Lack of Microsoft security exploit patch likely to send users into a TIFF

Microsoft HQ 2

Last week, we reported on a security warning issued by Microsoft which concerned users of multiple versions of Windows Vista, Office 2008, and Windows Server 2008. This week, we learned that Microsoft won’t be addressing the issue in its latest round of patches, which they’re set to release tomorrow.

Microsoft explains that the “remote code execution vulnerability” is due to the way its software handles TIFF images, a format popular among photographers and the publishing industry. 

“An attacker could exploit this vulnerability by convincing a user to preview or open a specially crafted email message, open a specially crafted file, or browse specially crafted Web content,” writes Microsoft. “An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.”

The lack of a patch for the TIFF exploit means that users of the Windows Vista, Office 2008, and Windows Server 2008 won’t see any relief from this problem for some time. However, it’s entirely possible that Microsoft could break with their tradition of releasing patches one a month, and release a patch for this specific issue sooner. On the same blog post where they announced the discovery of the TIFF issue, Microsoft said that they could provide an “out-of-cycle security update, depending on customer needs.”

Click here to see Microsoft’s security report, as well as a complete list of affected Microsoft software.

Image credit: SBnation

Product Review

Microsoft’s Surface Laptop 2 launched last year, but already feels old

Released in fall of 2018, the Surface Laptop 2 was competitive at the time but now must deal with new competitors that were announced at CES 2019. How does the popular Surface Laptop 2 hold up six months later?
Computing

Cybercrime gang that stole $100M busted in international effort

A major cybercrime gang that used powerful malware to steal an estimated $100 million from bank accounts has been dismantled following an international effort that spanned six countries.
Computing

G-Sync is a game-changer. These are the best monitors with Nvidia's display tech

Looking for a monitor that plays well with Nvidia GPUs? You need G-Sync and we have picked the best G-Sync monitors available. Take a look and find out which monitor works best for your PC upgrade.
Computing

Microsoft is discounting this Surface Laptop 2 by a sweet $300

Microsoft is offering a nearly 14-inch Surface Laptop 2 with 256GB of storage at a $300 discount until May 18, 2019. The laptop comes with a PixelSense display, and Intel Core i5 processor and a 720p HD camera.
Product Review

Looking for discrete graphics on the cheap? The Acer Swift 3 will do the trick

The Acer Swift 3 is a tweener laptop that’s not quite budget and not quite premium – and it feels and performs accordingly. It manages to hold its own, though, thanks to its discrete GPU.
Computing

The Razer Core X Chroma is the best external GPU you can buy

The third entry in Razer's lineup of external graphics card enclosures, the Core X Chroma, brings together the best of its previous options in a single package. With RGB lighting and extra USB ports, is this the best you can buy?
Emerging Tech

Awesome Tech You Can’t Buy Yet: Insect drones and kinetic sculpture robots

Check out our roundup of the best new crowdfunding projects and product announcements that hit the web this week. You may not be able to buy this stuff yet, but it's fun to gawk!
Computing

Google recalls Titan Security Key due to hijack risk

Google is offering a free replacement for the Bluetooth Low Energy version of the Titan Security Key. A misconfiguration was discovered in the device, though hackers looking to exploit the vulnerability will find it difficult to do so.
Computing

Whether you want to edit, sign, or append, PDFs, these are the best PDF editors

While there are plenty of PDF editor options online, finding a solution with the tools you need can be tough. Here are the best PDF editors for your editing needs, no matter your budget or operating system.
Computing

Give your PC a new lease on life by upgrading its core components

Older PCs can still be great tools for work and play, they just need a little upgrade now and then. Here are the best upgrades you can make to your PC to make it feel fresh and fast once again.
Computing

The best software for filing your taxes — because you can never be too early

The best tax software offers a variety of services for saving money, completing your taxes at top speed, or getting advice for more complex tax scenarios that you haven't had to deal with before.
Computing

Through the wire, to the limit, to the wall: The 5 best ethernet cables

While our world may be transitioning to wireless connectivity, Ethernet connections are still faster and less prone to lag times than traditional Wi-Fi networks. Here are five of the best Ethernet cables you can buy.
Computing

Your amazing PC rig needs an amazing computer case. These are the very best

There's an incredible variety of PC cases on the market, but a few stand above the rest. Any of our five best computer cases will make your desktop look and work great, no matter what your budget is.
Emerging Tech

How Super Mario, Magic: The Gathering, and PowerPoint are low-key supercomputers

What if the creators of Super Mario World, PowerPoint, and even Magic: The Gathering had accidentally created tools hiding a general-purpose computer in plain sight? Turns out they have.