Microsoft kills 2 security bugs

1 min. read

Published on July 15, 2015

published on July 15, 2015

Readers help support Windows Report. We may get a commission if you buy through our links.

Two new security bugs have been squashed by Microsoft as part of Patch Tuesday, making computing safer for everyone.

The first involved a security flaw in the latest version of Internet Explorer 11 on Windows 7 and Windows 8.1 devices. One of the three companies credited with reporting this vulnerability was Vectra Networks, which discovered it through monitoring an online conversation between a security researcher and malware developer Hacker Team regarding the sale of information relating to the flaw.

The second security flaw was discovered by Google’s Project Zero and First Look Media’s Morgan Marquis-Boire who found it in a Hacking Team data dump. The flaw provides a, not so serious, escalation of privileges on a user’s computer but when combined with a separate Flash security flaw, allows for the installation of malware.

Both of these Windows security flaws have now been fixed and have been labelled, CVE-2015-2425 and CVE-2015-2387 by Microsoft respectively. Adobe has also fixed the Flash security bug in addition to several others earlier this week.

Is security something that concerns you? What steps do you take to stay safe?

Radu Tyrsina

Radu Tyrsina has been a Windows fan ever since he got his first PC, a Pentium III (a monster at that time). For most of the kids of his age, the Internet was an amazing way to play and communicate with others, but he was deeply impressed by the flow of information and how easily you can find anything on the web. Prior to founding Windows Report, this particular curiosity about digital content enabled him to grow a number of sites that helped hundreds of millions reach faster the answer they're looking for.