Data Breach logo

Two bugs in Windows cause emergency patch release

Microsoft silently released a security fix to customers due to two vulnerabilities found in the Microsoft Windows Codecs Library.

The two bugs – tracked as CVE-2020-1425 and CVE-2020-1457 – only impact Windows 10 and Windows Server 2019.

Those two bugs, which are described as two remote code execution (RCE) vulnerabilities, can be exploited with the help of a specially crafted image file.

If the image file is opened inside applications that utilize the built-in Windows Codecs Library to run multimedia content, then hackers would be allowed to run malicious code on the vulnerable computer – and potentially take over the device.

Microsoft has stated that “Customers do not need to take any action to receive the update.”

As always, if we can be of help with your network or computer, give us a call here at RHYNO Networks. (855) 749-6648