Skip to main content
  1. Home
  2. Computing
  3. News

Microsoft wraps year with big security update

By
Image used with permission by copyright holder

Microsoft is giving its customers a reassuring present for the holidays: a substantial security update that addresses 40 vulnerabilities across 17 bulletins in Microsoft Windows, Office, and Internet Explorer, along with server-based systems like SharePoint Server and Exchange. Among the fixes are five critical and two moderate patches for all versions of Internet Explorer, including a fix for a bug that could enable attackers to execute arbitrary code using invalid flag references in Cascading Style Sheets (CSS) used to specify how Web pages should be displayed.

The update also fixes a critical problem with Windows’ OpenType Font driver and patches the last known vulnerability being exploited by the infamous Stuxnet malware.

Recommended Videos

Microsoft first warned users about the CSS vulnerability in Internet Explorer in early November; although the problem applies to Internet Explorer 6, 7, and 8, Microsoft says IE6 and IE7 users saw the most impact. Other security fixes in Internet Explorer fix holes taht could enable attackers to take over a computer when a user simply loads a malicious Web site. Although the CSS vulnerability has been used in the wild, Microsoft says it’s not aware of any real world attacks that exploited the other vulnerabilities. Similarly, Microsoft does not know of any cases where the OpenType vulnerability was exploited.

The sizable security updates follows a comparatively sedate November, which consisted of only three patches. Security experts are concerned that with both consumers and businesses distracted by the end-of-year holidays, they may defer installing Microsoft’s latest round of patches—which not only fixes more problems, but addresses at least one major vulnerability that is out there in the wild.

Editors' Recommendations

Topics
Geoff Duncan
Geoff Duncan
Former Digital Trends Contributor
Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…
Microsoft confirms Windows 10 21H1, its first major update for this year

Just one day after rumors indicated a potential announcement, Microsoft has officially revealed the first major update to Windows 10 for this year. Appropriately named Windows 10 21H1, the update is now available for "seekers" in early preview testing in the Beta branch of the Windows Insider program. For everyone else who isn't a beta tester, Microsoft is targeting a May 2021 rollout via Windows Update.

"We are introducing the next feature update to Windows 10, version 21H1. As people continue to rely on Windows more than ever to work, learn, and have fun, we understand the importance of providing the best possible update experience to help people and organizations stay protected and productive. It is a responsibility we do not take lightly," said Microsoft.

Read more
Microsoft is setting the stage for the biggest update to Windows in years
windows 10 getting parallax 3d lock screen

In a Windows Hardware Certification blog post, Microsoft has finally acknowledged this year's first major Windows 10 update, currently code-named 21H1 and scheduled for release later this spring.

Though the Windows Insider team (which releases beta versions of Windows) hasn't yet talked about 21H1, the Hardware Certification blog post suggests that Microsoft will indeed stick to its now three-year-long tradition of releasing two major Windows 10 updates per year.

Read more
Power up your tech game this summer with Dell’s top deals: Upgrade for a bargain
Dell Techfest and best tech on sale featured.

One of the best times to upgrade your tech stack, be it your desktop, a new laptop, or some high-resolution monitors, is when great deals are to be had. Well, I'm here to share that thanks to Dell's top deals, you can power up your tech game and have most of the summer to make it happen. Maybe you're happy with your current system or setup. That's excellent, but you're likely considering upgrading somewhere, and that's precisely what these deals are all about. Dell has a smorgasbord of deals on laptops, desktops, gaming desktops, monitors, accessories, and so much more. We'll call out a few of our favorite deals below, but for now, know that you should be shopping this sale if you're interested in anything tech-related.

 
What summer tech should you buy in Dell's top deals?

Read more