Megjött a javítás: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-…
+ még 16 kritikus besorolású hiba, közte egy ilyen finomsággal:
CVE-2018-8475 is a remote code execution vulnerability in Windows OS, which exists due to the image-loading functionality improperly handling malformed image files. An attacker could exploit this bug by convincing a user to load a malformed image file from either a web page, email or other method.
Elvileg már publikus exploit is létezik rá.
via https://blog.talosintelligence.com/2018/09/ms-tuesday.html / https://www.thezdi.com/blog/2018/9/11/the-september-2018-security-updat…