Google has again revealed a Windows bug and Microsoft doesn’t seems to like it. Mateusz Jurczyk is the person behind revealing the bug in the windows graphics library. The bug allow attackers to access memory by using EMF meta files. It is nothing but the tool which is implemented in the Windows Graphic Component GD library (gdi32.dll) by which applications uses graphics.
Google Project Zero works on the policy “once we tell you about the bug, fix it within 90 days or else it will be automatically visible to the public”.
Microsoft released the security update for Microsoft Graphics Components, MS16-074 which was supposed to fix the flaws. But the fix somewhere neglected the issue of allow access to memory. Microsoft was told about this issue on November 16, 2016 but the company needed more time fix the issue. This triggered the 90 days policy of Google and it revealed the flaws to the world.
Leave a Reply
Your email address will not be published. Required fields are marked *