Microsoft fixes a critical flaw in Office of the Patch Tuesday for April
Of the eleven security vulnerabilities addressed by the updates from Microsoft in April, one is already being exploited by hackers via Office documents trapped.
Microsoft yesterday released its own set of security patches as part of its monthly updates for its Patch Tuesday of April. On the menu, six security bulletins that fix vulnerabilities including eleven in Windows, Office and Internet Explorer. Two bulletins are classified as major and four others as critical.
Of these, the bulletin MS12-027 is the most important because it corrects a flaw exploited by hackers. It concerns an ActiveX control present in all 32-bit versions of Office 2003, 2007 and 2010 and in SQL Server. Office documents using trapped, hackers can take control of a PC.
Microsoft has not revealed the beginning of the attacks or their magnitude. The series of update also includes a security bulletin which is also valid for the Consumer Preview of Windows 8.