Microsoft fixes ‘critical’ security vulnerabilities

Software giant Microsoft Corporation has announced that it fixed a couple of security holes/vulnerabilities affecting all supported versions of Windows operating system.

One of the two vulnerabilities would allow an attacker remotely to exploit a critical-rated remote code execution flaw, allowing the attacker or hacker to remotely take full control of the affected computer.

Another critical-rated remote code execution flaw was in the legacy JET database engine that could allow a hacker or an attacker to takeover the affected computer.

The company warned that an attacker could use the vulnerabilities to install programs; see, alter and even delete data or create new accounts with complete user rights. The attacker would just have to send a particularly crafted message to the Windows Search service. Then, the attacker could take full control of the computer.

Every supported version of Windows 7 and all versions of Windows 10, as well as Windows Server systems, are affected by the bug.