Microsoft as part of its Patch Tuesday cycle released new security updates for all its supported versions of Windows. The security updates are part of the July 2018 Patch Tuesday cycle.
The Redmond Giant has fixed 54 vulnerabilities with the latest Patch Tuesday update. There are 17 such vulnerabilities which the Redmond Giant has termed as critical.
The 17 vulnerabilities which Microsoft has fixed are pertaining to the company’s browser Internet Explorer and Microsoft Edge. Microsoft requests users to install the 17 critical updates to stay away and protected from any vulnerability since they effect the browsers of all supported versions of Windows.
Microsoft states: “A security feature bypass vulnerability exists when Microsoft Internet Explorer improperly handles requests involving UNC resources. An attacker who successfully exploited the vulnerability could force the browser to load data that would otherwise be restricted.
Microsoft confirms that the security flaw found in Internet Explorer makes it easy for an attacker to exploit the vulnerability and force the browser to load restricted data. This security flaw hasn’t been disclosed publicly and hence the company would like the users to download the security updates at the earliest.
The same vulnerability is also effecting Microsoft Edge browser on systems which have downloaded the Windows 10 April 2018 update. The vulnerability allows the attacker to take full control of the PC and steal important data from the effected PC.
“In all cases an attacker would have no way to force a user to view the attacker-controlled content. Instead, an attacker would have to convince a user to take action. For example, an attacker could trick a user into clicking a link that takes the user to the attacker’s site,” Microsoft says.
The Microsoft Edge browser vulnerability has been discovered only for users who have downloaded Windows 10 April 2018 update and doesn’t exist for Microsoft Edge browser on older versions of Windows 10.
To download the latest Patch Tuesday update, you would need to go to Windows Update section and need to reboot the device to complete the deployment of the fixes.