Microsoft has announced that the company will release a patch for a security vulnerability in the Windows operating system, which is being widely exploited, as part of its monthly security update cycle next week. Therefore, Microsoft advises users to wait for the official security update.
The issue lies in the vulnerability present in certain versions of the Windows operating system that allows hackers to take control of computers through Windows Metafile image files (with the .wmf extension). When users open .wmf image files, the system executes code that enables full control over the user’s computer. These image files can be used on websites or sent via email or instant messaging.
According to the security software provider F-Secure, all versions of the Windows operating system are affected by this vulnerability, but Windows XP and Windows Server 2003 face greater risks.
Currently, Microsoft has successfully developed a patch that is in the testing phase and is expected to be released next week.
Although Microsoft acknowledges that the vulnerability is being actively exploited, software developers believe that the level of attacks is not widespread. Antivirus software also blocks most attacks through updated files, allowing security software to recognize infected files before they cause harm.
