toggle

AAPL Stock: 113.29 ( + 0.37 )

Printed from http://www.macnn.com

Windows XP patched to fix zero-day Flash and Internet Explorer exploit

updated 01:49 pm EDT, Thu May 1, 2014

Microsoft reverses course on earlier statement promising no software fix

Despite the update deadline having passed on Windows XP, Microsoft has issued an emergency patch to fix a major problem affecting users of the elderly operating system using Internet Explorer and Flash. The fix is currently available to Windows XP Service Pack 3 owners through the briefly resurrected Windows Update tool.

The exploit uses Adobe Flash to access memory and bypass Windows' ASLR (Address Space Layout Randomization) and DEP (Data Execution Prevention) protection systems. Using the attack vector, an attacker able to redirect a victim to visit a specially created site with a prepared Flash file could potentially execute code on the target computer, installing malware and gaining control of the PC.

"We decided to fix it, fix it fast, and fix it for all our customers," spokeswoman Adrienne Hall said in a statement about the unexpected action by Microsoft. The exploit targets Internet Explorer 9 through 11, but the flaw itself exists all the way back to Internet Explorer 6.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

Follow us on Facebook

toggle

Most Popular

Advertisement

Recent Reviews

ZTE Spro 2 Smart Projector

Home theaters are becoming more and more accessible these days, but maybe you've been a bit wary about buying a home projector. And h ...

MSI Geforce GTX 970 100ME

When Nvidia announced a new line of video cards in September 2014, many people thought things would continue to be business as usual i ...

Wren V5US Wireless Sound System

If you're a music fanatic, chances are you are, by extension, a bit fanatical about what you listen to your music on. If you're like ...

toggle

Most Commented