Milovan
04-04-2007, 10:54 AM
Hi everyone,
Microsoft has released a critical hotfix (MS07-017) yesterday, April 3rd, which addresses a vulnerability in GDI that could allow an attacker to compromise the system by remotely executing code and gaining control over it.
The update resolves several newly discovered, publicly disclosed and privately reported vulnerabilities. An attacker who successfully exploited the most severe of these vulnerabilities, Windows Animated Cursor Remote Code Execution Vulnerability, could take complete control of an affected system – install applications; view, change or delete data or create new accounts with full user rights.
You can use the Automatic Updates feature to download and install this security update; you should see an update with an ID KB925902. You can also manually download it from the Microsoft’s Update website at http://update.microsoft.com/microsoftupdate/.
This vulnerability affects all versions of Windows 2000/2003 Server, XP and even Vista.
Microsoft has released a critical hotfix (MS07-017) yesterday, April 3rd, which addresses a vulnerability in GDI that could allow an attacker to compromise the system by remotely executing code and gaining control over it.
The update resolves several newly discovered, publicly disclosed and privately reported vulnerabilities. An attacker who successfully exploited the most severe of these vulnerabilities, Windows Animated Cursor Remote Code Execution Vulnerability, could take complete control of an affected system – install applications; view, change or delete data or create new accounts with full user rights.
You can use the Automatic Updates feature to download and install this security update; you should see an update with an ID KB925902. You can also manually download it from the Microsoft’s Update website at http://update.microsoft.com/microsoftupdate/.
This vulnerability affects all versions of Windows 2000/2003 Server, XP and even Vista.