About Us | Contact Us
View Cart

Microsoft Issues Workaround for Kernel Flaw

By Vigilize | Wednesday, November 9, 2011 - Leave a Comment

Microsoft has issued a temporary workaround for a critical privilege elevation vulnerability in the Win32k TrueType font-parsing engine that is being exploited by the Duqu Trojan. The flaw affects all versions of Windows from XP through Windows 7. Successful exploitation of the flaw could allow attackers to “run arbitrary code in kernel mode.” The workaround involves disabling support for embedded TrueType fonts.
Microsoft plans to issue a patch for the flaw as soon as possible.

Read Microsoft’s security advisory for details:    Vulnerability in TrueType Font Parsing Could Allow Elevation of Privileges


Leave a comment


(required) [will not be published]

Solve this Captcha * Time limit is exhausted. Please reload CAPTCHA.

Latest News