Microsoft is giving users of its Windows operating system some tough love by sending out nine important patches on Valentine's Day.
Several of the new patches are for Windows 7, Microsoft's current flagship operating system, computer security firm Sophos said.
"Microsoft considers four of these critical ... assigning MS12-016, MS12-013, MS12-010 and MS12-008 a high rating," it said in a blog post.
It added this may be the first time Windows XP - which Microsoft is trying to "kill" - have fewer fixes released than Windows 7.
Sophos said MS12-008 is a kernel driver vulnerability that could lead to remote code execution, MS12-010 is a remote execution flaw in all versions of Internet Explorer, MS12-013 is a remote code execution vulnerability in the C run-time on Windows 7/Vista/2008 and MS12-016 is a remote code execution vulnerability in Silverlight and the .NET framework.
The other five are rated important. these include:
MS12-015, a remote code execution in Visio Viewer that is triggered by a malicious Visio file MS12-012, which could allow remote code execution when opening a .icc (color profile) file on Windows 2008 MS12-014, which could allow an attacker to remotely execute code by tricking a user into loading a media file on Windows XP SP3.
Kaspersky Labs, for its part, advised Windows users to patch their systems soonest.
"While the mass exploitation COTS did not include 0day targeting these vulnerabilities, the patches and general information are now public," it said.— TJD, GMA News
There are no comments yet