Google Project Zero puts Microsoft on blast about Windows 10 security

Costea Lestoc By: Costea Lestoc
2 minute read

Home » News » Google Project Zero puts Microsoft on blast about Windows 10 security

Windows 10 has kept a pretty clean record with regard to vulnerabilities. While it’s not perfect, one can say that Microsoft has done a good job in keeping Windows 10 patched and secure. However, that’s not the case as far as a recent scan by Google’s Project Zero.

Project Zero discovered that Microsoft’s Windows 10 developed a vulnerability connected to a file named gdi32.dll. There are multiple programs that use this file, and the fact that it was listed as a vulnerability is concerning.

What is Project Zero?

Project Zero is a rather ambitious initiative out of Google that works towards preventing “tech tragedies”. They do this by identifying Zero Day vulnerabilities and reporting them to the appropriate software proprietor. This isn’t done instantly but in 90 days dime.

If the software owner fails to comply, Project Zero makes the information public. This is detrimental for the software developer but beneficial for everyday users who can defend themselves with the newfound knowledge.

Microsoft remains silent

Microsoft has yet to make any comments on the situation. Additionally, there is no information regarding a patch for this problem. Since it’s a core file vulnerability, it shouldn’t take long to get it patched up, but Microsoft’s silence makes many users uneasy. Also, keep in mind the fact that this month’s Patch Tuesday has been postponed until the middle of March. That patch may contain the solution for the vulnerability.

Contained situation

The fact that Microsoft has left a Windows 10 file vulnerability unchecked is not very reassuring. However, this particular one seems to promise no immediate disaster, which may explain why Microsoft hasn’t taken action yet. Users will have to wait until the tech giant comes with a statement at the very least, let alone a solution for the gdi32.dll issue.

There is virtually no chance that Microsoft would allow Project Zero to publish the vulnerability details before patching it. Most likely, the Redmond giant will offer more details about this situation in the following days.

RELATED STORIES TO CHECK OUT:

Discussions

Next up

KB4480967 and KB4480959 fix hotspot and file access issues

Madeleine Dean By: Madeleine Dean
2 minute read

Microsoft started 2019 in style. The company recently rolled out new Windows 10 updates, just a few days after the January 2019 Patch Tuesday wave […]

Continue Reading

How to run Windows XP games on Windows 10

Sovan Mandal avatar. By: Sovan Mandal
4 minute read

Windows 10 might easily be the latest and greatest operating system Microsoft has ever come up with. And there are solid reasons for it to […]

Continue Reading

Windows 10 KB4487181 fixes GSOD errors and USB lock issues

Rabia Noureen avatar. By: Rabia Noureen
2 minute read

Microsoft released a new Windows 10 cumulative update: KB4487181. The big M added three bug fixes aimed at solving frequent issues reported by Insiders. Notably, […]

Continue Reading