Microsoft silently released a security fix to customers due to two vulnerabilities found in the Microsoft Windows Codecs Library.
The two bugs – tracked as CVE-2020-1425 and CVE-2020-1457 – only impact Windows 10 and Windows Server 2019.
Those two bugs, which are described as two remote code execution (RCE) vulnerabilities, can be exploited with the help of a specially crafted image file.
If the image file is opened inside applications that utilize the built-in Windows Codecs Library to run multimedia content, then hackers would be allowed to run malicious code on the vulnerable computer – and potentially take over the device.
Microsoft has stated that “Customers do not need to take any action to receive the update.”
As always, if we can be of help with your network or computer, give us a call here at RHYNO Networks. (855) 749-6648
RHYNO Networks was designed to meet the needs of the IT marketplace. Specifically, to offer businesses skilled, timely IT services in order for them to focus on their business. We’re dedicated to the principles of Reliability, Innovation and Customer Service.