Microsoft warns of PC hijacking riskComputer giant says security fixes 'critical'

12 April 2007

Windows users risk having their PC hijacked unless they download the latest security patches from Microsoft.

The computer giant's latest monthly security update highlights major holes in Windows which could mean someone else is able to take control of your computer.

Microsoft has graded five of the patches as ‘critical’ and consumers should download the fixes as soon as possible unless they have opted to automatically accept security updates.

Users of Windows Vista, XP, 2000, Server 2003 and Microsoft Content Management Server are all affected.

Remote code execution

Microsoft says the patches fix weaknesses in Windows which could lead to ‘remote code execution’ which means someone could take over a PC and steal information.

Kim Gilmour, senior researcher at Computing Which? said: ‘These days you can't just buy a piece of software and think the story ends there. You'll often need to regularly download fixes that patch up newly-discovered vulnerabilities. Microsoft claims it had security in mind when building its new Vista operating system, but never said it would be foolproof. If you're thinking of upgrading to Vista, Computing Which? advises people to wait a few more months until the system has a chance to bed down.’

The Microsoft security bulletin can be found at http://www.microsoft.com/technet/security/bulletin/ms07-apr.mspx