Windows 7 users who are running the Windows 7 Release Candidate Build 7100 are advised by Microsoft to download and install the newly released Active Killbits for the 32-bit and the 64-bit versions. Both the Cumulative Security Updates for ActiveX Killbits for Windows 7 Release Candidate (KB973346 and KB973346) are crucial to tackle the security flaw in the Microsoft Video ActiveX Control which has been recently identified by Microsoft. The security vulnerability which is found in Active X controls can allow an attacker to compromise a system running Microsoft Internet Explorer and gain control over it.
“A remote code execution vulnerability exists in the Microsoft Video ActiveX Control, msvidctl.dll. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user,” Microsoft informed.
According to Microsoft, this security issue is rated critical for all supported editions of Windows XP and Moderate for all supported editions of Windows Server 2003. Even though it does not affect Windows Vista, Windows Server 2008, Windows 7 or Windows Server 2008 R2, users for non affected platforms are also advised to apply this security update as a preventive measure to increase the system’s security level.
Tip and Trick