October 3, 2023

An apparent vulnerability within the Microsoft operating system could let cybercriminals take control of your PC and even delete files.

Microsoft recently addressed over 100 flaws in its latest Patch Tuesday update, 16 of these being considered critical.

Two of the major vulnerabilities were to do with Microsoft Color Management and Windows Media Foundation.

If these flaws were manipulated, hackers could view data, change files and even install programmes.

There was also a risk that hackers could create new Windows 10 accounts on the PCs of victims.

Regarding the Microsoft Color Management flaw, the Windows 10 creators said: “In a web-based attack scenario, an attacker could host a specially crafted website that is designed to exploit the vulnerability and then convince users to view the website.

“An attacker would have no way to force users to view the attacker-controlled content.

“Instead, an attacker would have to convince users to take action, typically by getting them to click a link in an email or Instant Messenger message that takes users to the attacker’s website, or by opening an attachment sent through email.”

Commenting on the Windows Media Foundation flaw, the tech giant said: “There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit a malicious webpage.”

Fortunately, none of the vulnerabilities that Microsoft picked up on are known to be under any active attacks.

Leave a Reply

%d bloggers like this: