According to Symantec, this flaw is interesting because it lets attackers modify signed PE files undetected.
In its security bulletin summary for April 2012, Microsoft says it expects miscreants to quickly develop reliable exploits capable of leveraging at least four of the vulnerabilities.Īmong those is an interesting weakness ( MS12-024) in the way that Windows handles signed portable executable (PE) files. Seven of the 11 bugs Microsoft fixed with today’s release earned its most serious “critical” rating, which Microsoft assigns to flaws that it believes attackers or malware could leverage to break into systems without any help from users. Adobe’s update tackles four vulnerabilities that are present in current versions of Adobe Acrobat and Reader.
The patch batch from Microsoft fixes at least 11 flaws in Windows and Windows software. Adobe and Microsoft today each issued critical updates to plug security holes in their products.
