Microsoft has released an emergency out-of-band patch for a critical flaw, affecting all supported versions of Windows.
The software giant said in an advisory Monday that the vulnerability, if exploited, could "allow remote code execution if a user opens a specially crafted document or visits an untrusted webpage that contains embedded OpenType fonts."
"An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights," the advisory added.
In other words, a previously undisclosed flaw in the way Windows handles certain fonts can allow a hacker to take over an entire machine.
Users running Windows Vista, Windows 7, 8, 8.1 and Windows RT are all affected,
http://www.zdnet.com/article/microsoft-releases-emergency-patch-for-critical-windows-flaw/
No comments:
Post a Comment