Home / Technology / Microsoft Just Patched a 19-Year-Old Windows Security Flaw

Microsoft Just Patched a 19-Year-Old Windows Security Flaw

Windows 95 310x

IBM detected a bug dating behind to a beginning days of Windows 95.

How’s this for a throwback? Microsoft, with assistance from IBM, only patched a Windows confidence disadvantage that dates behind 19 years.

The confidence flaw, strictly called CVE-2014-6332 though now nicknamed WinShock, is a “significant information vulnerability,” that is benefaction in each chronicle of Windows going behind to Windows 95. That means probably each Windows appurtenance we have used travelling 3 decades is exposed to this flaw. Even worse, a smirch could be exploited remotely by any chronicle of Internet Explorer dating behind to IE 3.0.

WinShock is a classical vulnerability, and not only in age, as it’s a classical remote formula run flaw. If a user regulating IE 3.0 or after visited a right ne’er-do-well webpage, antagonistic formula could be remotely run on a machine.

The smirch was detected by members of an IBM investigate group behind in May. They reported a smirch to Microsoft (both companies kept it a tip until a repair was pushed out), that released a repair progressing this month. The same group rated a smirch a 9.3/10 regulating a Common Vulnerability Scoring System (CVSS), classifying a smirch as Extreme.

“…significant vulnerabilities can go undetected for some time,” pronounced IBM X-Force Research Team Manager Robert Freeman. “The cart formula is during slightest 19 years aged and has been remotely exploitable for a past 18 years. Looking during a strange recover formula of Windows 95, a problem is present…this disadvantage has been sitting in plain steer for a prolonged time notwithstanding many other bugs being detected and patched in a same Windows library.”

You can review IBM’s full news on a feat here.

Source: Microsoft TechNet | IBM Security Intelligence

Article source: http://www.escapistmagazine.com/news/view/138588-Microsoft-Patches-19-Year-Old-Windows-Security-Flaw-IBM

Scroll To Top