Microsoft Issues Workaround for Kernel Flaw
Microsoft has issued a temporary workaround for a critical privilege elevation vulnerability in the Win32k TrueType font-parsing engine that is being exploited by the Duqu Trojan. The flaw affects all versions of Windows from XP through Windows 7. Successful exploitation of the flaw could allow attackers to “run arbitrary code in kernel mode.” The workaround involves disabling support for embedded TrueType fonts.
Microsoft plans to issue a patch for the flaw as soon as possible.
Read Microsoft’s security advisory for details: Vulnerability in TrueType Font Parsing Could Allow Elevation of Privileges
Leave a comment
Another awareness poster for YOUR customers (and users). Now that we have our own em Read more
Winter weather does its part to help catch a robber… An article review. This time of Read more
The seven best trend articles in 2019 . . . For ISOs of small financial institutions. Read more
A new exploit involving Apple’s FaceTime is a reminder that our gadgets can be turned Read more