|05 Jan 2011||#1|
| || |
Microsoft Security Advisory (2490606)
Microsoft is investigating new public reports of a vulnerability in the Windows Graphics Rendering Engine. An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the logged-on user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
We are not aware of attacks that try to use the reported vulnerability or of customer impact at this time.
We are actively working with partners in our Microsoft Active Protections Program (MAPP) to provide information that they can use to provide broader protections to customers.
Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.
Microsoft releases Security Advisory 2490606 - MSRC - Site Home - TechNet Blogs
|My System Specs|
|Similar help and support threads for2: Microsoft Security Advisory (2490606)|
|Microsoft Security Advisory (2743314)||Security News|
|Microsoft Security Advisory (2488013)||Windows Updates & Activation|
|Microsoft Security Advisory (2286198)||News|
|Microsoft Security Advisory (980088)||System Security|
|Microsoft Security Advisory (979352)||System Security|
|IE Microsoft Security Advisory (979352)||Browsers & Mail|
|Microsoft Security Advisory 973882, Microsoft Security||News|