Heartbleed has been and gone, but it looks Windows users need to watch out because a yet unnamed severe vulnerability has just been brought to light by Microsoft. The corporation has just released a critical patch for the aforementioned server vulnerability, and this affects quite a few current windows versions that many of our readers may have installed on a partition/other system.
Currently, Microsoft has stated that it isn’t aware of anyone taking advantage of the security loophole, which allows:
a remote code execution vulnerability… due to the improper processing of specially crafted packets.
Basically, an attacker could modify packets in a specific way and attack your machine, potentially executing whatever code they wish without any account authorisation. The attack thus far seems to only affect those running Windows servers.
For a list of every affected Windows edition, click here. For now, as stated by Microsoft, this patch is only way to prevent potential attackers from making use of this vulnerability. If you’re a user of Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, Windows 8/8.1, Windows Server 2012/2012 R2, or Windows RT/RT 8.1. make sure you grab the update right now. The vulnerability is now public, to both users and attackers, it isn’t worth the risk. You can get the patch using Windows update or by heading over to Microsofts website.