A flaw in the way Windows handles dynamic-link library and related files likely affects hundreds of applications and has already been used in malicious attacks in the wild.
Causes a denial-of-service (crash) and can allow remote access
Causes a denial-of-service (crash) and can allow remote access.
One of Microsoft's three Patch Tuesday updates also addresses a dynamic-link library (DLL) vulnerability that has plagued applications recently.
The software maker says that it is looking into an issue that may leave many Windows programs subject to an attack mechanism known as DLL preloading, or binary planting.
Three malformed dll files could trigger a denial of service attacks
In lieu of a fix, Microsoft offers workarounds to combat the bug that has left browser users open to attacks.
Cybercriminals have already taken advantage of the latest security hole in Adobe Reader and Acrobat.
Researchers from MWR Labs find a way to exploit a Chrome vulnerability, sidestep Windows 7 safety measures, and do whatever they want on the operating system.
Four critical bulletins and five important bulletins coming on Patch Tuesday.