PostHeaderIcon Microsoft’s Patch Tuesday Update Squashes 19-Year-Old Windows Bug




Windows 95 SetupA critical bug went unaddressed since Windows 95

The second Tuesday of every month is known as Patch Tuesday for Windows users, and if you didn’t install yesterday’s batch of security updates, there’s a good reason why you might want to put it on your short-term list of things to do. One of the patches in yesterday’s Tuesday roundup addresses a critical bug in Windows that went unnoticed for 19 years and is present in every version of the OS from Windows 95 on up.

A security researcher for IBM discovered the bug, which an attacker use can use for drive-by attacks to remotely run code and take over a victim’s PC. The vulnerability also allows a remote attacker to sidestep the Enhanced Protected Mode (EPM) sandbox in Internet Explorer 11, as well as the Enhanced Mitigation Experience Toolkit (EMET) anti-exploitation tool Microsoft offers for free, the researcher says.

The bug affects Windows Server platforms as well. It’s been compared to Heartbleed in potential severity, and though it doesn’t appear it’s been exploited in the wild, nor does a proof-of-concept exist, now that it’s been made public, there could be attacks on unpatched systems.

Follow Paul on Google+, Twitter, and Facebook

Similar Posts:

The In-Content Ad Leader Buy and Sell text links Health and Beauty Store

Article Source: The Only Yard For The Internet Junkie
If you like all this stuff here then you can buy me a pack of cigarettes.

Comments are closed.

Free premium templates and themes
Add to Technorati Favorites
Free PageRank Display
Categories
Archives
Our Partners
Related Links
Resources Link Directory Professional Web Design Template