14 DAY TRIAL // Microsoft has recently announced that it would release a total of four different security bulletins on Patch Tuesday, all of which are marked as “important” and supposed to fix flaws in Windows and other Microsoft software solutions.
One of the bulletins is supposed to correct a recently-discovered zero-day flaw in Windows XP that allowed hackers to run malicious code on vulnerable computers using a PDF document.
Wolfgang Kandek, CTO of Qualys, said that the flaw is already fixed in newer Adobe Reader versions, but a fully-working Windows XP patch is however needed.
“We expect Bulletin #2 to address the 0-day vulnerability CVE-2013-5065 in Windows XP and 2003, which has seen limited attacks since the end of November of last year. These attacks have been coming in through PDF documents using an already fixed vulnerability of Adobe Reader and users of updated versions, i.e post APSB13-15 from May of 2013 should be immune to this attack vector,” he said.
As usual, the patch will be delivered via Windows Update, so user input will be minimal in order to download and install it.