Microsoft release an emergency Windows 7 update, just before the end of the year

Microsoft issues an update to Windows, fixes a vulnerability in the .NET Framework.

Published
Updated
42 seconds read time

Microsoft have released a rare out-of-band update to fix a vulnerability in the .NET Framework. The update comes weeks before the next regularly scheduled "Patch Tuesday" in mid-January, and addresses a flaw that could allow attackers to exploit hash tables to perform a denial-of-service (DoS) attack against a website built with Microsoft's ASP.NET application framework.

Microsoft release an emergency Windows 7 update, just before the end of the year | TweakTown.com

DoS attacks usually require thousands of malware-controlled systems in a botnet to overwhelm a site with requests. This opening would allow an attacker to cripple a vulnerable site by sending a certain type of HTTP request. Each of these requests would consume 100-percent of one CPU core. As you can imagine, the more of these requests, the more CPU power that is zapped away.

Microsoft says "Attacks targeting this type of vulnerability are generically known as hash collision attacks." They also added that the problem is not specific to Microsoft's Web services as it affects PHP 5, Java, .NET, v8 and even PHP 4, Ruby and Python. The people behind these platforms will release updates soon, but the holidays will dampen these efforts.

NEWS SOURCE:techspot.com

Anthony joined the TweakTown team in 2010 and has since reviewed 100s of graphics cards. Anthony is a long time PC enthusiast with a passion of hate for games built around consoles. FPS gaming since the pre-Quake days, where you were insulted if you used a mouse to aim, he has been addicted to gaming and hardware ever since. Working in IT retail for 10 years gave him great experience with custom-built PCs. His addiction to GPU tech is unwavering and has recently taken a keen interest in artificial intelligence (AI) hardware.

Newsletter Subscription

Similar News

Related Tags