Windows continues to be attacked

In the past two days, the Windows operating system has continued to become the target of hackers through the vulnerabilities discovered in the past.

First, the exploitation is done through two vulnerabilities that are published in the security bulletin MS05-053 and MS05-051. In fact, mining activities started at the beginning of this week but only stopped on a small scale, not significant.

One of the two exploits took advantage of a critical vulnerability in the way Windows handles files saved in Windows Metafile graphics format. This security error may cause the system to crash and restart. Microsoft has patched the vulnerability in the security bulletin MS05-053, issued on November 8, 2005.

The second form of exploitation takes advantage of the Microsoft Distributed Transaction Coordinator (MSDTC) mechanism, which was published and corrected in the MS05-051 security bulletin, issued on October 11, 2005. MSDTC is a component of the operating system that is often used by database software to manage transactions.

Recently, a flaw in IE was also discovered that could allow a Trojan to hack in and control the system if users accidentally accessed "malicious" websites.

Microsoft recommends that users should quickly update the Windows operating system to reduce the risk of hackers and viruses. In particular, with the above two vulnerabilities, users can download the upgrade from the security message number MS05-053 and MS05-051.