Post by Shadow on Jan 1, 2006 11:38:36 GMT -5
Certain programs used to install code
Chicago Tribune
From Tribune news services
Published December 31, 2005
A previously unknown flaw in Microsoft Corp.'s Windows operating system is leaving computer users vulnerable to spyware, viruses and other programs that could overtake their machines.
Users can infect their computers by visiting certain Web sites that are able to exploit some Windows-based applications, Internet security company Panda Software said Friday. It called the discovery "one of the most serious vulnerabilities recently detected."
The flaw to the world's most popular software leaves PCs open to adware and spyware as well as Trojans that can hide damaging programs. Internet Explorer, Outlook and the Windows Picture and Fax viewer are used to insert the potentially harmful code, said Patrick Hinojosa, chief technology officer of Panda.
"Because this exploits particular programs on Windows, rather than Windows itself, your machine can get infected simply by visiting a Web site that's set up to exploit the flaw," he said.
Microsoft is investigating reports of the problem, the Redmond, Wash., company said on its Web site. Microsoft hasn't yet developed a security patch.
Chicago Tribune
From Tribune news services
Published December 31, 2005
A previously unknown flaw in Microsoft Corp.'s Windows operating system is leaving computer users vulnerable to spyware, viruses and other programs that could overtake their machines.
Users can infect their computers by visiting certain Web sites that are able to exploit some Windows-based applications, Internet security company Panda Software said Friday. It called the discovery "one of the most serious vulnerabilities recently detected."
The flaw to the world's most popular software leaves PCs open to adware and spyware as well as Trojans that can hide damaging programs. Internet Explorer, Outlook and the Windows Picture and Fax viewer are used to insert the potentially harmful code, said Patrick Hinojosa, chief technology officer of Panda.
"Because this exploits particular programs on Windows, rather than Windows itself, your machine can get infected simply by visiting a Web site that's set up to exploit the flaw," he said.
Microsoft is investigating reports of the problem, the Redmond, Wash., company said on its Web site. Microsoft hasn't yet developed a security patch.