Microsoft fixes double zero-day security flaw in Windows 7

Costea Lestoc By: Costea Lestoc
2 minute read

Microsoft fixed a security flaw that hit Windows 7 and was discovered together with ESET. The great thing is that according to the tech giant, there haven’t been any attacks thanks to the fast discovery and fix of the problem.

ESET helps Microsoft to fix Windows 7 security vulnerability

Matt Oh, Windows Defender ATP Research released a technical analysis of the vulnerability and pointed out that Microsoft teamed up with ESET and Adobe to fix two different zero-day exploits in a PDF which was believed to pack an unknown Windows kernel flaw.

Although the PDF sample was found in VirusTotal, we have not observed actual attacks perpetrated using these exploits. The exploit was in early development stage, given the fact that the PDF itself did not deliver a malicious payload and appeared to be proof-of-concept (PoC) code.

The notes also say that finding this vulnerability before an attacker got a chance to use it was a great effort of the collaboration between Microsoft and ESET.

The analysis details that one exploit affected Adobe Acrobat Reader and the other one hit Windows 7 and Windows Server 2008. The first flaw targeted Adobe JavaScript engine, and the other was aiming at Windows.

Update your OS now

The same recommendation that Microsoft has been offering users is also appropriate now: update your older operating system in order to benefit from the latest security updates and always remain protected.

If you have to delay upgrading your OS, it’s recommended that IT admins disable JavaScript in Adobe Acrobat and Adobe Reader until the updates are eventually installed. They are also advised to double-check their PDFs for malware just to make sure that no exploits are targeting the network systems. You can read the complete details on the exploit on Microsoft’s support page.

RELATED STORIES TO CHECK OUT:

For various PC problems, we recommend this tool.

This software will repair common computer errors, protect you from file loss, malware, hardware failure and optimize your PC for maximum performance. Fix PC issues now in 3 easy steps:

  1. Download this PC Repair Tool rated "Excellent" on TrustPilot.com.
  2. Click “Start Scan” to find Windows issues that could be causing PC problems.
  3. Click “Repair All” to fix all issues with Patented Technologies (requires upgrade).

Discussions

Next up

Mozilla adds alerts about recently breached sites into Firefox browser

Giles Ensor avatar. By: Giles Ensor
3 minute read

Firefox has announced that it will start to warn users if they visit any breached sites. This is in an attempt to not only make […]

Continue Reading

More uncertainty for Microsoft’s Windows 10 October Update

Giles Ensor avatar. By: Giles Ensor
3 minute read

Oh dear. It’s been a pretty bad month for Microsoft concerning its Windows 10 October 1809 Update release. Microsoft eventually released the update a couple […]

Continue Reading

Confirmed: Microsoft now accepting ARM64 apps on its Store

Giles Ensor avatar. By: Giles Ensor
2 minute read

Yesterday, Microsoft released Visual Studio 15.9. With it came the announcement that “developers now have the officially supported SDK and tools for creating 64-bit ARM […]

Continue Reading