Microsoft | Mar 12, 2018 | Master3395
Researchers say they have found severe Windows vulnerability - over 500 million PCs may be exposed
Microsoft is investigating the matter.
Researchers at Padua University in Italy say they have discovered a design weakness in the Control Flow Guard (CFG) - a security layer in Windows 8.1 and 10. The Italian researchers call the vulnerability of "Back to the Epilogue" (BATE).
- Design error
CFG was first released with Windows 8.1 Update 3 and is also part of Windows 10, preventing, among other things, attackers from running code in any area of the system.
University researchers say that, in an effort to improve performance and make CFG backward compatible, Microsoft has made several design errors, which means they are able to cross the security team.
According to reports, which can be read in its entirety here, more than 500 million PCs are exposed to attacks. The research team plans to demonstrate BATE weakness - using the Edge browser in Windows 10 - during the Black Hat Asia Conference, which will be released later this month.
Examining the case
Microsoft states in a statement that it investigates the findings of the researchers. Andrea Biondo, one of the researchers, says that as far as they know, Microsoft will close this gap in the RS4 update. That is, the wet update is expected in a short period of time.
Keywords: Microsoft, security, windows10
Sources: Dark Reading
Jul 21, 2019 | Category: General | Comments
The new display standard can take over HDMI
Last month, we wrote that a new version of the display connection standard DisplayPort is on its way. Now, all specifications are officially launched, although we probably have to wait at least another year before we start seeing products that support it.read more…
Jul 20, 2019 | Category: General | Comments
"All" gets better thanks to new Microsoft Edge.
With its entry into the Chromium world, Microsoft has been a great provider to the browser platform we are well acquainted with, including Google Chrome. The latest news means that all Chromium-based browsers are now getting closer to Windows 10.read more…