Microsoft pushed into issuing patch early

Software giant Microsoft has brought forward the release of a patch for a vulnerability in Windows after reports that attackers were already exploiting the vulnerability.

  • E-Mail
By  Administrator Published  April 5, 2007

Software giant Microsoft has brought forward the release of a patch for a vulnerability in Windows after reports that attackers were already exploiting the vulnerability.

The flaw is related to Windows animated cursor handling and is understood to affect all versions of Windows including its latest release, Vista.

The fix was originally due to be issued on April 10, within Microsoft's regular monthly security update, but the firm decided to advance the release following reports of the vulnerability being exploited.

Microsoft said on April 1 that it planned to release the fix this week.

"Since testing has been completed earlier than anticipated, Microsoft has released the update ahead of schedule to help protect customers," Microsoft said in an e-mail to the Cnet news site.

Microsoft confirmed in an advisory that the vulnerability was connected to the way Windows handles animated cursor files and told customers to exercise extreme caution when opening unsolicited e-mails.

"In order for this attack to be carried out, a user must either visit a web site that contains a web page that is used to exploit the vulnerability or view a specially crafted e-mail message or e-mail attachment sent to them by an attacker," it said.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code