This month’s patches affects all versions, including Windows 7 and Windows Server 2008 R2. The good news is that exploiting this vulnerability isn’t easy. The attack involves sending a large number of UDP packets to an unprotected port. Microsoft says it is likely that exploit code is available in the wild, or will be soon. A patch for the zero-day vulnerability used by the Duqu installer did not arrive, nor was it expected, Symantec’s Talbot believes that Microsoft may not wait until a routine Patch Tuesday.”]
Source: https://www.csoonline.com/article/2130062/microsoft-patch-snuffs-out-major-worm-potential.html