Microsoft issues temporary fix for critical Windows hole
2011-11-04 09:35 by Daniela Tags: Microsoft, malware
Microsoft has issued a temporary fix for a critical Windows vulnerability that is associated with the Duqu multi-vector network attack. The software giant said that if the Duqu exploit went unfixed, it could allow for "elevation of privilege" on affected computers, meaning attackers using the computer worm could take control of any unprotected Windows-based systems. "An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode," the Microsoft advisory warned. "The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. We are aware of targeted attacks that try to use the reported vulnerability; overall, we see low customer impact at this time. This vulnerability is related to the Duqu malware." "This means that within hours, anti-malware firms will roll out new signatures that detect and block attempts to exploit this vulnerability. Therefore, we encourage customers to ensure their antivirus software is up-to-date." Read more -here-
|