A new one vulnerability of operating systems Windows was recently discovered by Tavis Ormandy, employee (Security Engineer) of Google. This "new" vulnerability turned out to be, in fact, almost 17 years old, she being present in Windows OS (32bit) since launch Windows NT 3.1, in 1993.

What risk does this vulnerability expose us to and how can it be avoided?

Vulnerability of systems Windows 32bit is generated by a breeze in Virtual DOS Machine (VDM), used for the support 16-bit applications, this allowing the manipulation of the great majority of kernel processes (core system files of operation) and system-level code execution – cu Administrator privileges – through one the program will be on the 16th. The tests done by the one who discovered the vulnerability proved that it exists on the systems Windows XP, Windows Server 2003, Windows Server 2008, Windows Vista and Windows 7. The risk is maximum, considering that a possible hacker can open one administrator level command prompt and take control of the system.

To protect our systems from possible attacks (the degree of risk increased by up to 100% after the existence of this vulnerability was made public and Microsoft he announced that it will take at least another week until he will make one Security update which will solve the problem) it is enough to deactivate the sub-system MS-DOS FROM Group Policy Editor (the system will work normally, without compatibility problems - considering that 16-bit applications are no longer fashionable):

1.tasted GPEDIT.MSC in Search programs and files FROM Start Menu And give Enter.

2. Go to Computer ConfigurationAdministrative TemplatesWindows ComponentsApplication Compatibility and double click on Prevent access to 16-bit applications

3. On the left side, select Enable Then click on Apply and OK. Inchideti Group Policy Editor.

Note: This vulnerability does not exist on operating systems Windows 64bit.