Ars Technica

How to fix a program without the source code? Patch the binary directly

When a company like Microsoft needs to fix a security flaw in one of its products, the process is normally straightforward: determine where the bug lies, change the program’s source code to fix the ...
Bleeping Computer

Office Equation Editor Security Bug Runs Malicious Code Without User Interaction

Microsoft has patched today a huge security hole in Microsoft Office that could be exploited to run malicious code without user interaction on all Windows versions released in the past 17 years. The ...
ZDNet

Windows patches: Microsoft kills off Word's under-attack Equation Editor, fixes 56 bugs

Microsoft has released its first Patch Tuesday security update for 2018, which brings fixes for 56 flaws, as well as Adobe Flash updates, and a fix for a new Office vulnerability caused by Word's ...