If you have a laptop with Bluetooth and Windows' Automatic Updates tool is nagging you about new patches, you might want to indulge it. According to ZDNet, the latest round of Patch Tuesday updates fixes a critical Bluetooth vulnerability that affects both Windows XP and Windows Vista.
How serious is the hole? Microsoft's security bulletin spells it out quite plainly: "The vulnerability could allow an attacker to run code with elevated privileges. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights." To blame is the Windows Bluetooth stack, which fails to correctly handle "a large number of service description requests."
As ZDNet explains, Microsoft recommends that affected users switch off their machines' Bluetooth functionality until they can apply the patch. Of course, an attacker must be in close proximity to the vulnerable system to exploit the hole—just a few meters, according to this Microsoft blog post. Still, the vulnerability could become problematic in places like Internet cafes, especially considering many laptops come with Bluetooth switched on by default.
|Adesso and Azio keyboards look strikingly familiar||0|
|Alphacool Eislicht makes for a moody PC interior||2|
|Thermaltake Versa C22 RGB case is the envy of KITT||5|
|Ryzen CPUs and AM4 mobos are ready for pre-order||40|
|Nvidia all but confirms the GeForce GTX 1080 Ti||27|
|Report: VR headset market is dominated by Google Cardboard||5|
|Intel XMM 7560 modem is ready for 5G anywhere in the world||7|
|AMD's eight-core, 16-thread chips lead the Ryzen charge||223|
|Something about running from a deathclaw right into my mancave wall is not that appealing.||+30|