Microsoft Issues Workaround for ‘Duqu’ Flaw

Microsoft has released an advisory and a workaround fix for the zero-day vulnerability exploited by the “Duqu” Trojan malware. The critical vulnerability resides in most supported versions of Windows, including Windows XP, Vista and Windows 7. The problem stems from the way Windows parses certain font types. Microsoft says it is aware of targeted attacks exploiting this flaw, but that it believes few users have been affected.