قالب وردپرس درنا توس
Home / Tips and Tricks / Update your Windows 10 device now to fix a critical vulnerability – Review Geek

Update your Windows 10 device now to fix a critical vulnerability – Review Geek



A Windows blue screen of death
JaysonPhotography

Windows updates are important but annoying, so it̵

7;s often tempting to delay them. But you don’t want to postpone the latest update. Microsoft has released a patch that fixes an error that could cause your system to crash by connecting to a malformed file path. In theory, a hacker could have used the glitch to crash your PC just by opening a folder.

As first reported by Bleeping Computer, the problem stems from the way programs can access file paths for your convenience. For example, paste a file path in Google Chrome and it will launch Windows Explorer or open a PDF on your system. But if the file path didn’t pass specific attributes correctly, it crashed Windows, leading to a BSOD (blue screen of death).

It’s an easy bug to reproduce and we won’t be mentioning the example path to avoid accidental crashes. While testing Bleeping Computer, it discovered several ways to exploit the bug and crash systems, including just downloading and opening files. With the right actions, hackers can crash Windows every time a user logs into their account.

While crashing a system only sounds annoying, bad actors can use the method to mask other actions and prevent administrators from detecting network intrusions. Hackers can even remotely trigger the path and crash a sysadmin system if they have access.

The latest Windows update solves the problem and protects your PC from this particular bug. Even if you think it is unlikely that a hacker can attack you, it is still a critical bug that can cause your system to crash. So if you usually put off installing Windows updates, break the habit on this occasion.

via Bleeping Computer




Source link