Microsoft fixes deadly errors for XP and Vista
Microsoft on January 8 released a patch for an extremely serious security hole in the Windows operating system. This error can be exploited by hackers to attack users with self-replicating computer worms.
This error arises in the process that the operating system processes the network traffic stream through IGMP (Internet Group Management Protocol) and MLD (Multicast Listener Discovery) - the procedure used to send data across multiple systems at the same time. . The software company said hackers could take advantage of this flaw to send a malicious stream of information to help them gain the right to remotely execute malicious code on a system that makes a mistake.
Security experts say there has not been any code exploiting the bug released on the network but warned hackers could take advantage of Microsoft's patch using reverse engineering to develop malicious code. public users.
By default Windows XP and Vista activate the IGMP procedure. Therefore, Microsoft warned that this error could be used to spread the worm itself. Users should quickly download and install the necessary fixes.
The above serious fix is part of Microsoft's January 2008 regular update. Also in this round Microsoft also fixes another security error in Windows network features and another error can be exploited to steal user passwords.
The MS08-001 update aims to fix another Windows network error that could be exploited to deny service attacks. This error arises in the Internet Protocol Control Message Protocol Router (ICMP RDP) procedure that takes care of network communication. However, by default this feature is not enabled so Microsoft does not appreciate this error.
Meanwhile, the MS08-002 update fixes an error that could be exploited to increase access in the Windows Local Security Authority Subsystem Service (LSASS) service - to take responsibility of posting account privileges. Enter Windows. This error can be exploited to increase access and remote operation of malicious code on the system that makes a mistake.
Hoang Dung
- Microsoft fixed a series of bugs for Vista
- Microsoft fixes the Excel vulnerability, Adobe fixes Flash errors
- Microsoft fixes 10 errors in Internet Explorer
- Microsoft is about to patch a serious vulnerability in Windows and Exchange
- Microsoft invites hackers to
- Microsoft patched zero-day errors for Vista
- Apple fixes deadly errors in Safari
- Microsoft: does not delay Vista release time
- Microsoft allows access to 64-bit Windows Vista
- Microsoft prepares for the booming Vista ball
- Microsoft fixes image processing errors in November security
- Microsoft officially released Windows Vista RC1