Microsoft has released the emergency fix for all the versions of the windows, in order to fix the critical Remote Code Execution vulnerability.
This security patch is issued by microsoft in windows operating system platform against the loop hole that allow the attacker's or hackers to execute the malicious code on your computer to take full control of the affected system.
The critical flaw (CVE-2015-2426), which affects all the supported versions of operating system, resides in the way Windows Adobe Type Manager Library handles specially crafted Microsoft's OpenType fonts.
If you system is exploited then the vulnerability allows hackers to execute the malicious code on the affected systems remotely, if any of the user open any crafted document or file or visit any of the untrusted webpage which contains embedded OpenType fonts.
"An attacker could then install programs; change, or delete data; or create new accounts with full user rights," Microsoft said in an advisory published Monday, releasing an Out-of-Band Patch to resolve the issue.
All versions of Microsoft Windows operating system including win vista, 7, 8, 8.1 and RT editions are all affected with this vulnerability along with the windows server 2008 and also it affects the windows 10 insider preview. The vulnerability of the exploitation is very high, so that is why all users are advised to update their system as soon as possible.
Security researchers Mateusz Jurczyk of Google Project Zero, and Genwei Jiang of FireEye were credited by Microsoft for finding this flaw.
No comments:
Post a Comment