Skip to main content
  1. Home
  2. Computing
  3. Legacy Archives

Microsoft acknowledges serious Windows security vulnerability

By
Add as a preferred source on Google

On Tuesday, Microsoft confirmed the existence of a vulnerability present in several versions of the Windows operating system. If exploited, the glitch could leave users’ computers open to being fully controlled by an outside attacker.

The exploit, first reported on December 15 at a security conference in South Korea, takes advantage of the way Windows’ graphics rendering engine processes certain thumbnail images. The booby-trapped images could be placed in an Office document, a website, or an e-mail.

Recommended Videos

“An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the logged-on user,” Microsoft said in a statement.  “An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”

If that sounds positively frightening, you may be comforted to hear that so far reports of the vulnerability seem to be strictly theoretical – there are no known reports of an attack taking place in the wild.

The two most recent versions of Windows — Windows 7 and Windows Server 2008 R2 — are reportedly not susceptible to the bug. Microsoft suggests that concerned users of other Windows versions mitigate risks of an attack by running as limited users, not as users will full administrative controls.

Microsoft says that it is currently investigating the bug and may address the problem in a future security update.

Aemon Malone
Aemon Malone
Former Digital Trends Contributor
Topics
Windows 11’s modern Media Player is somehow worse than the version from 17 years ago
The modern Media Player for Windows 11 is slower and heavier than the classic version
Windows 11 media player user interface

Microsoft has released a new Insider Preview update for the modern Windows 11 Media Player. However, the app is facing criticism after tests revealed it uses more memory and opens local video files more slowly than the classic 17-year-old Windows Media Player.

The update adds some useful fixes, including better captions, clearer codec errors, and improved file recognition. But the biggest complaints remain higher RAM usage and paid codec support for some common video formats. The update is not available to everyone yet. Media Player version 11.2605.14.0 has only arrived on Experimental Insider builds as part of Microsoft’s June 12 Insider Preview releases.

Read more
If you have a Mac, you should try this free and beautifully-designed disk space tool
Radix is a free open-source alternative to paid Mac disk analyzers
File, Electronics, Mobile Phone

Running out of storage on a Mac is common, but Apple’s built-in storage tools are not always great at showing what is actually taking up space. You usually get broad categories, but finding the exact folders, downloads, app files, or old projects causing the problem can still take some work.

Radix is a free, open-source Mac app that tries to make that process clearer. It is a disk space analyzer that scans a folder, drive, or volume and displays the results in an interactive sunburst chart. Rather than digging through folders manually, you get a visual overview of how storage is being used across your drive.

Read more
This free Mac app puts stunning glassy widgets on your lock screen
WidgetScreen brings weather, calendar, battery, and music widgets to your Mac lock screen
Aquatic, Water, Animal

The Mac lock screen has always felt a little underused. You see the time, your wallpaper, and not much else. macOS already supports desktop widgets, but once your Mac is locked, that extra information disappears.

WidgetScreen is trying to fix that in a pretty simple way. The free Mac app, made by UK computer science student Sam Cook, adds glassy widgets to the lock screen so you can quickly check things like the weather, clock, calendar, battery, music playback, countdowns, and system information.

Read more