Skip to main content
  1. Home
  2. Computing
  3. News

Microsoft Patches Cover 3 Critical Flaws

Geoff Duncan
By

Microsoft Corporation has released security updates to its Windows operating system and Internet Explorer Web browser to address a series of flaws and vulnerabilities, three of which are considered critical. Both Microsoft and security experts recommend users download and install the patches as soon as possible to maintain the integrity of their systems and personal information.

Microsoft’s release of the updates was briefly hampered Tuesday by corrupted files in the company’s online Download Center; the errors affected only the Internet Explorer update ad did not interfere in any way with Microsoft Update or users updating via Windows Update.

Fixes to Internet Explorer include:

  • a vulnerability in the way IE rendered JPEG images which could permit memory corruption and execution of arbitrary code;
  • a cross-domain vulnerability which could enable remote attackers to access data or execute programs on a system by getting a user to browse from a Web site to a Web folder using WebDAV;
  • a vulnerability in the way IE instantiates COM objects such as shell32.dll and dmdskmgr.dll which are not intended to be used by Internet Explorer;
Recommended Videos

Other "critical" fixes in the security update include a patch for a flaw in Windows’ Plug and Play (PnP) technology and a "wormable" defect in Windows Print Spooler Service which could enable attackers to install programs, access arbitrary data on the machine, or create new users with full access to the system.

Related

The updates also include a denial-of-service attack against Remote Desktop Services (RDP), an issue with Telephony Application Programming Interface (TAPI) affecting systems all the way back to Windows 98 which could enable remote attackers to execute code on affected systems, and a patch to Microsoft’s Kerberos implementation which could have exposed systems to denial-of-service attacks, service crashes, and spoofing attacks.

Editors' Recommendations

Geoff Duncan
Geoff Duncan
Former Digital Trends Contributor
Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…
4 CPUs you should buy instead of the Ryzen 7 7800X3D
AMD Ryzen 7 7800X3D sitting on a motherboard.

The Ryzen 7 7800X3D is one of the best gaming processors you can buy, and it's easy to see why. It's easily the fastest gaming CPU on the market, it's reasonably priced, and it's available on a platform that AMD says it will support for several years. But it's not the right chip for everyone.

Although the Ryzen 7 7800X3D ticks all the right boxes, there are several alternatives available. Some are cheaper while still offering great performance, while others are more powerful in applications outside of gaming. The Ryzen 7 7800X3D is a great CPU, but if you want to do a little more shopping, these are the other processors you should consider.
AMD Ryzen 7 5800X3D

Read more
How to double space in Microsoft Word
Overhead view of someone typing on a Surface laptop.

Double-spacing is a great way to organize your word processing, and an excellent optimization that is built into most word processing tools. And whenever we hear “word processing,” one of the first programs that comes to mind is Microsoft Word. This handy software has been around for a minute, and we’re going to teach you how to implement double spaces throughout your next Word doc.

Read more
How to do a hanging indent in Microsoft Word
A person typing on a keyboard, connected to a Pixel Tablet.

Microsoft Word is one of the most feature-rich word processing tools gifted to us human beings. In fact, the very word “Word” has invaded nomenclature to the point where any discussion of this type of software, regardless of what the product is actually called, typically results in at least one person calling the software “Word.”

Read more