Microsoft fixes critical bugs in Explorer and Windows

By Stuart Sumner
15 Feb 2012 View Comments
internet-explorer-9-with-homepage

Microsoft has released a series of patches designed to fix critical security flaws in its Internet Explorer and Windows platforms, amongst others.

In the software giant's February patch release, part of its reglar monthly patch cycle, it fixes critical bugs in the Windows, Internet Explorer, .NET Framework and Silverlight programs that could permit remote code execution.

Further reading

There are also updates for its Sharepoint and Office suites of applications.

Microsoft lists two of the updates as being critical. One is known as MS12-010 – Cumulative Security Update for Internet Explorer.

This update resolves four vulnerabilities in Internet Explorer. These could allow remote code execution if the user employs the browser to view an infected web page.

A hacker who attempts to exploit these vulnerabilities could gain the same level of access to the machine as the user.

The second critical update is MS12-013. It patches C Runtime Library, which provides programming routines for Windows.

The vulnerabilities discovered in this service could also leave a computer open to remote code execution if left unpatched.

"This bulletin addresses an issue that could arise if a would-be attacker sent a malicious media file to a targeted user, or convinced the user to visit a web page hosting such a file," said Microsoft's Angela Gunn, of the firm's security group Trustworthy Computing.

Microsoft recommends that its customers deploy the patches as soon as possible.

Reader comments
blog comments powered by Disqus
Newsletters
Windows 10 - will you upgrade?

Microsoft has made an early version of Windows 10 - its next operating system - available for download. The OS promises better integration and harmonisation across platforms, including mobile and desktop. Will your business be upgrading?

35 %
34 %
12 %
19 %