DRM-Next code-base for the Linux 3.20 kernel merge window is the Tegra DRM driver updates. The Tegra DRM driver is primarily designed to support the Tegra 4 and older SoCs while the Tegra K1 and newer is supported by the Nouveau DRM driver due to the graphics core now being common with their mainline desktop architecture. The Tegra K1's GK20A graphics core is derived directly from Kepler while the brand new Tegra X1 is derived from Maxwell. Regardless, the Tegra DRM driver continues to be actively developed by NVIDIA stakeholders. Read more

LibreOffice 4.4 the beautiful

We are very close to release LibreOffice 4.4 and I thought I’d share my thoughts on the work that has been put into this new branch and what the general idea is about it. LibreOffice 4.4 is unusual; as a major release you may expect some important underlying change in its architecture, or the inclusion of a set of major features. The 4.4 does include several important features and improvements, most notably for Impress and the much forgotten HTML editor (the comprehensive release notes may be found here). But the most important details are not to be found in this area. If you want to understand where the 4.4 branch is headed, I think it is useful to keep two fundamental trends in mind. Read more

Embedded Linux Conference hijacked by drones

The Embedded Linux Conference + Android Builders Summit on Mar. 23-25 in San Jose is about “Drones, Things, and Automobiles,” but drones get the most love. Maybe it’s just our imagination, but the Linux Foundation’s Embedded Linux Conference seems to be getting more interesting than ever. The program increasingly reflects new opportunities for Linux in areas such as drones, robots, automotive computers, IoT gizmos, 3D sensing, modular phones, and much more. For those of you worried that ELC North America is skimping on the basics as it explores the more colorful sides of Linux, rest your mind at ease. There are still plenty of sessions on booting, trace analysis, NAND support, PHY frameworks, power management, defragmenting, systemd, device tree, and toolchain. Geeks still rule! Read more