All the latest UK technology news, reviews and analysis

Microsoft fixes Windows XP flaws as support cut-off draws near

14 Jan 2014
Microsoft will end support for XP on 8 April 2014

Microsoft has released fixes for an "important" vulnerability in its Windows XP operating system, just days after announcing it would pull support for its Security Essentials anti-malware tool from the platform.

The fix was released as a part of Microsoft's monthly Patch Tuesday update cycle. The Windows XP fix also relates to the company's Windows Server 2003. Microsoft's security blogger Dustin Childs confirmed the vulnerability has been targeted by a "limited" number of attacks.

"We have only seen this issue used in conjunction with a PDF exploit in targeted attacks and not on its own. This only impacts customers using Windows XP or Server 2003 as more recent Windows versions are not affected," said the security alert.

The cut-off date for Security Essentials support comes just before Microsoft fully ceases support for the decade-old Windows version. The end of support would mean XP users would no longer receive security updates for newly discovered threats. Research from NetMarketShare in December revealed that a third of Windows users are still running XP, despite the looming danger.

Microsoft also released fixes for "important" holes in its Office and Dynamics AX services. The vulnerabilities generally left Windows users open to privilege escalation attacks, though the Microsoft Dynamics AX flaw was listed as leaving Microsoft customers vulnerable to distributed denial of service (DDoS) attacks.

F-Secure security analyst Sean Sullivan told V3 none of the fixes are too serious, but predicted that a more robust Patch Tuesday will follow in the near future. "[This release] doesn't look like the kind of stuff that System Admins will need to stress too much over," he said.

"Next month could be busy, as April approaches. The limited number of patches this month could be a consequence of Christmas and the New Year holidays falling mid-week."

Persuading businesses to install new security patches as soon as they are able to has been an ongoing goal of the UK government and its Cyber Security Strategy. The Home Office listed installing new patches as a key way businesses can protect themselves from hackers in its newly launched Cyber Streetwise campaign.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Alastair Stevenson

Alastair has worked as a reporter covering security and mobile issues at V3 since March 2012. Before entering the field of journalism Alastair had worked in numerous industries as both a freelance copy writer and artist.

View Alastair's Google+ profile

More on Security
What do you think?
blog comments powered by Disqus

Work location poll - office, remote or home?

Where do you spend most time working on your primary work device?

Popular Threads

Powered by Disqus
LG G Flex 2 hands-on review

CES 2015: LG G Flex 2 video

A closer look at LG's latest curved-screen smartphone

Updating your subscription status Loading

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button

Beacon technology: what are the opportunities and how does the technology work?

This paper seeks to provide education and technical insight to beacons, in addition to providing insight to Apple's iBeacon specification


Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Software Developer - C# / C++ ( ASP.Net ) - Cambridge

Software Developer - C# / C++ ( ASP.Net ) Are you...

IT Project and Service Manager *Airport Systems* Heathrow

Project Manager, Service Manager, IT, Software PrinceII...

Senior Software Engineer in Test

About the job my client is looking to hire a Senior...

Contract Global Architect, software & global essential

Chief Global Architect, Contract, c £ 900 - 1100 per...
To send to more than one email address, simply separate each address with a comma.