A security flaw affecting Microsoft s Windows operating system that was exploited by the Stuxnet worm was publicly disclosed more than a year before the worm appeared, according to a researcher at Symantec Corp. The vulnerability affects most versions of Windows, could allow remote code to be run on vulnerable systems. Microsoft disclosed and patched the hole in its September security update on September 14, saying it learned of the vulnerability from researchers at Kaspersky Lab. Microsoft did not immediately respond to requests for comment, but a company spokesman said that the company was not made aware of the issue at the time.
Source: https://threatpost.com/microsoft-missed-2009-published-article-stuxnet-type-attack-092310/74508/

