Windows Updates Fix 30 Security Flaws, Microsoft Office Gets Zero-Day Patch
Microsoft has released updates to address no less than 62 vulnerabilities in its software, including 30 flaws that were discovered in Windows 10 plus a zero-day security bug in the Office productivity suite that’s already being exploited in the wild.
The Redmond-based software firm confirmed in this month’s Patch Tuesday documentation that Microsoft Office vulnerability CVE-2017-11826 should be treated with extra care because it’s already aware of attacks and system admins should patch it as soon as possible. Oddly enough, Microsoft has only rated this flaw with an “important” security rating.
Affecting all supported versions of Office, including 2010, 2013, and 2016, the vulnerability allows an attacker to run arbitrary code on the target system and even take control of the system, which is only possible if the logged-in user has administrator rights.