More cracks appear in Windows

Posted by tadelste on Jan 11, 2006 9:32 AM EDT
Reg Developer; By John Leyden
Mail this story
Print this story

Never-ending patch cycle

Microsoft released two more critical patches on Tuesday - days after it released an emergency fix for a critical WMF vulnerability that has been exploited by hackers and virus writers. The two latest updates - which, unlike the WMF patch, came out as part of Microsoft's regular Patch Tuesday update cycle - fix a flaw in the way Microsoft Windows processes embedded web fonts (MS06-002) and a Microsoft Outlook and Microsoft Exchange Transport Neutral Encapsulation Format (TNEF) decoding vulnerability (MS06-003).

Exploitation of these vulnerabilities creates a means for hackers to execute arbitrary code or cause a denial of service on a vulnerable system. The earlier WMF vulnerability remains the easiest to exploit, but security vendors warn that the embedded web-forms flaw also caries a computer worm risk.

Full Story

  Nav
» Read more about: Story Type: News Story

« Return to the newswire homepage

Subject Topic Starter Replies Views Last Post
Does Windows Patch Without Permission? henke54 0 1,035 Jan 11, 2006 9:10 PM

You cannot post until you login.