Skip to main content
  1. Home
  2. Computing
  3. News

January Patch Tuesday mends eight important and critical Windows security defects

By

ads windows 10 lock screen features users wanted added v2
Dragon Images/Shutterstock
After pushing back on Google for the search giant’s reveal of a major Windows 8.1 security vulnerability before a patch could be issued, Microsoft has delivered on its promise, and ultimately fixed the bug.

As part of a long-established tradition unofficially dubbed Patch Tuesday, this month’s second Tuesday saw no less than eight updates deployed in total to amend glitches rated important or critical. Interestingly, none of these address Internet Explorer defects, which may well be a first for the routine patch program.

Recommended Videos

That could be interpreted as good news by enduring IE fans, suggesting a certain level of stability has been reached at last after years of struggles. Or the exact opposite, with Redmond perhaps ready to throw in the towel and concentrate squarely on Spartan.

Related

Still, no matter how you look at it, eight new Windows vulnerabilities are eight too many. The most serious is a critical issue in the Telnet service affecting systems running Vista, 7, 8 and 8.1, plus Windows Server 2003, 2008 and 2012.

Telnet isn’t enabled by default on Windows Server 2003, and isn’t installed altogether on fresher OS flavors than Vista. But it can be installed and enabled on all the platform iterations listed above, and once that’s done, remote codes are easily executable by resourceful attackers capable of sending “specially crafted packets” to infected Windows servers.

Given the bug’s alarming rating, we assume Microsoft knows of hackers who’ve capitalized on the exploit, so you’d better patch on before it’s too late if you’ve activated Telnet.

Both the glitch Google made public earlier this week, and the one brought to our attention a little while back, are deemed important but not critical by Microsoft. They’re elevation of privilege warnings, and can be put to rest once and for all.

As can another “important” elevation of privilege vulnerability found in Windows Components, a couple of security feature bypass dangers, a denial of service malfunction, and yet another elevation of privilege snag discovered in Windows Kernel-Mode Driver. We’d say all’s well that ends well, but we’re aware many Patch Tuesdays will follow.

Editors' Recommendations

Topics
Adrian Diaconescu
Adrian Diaconescu
Former Digital Trends Contributor
Adrian is a mobile aficionado since the days of the Nokia 3310, and a PC enthusiast since Windows 98. Later, he discovered…
Microsoft Edge’s latest feature keeps you even more secure when browsing
microsoft edge chromium to roll out automatically soon chrome

The latest version of Microsoft Edge has a new hidden feature to keep you secure when browsing online. Known as "Super Duper Secure Mode," the feature improves the performance of websites and disables a browser engine commonly abused by hackers.

According to Microsoft, Super Duper Secure Mode works in two ways, balanced and strict. Balanced will learn what websites you use and trust them to use Just in Time Engine (JIT), which speeds up tasks in JavaScript. Strict, meanwhile, can break some websites, but will disable the Just in Time Engine for better security. Edge users can also add their own exceptions as they see fit.

Read more
New Windows 11 bug leaves some apps unable to update or repair
Windows 11 blue error crash screen.

Update 11/22: Microsoft has issued a new Windows 11 build that fixes this app-breaking bug. The build (22000.348) is currently available to Windows Insiders in the Beta and Release Preview channels, and we expect it to roll out as an official build soon. If you're not an Insider, Kaspersky has released guidance on how to bypass the issue. Original story follows. 

There's a new bug plaguing some Windows 11 users. This time around, some apps are unable to be updated or repaired after the latest Windows 11 cumulative update is installed, according to Microsoft.

Read more
The latest Windows 11 bug results in thousands of empty folders
Empty folders on Windows 11.

Windows 11 is based on the same core as Windows 10, which is great for stability. But the new operating system inherited several issues in the process. The latest problem pertains to hundreds or thousands of empty folders stored deep on your C: drive, which idly accumulate while you use your PC.

It feels all too familiar. People have reported the issue to Microsoft in the past, but it seems to still have made the jump to Windows 11. One user reported finding 2,451 empty folders. When I navigated to the same directory on my PC, I was met with 540 empty folders, all of which carried a similar naming scheme.

Read more