Security update KB3185848 addresses Microsoft Graphics Component vulnerabilities in Windows 10

Ivan Jenic By: Ivan Jenic
2 minute read

Home » News » Security update KB3185848 addresses Microsoft Graphics Component vulnerabilities in Windows 10

During this month’s Patch Tuesday, Microsoft released a handful of updates for all supported versions of Windows. Most of these updates are security bulletins that came bundled in various cumulative updates. One of these security updates is update KB3185848.

This security bulletin addresses vulnerabilities found in Microsoft Graphics Component, like code execution  privilege escalation, and information disclosure. If exploited, these vulnerabilities can give an attacker a full control over a user’s computer.

In plain English, if an attacker ‘smells’ this vulnerability, he can break into your computer, create user accounts, install programs, and access all your information. Microsoft warns that a ‘victim’ can be affected by opening a malicious site, or a document.

What’s interesting in this case is that the critical code execution vulnerability is only present in Windows 10 version 1607 (the Anniversary Update), where KB3185848 is listed as a critical patch, and is available as apart of cumulative update KB3189866 . For all other versions of Windows, this update is listed as Important.

“The security update addresses the vulnerabilities by correcting how certain Windows kernel-mode drivers and the Windows Graphics Device Interface(GDI) handle objects in memory and by preventing instances of unintended user-mode privilege elevation.”

So, if you’re running Windows 10 version 1607, we highly recommend downloading cumulative update KB3189866. To download this patch, simply go to the Settings app > Updates & security, and check for updates. In case you have problems installing the update, and some people do, download it manually, and you shouldn’t have any problems.

For more information about this security bulletin, check out TechNet’s support page.

RELATED STORIES YOU NEED TO CHECK OUT:

Discussions

Next up

Top 4 software to recover lost email account passwords

Tashreef Shareef avatar. By: Tashreef Shareef
Less than a 1 minute read

Whether you use web-based email services or desktop email clients to manage your account, emails are used for business and personal communication by almost everyone. […]

Continue Reading

Here is what to do when Google Docs won’t print

John Waibochi avatar. By: John Waibochi
6 minute read

While Google Docs remains a super powerful real-time document authoring and collaboration software, it on occasion has issues. For instance, the complain that Google docs won’t […]

Continue Reading

How to fix “Acrobat failed to connect to a DDE server” errors

Matthew Adams By: Matthew Adams
3 minute read

The Adobe Acrobat PDF (Portable Document Format) software throws out an “Acrobat failed to connect to a DDE server” error message for some users. That […]

Continue Reading