Patches for two critical security vulnerabilities that affect every supported version of Windows were released yesterday, as part of Microsoft’s monthly security update strategy.
One of the flaws was to do with memory corruption – allowing hackers administrator privileges on a machine i.e. the ability to install and uninstall programs or add/delete data.
The second issue sprouted from how the OS works with fonts. There were various flaws with varying degrees of accessibility in this instance, however they main point is that they enabled remote code execution if exploited.
Source: ZDNet
View full story here