Microsoft to issue critical security patch next week as infections rise


Microsoft to issue critical security patch next week as infections rise

Antony Savvas

Microsoft plans to issue a critical security patch next Tuesday that is designed to fix a graphics Windows flaw that came to light over the Christmas period.

The flaw allows attackers to take over a user’s machine by distributing specially crafted files from malicious websites.

The problem relates to the way Windows handles graphics in the Windows Metafile format (WMF). When a computer opens a maliciously crafted WMF file, the machine can be forced to execute arbitrary code.

Microsoft published its first security advisory on the problem on 28 December after receiving notification of the flaw the previous day.

This week, the company said it had developed a patch and was planning to release it next Tuesday (10 January) as part of its scheduled monthly patching cycle.

Some independent security researchers have publicised their own fix to the problem on the internet, but Microsoft has urged users to wait for the official patch next week.

However, security software companies are warning that despite the small chance of running into a malicious WMF file, the incidences of infection are steadily rising among users.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy