MICROSOFT released its first update of the year on Tuesday, fixing dozens of newly discovered bugs affecting its Windows products.
The 96 issues patched by the US tech giant include a “critical” Office vulnerability that could allow attackers to remotely penetrate vulnerable systems.
The vulnerability, tracked as CVE-2022-21840, is a type of bug known as remote code execution (RCE), Microsoft reveals on its website.
It can be exploited by hackers by sending a malicious file to the target via email.
“An attacker could exploit the vulnerability by sending a specially crafted file to the user and convincing the user to open the file,” Microsoft explains.
Fraudsters can also take advantage of this vulnerability by creating a fake website
“In a web-based attack scenario, an attacker could host a web page … that contains a specially crafted file designed to exploit the vulnerability,” Microsoft said.
This is one of nearly 100 security bugs that have been fixed by Microsoft in the framework of the first “Third Patch” of 2022.
Patch Tuesday is an informal term that refers to when major technology companies like Microsoft regularly release patches for their software.
Of the 96 vulnerabilities identified and resolved by the company, nine are rated “Severe” and 89 are rated Critical.
The six are said to be publicly known, although Microsoft hasn’t discovered hackers exploiting them wild.
Affected systems include Windows, Edge, Exchange Server, Office and Windows Defender operating systems.
Microsoft is urging users to update their software to the latest version to avoid exposing their computers to hackers.
Following standard industry practice, the company did not go into detail on how the security holes could be exploited.
This ensures that cybercrooks cannot take advantage of the vulnerabilities while Windows users worldwide receive the update in the coming days.
If you are a Windows 10 user, your Windows PC will automatically download most system updates.
To be safe, you can always update manually by opening Start menu by clicking the icon in the bottom left corner of the screen.
Click Setting and then go to Update and security. If an update is available, you’ll have the option to download it here.
In other news, scientists are embarking on a mission to unravel the mystery behind dozens of creepy baby mummy was buried in an underground tomb in Sicily.
The police caught an Italian mafia henchman who was on the run for 20 years after discovering the fugitive on Google Maps.
One of the The best preserved fossils was found that confirmed that juvenile dinosaurs popped out of their shells like baby birds.
And, one eagle-eyed Reddit user made $2 billion fly stealth bomber on Google Maps.
We pay for your stories! Do you have a story for The Sun Online Science & Technology team? Email us at email@example.com
https://www.thesun.co.uk/tech/17296403/microsoft-windows-10-user-critical-dangers-fix/ Microsoft warns EVERY Windows 10 user of nine ‘critical’ dangers you need to fix now