Microsoft fixes flaws in Windows and Office
Microsoft has released two updates for Windows and three updates for Office to close several security holes. All five of the manufacturers only updates classified as "important" one.
A vulnerability in WINS allows a local attacker to increase its rightson a system. In addition, a patch to prevent a further variant of theso-called binary Plantings or DLL hijacking, by reloading WindowsDLL may unintentionally network shares. An attacker can executein this way crafted with its DLL code on a computer. The problem of unsafe loading of DLLs, Microsoft has been trying to get throughmid-2010, numerous patches in the handle.
Furthermore the updates generally include five holes in OfficeExcel, and two in office, let all the abuse is capable of compromising a PC. It is sufficient that a victim opens a specially crafted document. Another update fixes five vulnerabilities inSharePoint that allow users to expand their access rights on a system.
No comments:
Post a Comment