On April 10, we echoed the “death” of Windows XP, an operating system that would no longer receive support from Microsoft, and which has managed to become the longest-lived version of Windows.
Although it is not officially supported, Microsoft keeps updating Windows XP on security, as shown by the recent update that the system has received after discovering a security flaw capable of executing malicious code remotely.
Windows XP keeps updating, despite being discontinued
As we read in news.softpedia, it has been discovered a new vulnerability in Windows It affects Windows XP, Windows Server 2003, Windows 7 and Windows Server 2008 versions. At the moment, Windows 8 and Windows 10 are not vulnerable.
Due to this vulnerability it is possible to execute code remotely without requiring user interaction, and the problem can spread from PC to PC, something that has made Microsoft react quickly.
“The flaw itself is not the remote desktop protocol (RDP), which itself is not vulnerable. This vulnerability is a pre-authentication and does not require user interaction. In other words, the vulnerability is ‘wormable’, which means that any future malware that exploits this vulnerability could spread from vulnerable computer to vulnerable computer in a manner similar to how WannaCry malware spread around the world in 2017. “
The company has released corresponding patches for Windows versions, which automatically install the update from Windows Update. However, in cases like Windows XP, it is necessary to carry out this process manually.
To update Windows XP it is necessary to access the Microsoft Update catalog and install the patch manually
To do this, it is necessary to download the update from the Microsoft Update catalog, and proceed to install it on our computer. Microsoft warns of the Importance of Updating Affected Windows Versions, admitting that the operating system vulnerability allows remote code execution.
With this update, there are already two security updates that Windows XP receives after its support, having been updated in 2017 after WannaCry was discovered. Recall that Windows XP was abandoned in 2014, but Microsoft Windows Embedded POSReady 2009 support extended, based on Windows XP, another five years.
Via | Softpedia