Microsoft has patched a Windows exploit that had existed for 19 years
On Tuesday, Microsoft issued a large number of security updates for its currently-supported versions of Windows. As it turns out, one of those patches was designed to fix an exploit that had existed in every version of the operating system for 19 years, or since Windows 95.
The flaw was first discovered by IBM in May and it shared that information privately with Microsoft. IBM stated:
IBM said this flaw has allowed every version of Windows to be remotely exploited since the release of Internet Explorer 3.0 in 1996. So far, there's no evidence that hackers have found and have been using this security hole for attacks. However, the BBC quotes Gavin Millard, from Tenable Network Security, as saying:
Perhaps the biggest concern is for all those PCs that are still running Windows XP, which Microsoft no longer supports or updates with security patches. The latest statistics for October by Net Applications showed that the 13-year-old Windows XP is still being used by 17.18 percent of PCs worldwide.
How concerned are you about this 19-year-old Windows flaw being used by hackers on PCs?
Windows Central Newsletter
Get the best of Windows Central in your inbox, every day!
On the other hand this is one of the great things of proprietary software, once you deliver a patch not everyone has to know how the exploit is made, I still feel sorry for all those Drupal sites that got hacked hours after the patch for a huge vulnerability was exposed.
BSD is better than Linux in my opinion
Posted via Windows Center App