As I reported on March 11, the vulnerability sits in the SMB 3.0 network communication protocol, and if successfully exploited by an attacker could enable remote and arbitrary code execution and potentially take control of the system. Microsoft said that it had not yet “observed an attack exploiting this vulnerability,” but recommended that users “apply this update to your affected devices with priority.” There have, however, already been proof-of-concept exploits developed by security researchers. Which likely means it is only a matter of time, a very short period of time at that, before unpatched systems start being exploited by attackers.
2 thoughts on “Emergency Windows 10 Critical Security Update: Microsoft Urges Users To ‘Take Action’”