Emergency patch for all versions of Windows?

If you use Windows -- just about any recent version of it, in fact -- you're going to want to check for updates as soon as you can. Microsoft has released an emergency, off-schedule patch for a security hole that lets ne'er-do-wells hijack your system if you open documents or websites that use embedded OpenType fonts. The flaw exists in virtually every edition of Windows that Microsoft still supports, ranging from Vista all the way to your preview copy of Windows 10. There's no evidence that an attack exists in the wild, but you'll definitely want to get the fix before malware writers get their act together.
Update: There are claims circulating that this fixes an exploit discovered in the Hacking Team breach. If so, it's not entirely true that this exploit has never been used. We've reached out to Microsoft for more answers.
Update 2: Microsoft tells us that this is indeed in response to the Hacking Team vulnerability. The company is "not aware of any active attacks" right now, but it's not about to wait for them to show up.
 
"Windows Update" is part of your own Windows PC, I "Check for Updates" every so often, or when an icon displays, run most updates manually ... I have only ever "Hidden" 2 updates, one being GWX GetWindows10 (KB3035583)

I use MS Security Essentials, and install it's optional security updates everytime

I run Malwarebytes once per week and update the database everytime

I run Glary Utilities and update its version everytime I run it
Glary scans for malware, defrags, and optimizes you PC

I used to waste money on Norton, and Spysweeper ... and most payware antivirus are fancy animated GIF's "All Show ... No Go"

Free AVG is no good for me, and other freeware antivirus are much too intrusive, and take control of your PC, deleting Trainz, all because "IT" thinks it's a threat
 
Last edited:
Windows Automatic Update sent a fix for this first thing this morning. (KB3079904)

As long as you have auto updates, and install every "important" patch, you shouldn't have anything to worry about.
They're usually pretty much on the ball.

Brian.
 
Cascaderailroad : "Windows Update" is part of your own Windows PC, I "Check for Updates"

I run two pc's and realised that the Trainz pc had never updates so i chequed for updates .

61 updates !!

Tanks for the message.
 
Disabling font downloads should mitigate this issue. In Firefox, you would go into about:config and double-click gfx.downloadable_fonts.enabled so it's false. In Chrome, go into settings and add the following to the launcher:
--disable-remote-fonts
 
Last edited:
@RRSignal,

I use Firefox, but am not sure how to get to about:config. Can you tell me how? By the way, I am using version 39.0.
 
@RRSignal,

I use Firefox, but am not sure how to get to about:config. Can you tell me how? By the way, I am using version 39.0.

Type it in the URL bar. After you click 'I promise I'll be careful' or whatever it says, you can just type gfx.downloadable_fonts.enabled and double-click on the search result to toggle the setting.
 
Back
Top