Microsoft will fix Windows high-risk vulnerability

According to foreign media reports, on Thursday, Microsoft said that the company will release nine security bulletins next Tuesday to fix 13 security vulnerabilities, mainly in Windows, Office and IIS (Internet Information Services). In software.

It is understood that Microsoft will repair these 13 vulnerabilities, security vulnerabilities are rated four "serious" rating, compared with the rest of the nine vulnerabilities "important."

Microsoft pointed out, Windows XP, Windows 2003, Vista, IIS (Internet Information Services) and Office and other software security vulnerabilities rated "critical", while Windows 7 and Windows Server 2008 R2 security vulnerabilities The rating is "important."

outside security experts point out that Microsoft's upcoming security bulletin may fix a security vulnerability in the way Windows handles DLL (dynamic link library) file exists in the way of. Currently, hackers have exploited this Windows DLL vulnerability to attack users' computers. Previously, Microsoft released the Fix it tool to mitigate the risk of this security vulnerability for users' computers. Wolfgang Kandek

Qualys CTO, I expect some security patches Microsoft products will solve the problem DLL hijacking. However, the current problem remains at the level of consulting, and users must take active measures to prevent DLL hijacking in third-party software.

Last month, Microsoft's first completely terminate support for Windows XP SP2, but the user can go to repair XP SP2 in loopholes by updating Microsoft's XP SP3 provided.

However, Microsoft says, Windows XP SP2 users should perform XP SP3 or Windows 7 upgrade as soon as possible.