In the next few hours should go traditional monthly Patch Tuesday for Windows. And reportedly it will be fixed, affecting all OS over the last 20 years.
We are talking about the library crypt32.dll that’s used for cryptographic tasks. With its help, processed certificates, digital signatures of trusted programs and so on. Also, this library allows developers to protect applications against counterfeiting, to prevent the installation of illegal software and similar things.
However, reportedly, the library contains a vulnerability that allows you to take control of the system and to sign the fake certificate. This was reported on Twitter will Dormann, a security researcher from the coordinating center CERT. According to him, all users need to install the Patch Tuesday, as soon as possible.
It is noted that previously, the problem is Microsoft announced the NSA, and this is the first case in history when a Federal Agency specifies to the company at the lack of security. In the Corporation yet said nothing about the nature of the problem, saying only that has released a preview version of the patch for participants of the early access program. However, they do not use for production systems.
Because users have to wait for the release.
Windows 7 support officially ends