The US software giant Microsoft warned Thursday of a newly discovered vulnerability in Windows desktop control services that could allow attackers to run remote code on any compromised device, such as malware and ransom software. The company urged users to update their systems to prevent falling victim to attacks similar to the WannaCry global ransom attack.
The risk of this vulnerability is reflected in its ability to allow malicious software to spread to other computers on the same network in a manner similar to the malicious WannaCry software. The company said it was confident that the vulnerability could be exploited, endangering nearly one million computers connected to the Internet.
Microsoft has released a security patch for the earlier breach known as Patch Tuesday. “Although there are no signs of an active attack taking advantage of the gap, that means we are out of danger,” she said.
Source : Microsoft