Microsoft Issues Workaround for Kernel Flaw
Microsoft has issued a temporary workaround for a critical privilege elevation vulnerability in the Win32k TrueType font-parsing engine that is being exploited by the Duqu Trojan. The flaw affects all versions of Windows from XP through Windows 7. Successful exploitation of the flaw could allow attackers to “run arbitrary code in kernel mode.” The workaround involves disabling support for embedded TrueType fonts.
Microsoft plans to issue a patch for the flaw as soon as possible.
Read Microsoft’s security advisory for details: Vulnerability in TrueType Font Parsing Could Allow Elevation of Privileges
Leave a comment
Another awareness poster for YOUR customers (and users). Now that we have our own em Read more
We’re pretty proud of Dan’s predictive prowess and can’t resist taking another look a Read more
Great Resources For User Awareness An article review. We at infotex take great pride Read more
As the cryptocurrency gains users, some financial organizations are cracking down. An Read more