Microsoft patches 'critical' crack in Windows

Aug 03, 2010
Microsoft released an emergency patch for a "critical" crack in Windows operating system software that could let hackers take control of computers over the Internet.

Microsoft released an emergency patch for a "critical" crack in Windows operating system software that could let hackers take control of computers over the Internet.

"The vulnerability could allow remote code execution if the icon of a specially crafted shortcut is displayed," the US technology giant said in a security bulletin ranked 'Critical.'

"An attacker who successfully exploited this vulnerability could gain the same user rights as the local user."

Computer users commonly use short-cuts in the form of on-screen icons they can click to instantly awaken favored applications.

The Windows flaw lets hackers booby-trap such icons with that could let them control machines from afar.

Microsoft routinely releases software patches the second Tuesday of each month but resorts to making patches available "out of band" when it deems situations dangerous.

"Several families of malware have been attempting to attack this ," Microsoft Trustworthy Computing response manager Christopher Budd wrote in a blog post.

"We firmly believe that releasing the update out of band is the best thing to do to help protect our customers."

Some attacks have reportedly been directed at power plants and other vital infrastructure. People using computers running on any version of Windows software were urged to apply the update immediately.

Explore further: Mobile app could speed O'Hare passport lines

Related Stories

Microsoft probing new hole in IE security

Feb 03, 2010

Fresh from patching an Internet Explorer (IE) flaw exploited in cyberattacks on Google and other firms, Microsoft is looking into a newly exposed vulnerability in the browser software.

Microsoft to patch 17-year-old bug

Feb 08, 2010

(PhysOrg.com) -- Microsoft's February security update will include a patch for a bug that dates back to Windows NT 3.1, which was released in July 1993. The vulnerability has been present but undetected in ...

Recommended for you

Google's Waze app to alert kidnappings in LA

Apr 22, 2015

Alerts about hit-and-runs and kidnappings in Los Angeles will soon pop up on traffic app Waze, along with road closure information, the West Coast city's mayor said.

How the first smart shopping mall in Europe works

Apr 21, 2015

Researchers from Zendos TecnologĂ­a and the IMDEA Networks Institute have developed an innovative tool to analyze the behavior of customers and visitors to shopping malls. The result is a technological platform called Ubicua ...

Energy-tracking app encourages sustainable behaviors

Apr 21, 2015

For a generation motivated by technology and fast-moving information, a professor at the University of Wisconsin-Madison has created an energy-tracking app to make reducing day-to-day energy usage more accessible.

User comments : 2

Adjust slider to filter visible comments by rank

Display comments: newest first

getgoa
1 / 5 (1) Aug 03, 2010
I don't know what a power plant has to do with a personal computer at home?
MustaI
2 / 5 (4) Aug 03, 2010
Actually MS is issuing over fifty of critical patches per year. Should we read about all of them here?

http://www.micros...ent.aspx

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.