All the latest UK technology news, reviews and analysis
|
|
|
13 Jan 2010
Microsoft has released a single fix in the first of its 2010 monthly Patch Tuesday security updates.
The January update addresses a flaw in a component of Windows and Windows Server which, if exploited, could allow an attacker to remotely execute code on the targeted system.
The company explained that the flaw lies within the Windows components that handle Embedded OpenType Font packages. Researchers found that, by bundling attack code into a font package, an exploit could be performed to give the attacker control over the system.
While the vulnerable code is believed to be present in all supported versions of Windows, the targeted component is accessible only in Windows 2000.
As such, the flaw is being categorised as a 'critical' risk for Windows 2000 SP4 users, but is regarded only as a 'low-level' risk for XP, Vista, Windows 7, Server 2003 and Server 2008.
Microsoft also posted a warning to XP users regarding the Adobe Flash Player 6 component, advising users to upgrade the copy of Flash Player originally bundled with Windows XP in order to patch recently discovered vulnerabilities.
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
Orange and Intel talk us through the ins and outs of their San Diego smartphone
Connect with V3.co.uk
The wrong printers, for the wrong tasks on the wrong contracts
Who leads the BI pack and who should we be watching out for?
2nd & 3rd Line CRM Support Analyst / MS CRM Systsems...
Digital Insight Manager, Hertfordshire, £28,000. An...
Enterprise / Solutions Architect. Salary £60,000 - £90...
Business Intelligence Developer - Leeds. Salary £35,000...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?