The Windows Help and support center exposes users to a a critical vulnerability. The vulnerability can potentially allow a remote hacker to take complete control of a users machine. PC’s running Windows XP and Windows Server 2003 using multiple major browsers, including Internet Explorer 8, are affected.

A few days after the advisory, security firm Sophos warned users of a website using the vulnerability to install malicious software on victims’ machines, and of possibly more exploits coming out soon. Users of Windows XP and Windows Server 2003 are advised to disable features within Help Center that allow administrators to remotely log onto their machines. For individual users, Microsoft has released a patch for the flaw.

Don’t know how to install the patch? Need help? Ask Erik! Of course our customers with Managed Services are automatically advised of these vulnerabilities, and patches are applied as soon as they are available. Contact us today to find our more.