new Windows zero-day vulnerability (WMF)

[Audioaficionado]

Here's some info, links and maybe a temporary workaround.

http://www.geekzone.co.nz/content.asp?contentid=5657

If it isn't one thing, it's another

 

[Nexus Realized]

*sigh*

Thanks for the heads up

 

[redduc900]

Yeah, thanks for that... I hadn't heard about that one.

 

[tenchi86]

Thanks for the heads up.

 

[redduc900]

MS released this Security Advisory on their TechNet site yesterday, regarding the vulnerability...

Microsoft Security Advisory (912840)
Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution.
http://www.microsoft.com/technet/security/advisory/912840.mspx

 

[Audioaficionado]

I did the regsvr32 /u shimgvw.dll in my Run box workaroud and all 4 of my LAN PCs should be safer now until an official patch is released. regsvr32 shimgvw.dll will put Humpty Dumpty back together again.

 

[redduc900]

A couple more things that folks can do to protect themselves, in addition to unregistering the shimgvw.dll...

Do not save, open or preview untrusted image files from email or other sources, or open untrusted folders and network shares in Explorer. Set security level to "High" in Microsoft Internet Explorer to prevent automatic exploitation.

 

[Audioaficionado]

Here's a patch with msi installer

http://users.utu.fi/vpjsuu/wmfhotfix/wmfhotfix.msi

This is a third party patch to help until Microsoft gets one out.
The advantage to an msi package is that it's easy to deploy over a network and easier to uninstall once the Microsoft fix comes out.

 

[redduc900]

Here's another one...

Windows WMF Metafile Vulnerability HotFix
http://www.hexblog.com/2005/12/wmf_vuln.html

 

[Xtreme Barton]

hey at least there gonna be one step closer... to what exactly i dunno but a fix is on its way ...lol

think its possible to ever have a os thats not vulnerable ?? man i hope so .. im tired of hearing about this crap .. (waiting for MRD to show up ) hehehehehe

 

[gt24]

http://news.ft.com/cms/s/0d644d5e-7bb3-11da-ab8e-0000779e2340.html

Kinda sensationalistic story... but the jist of it is that Microsoft will not release a patch for this vulnerability before the normal patch release date (which will be January 10th), also known as Patch Tuesday. So, in other words, a fix is comming in exactly a week but until that day comes, be careful.

 

[Audioaficionado]

Then a month later they will release the patch to try and fix what this patch breaks.

 

[Captain Newbie]

http://news.ft.com/cms/s/0d644d5e-7bb3-11da-ab8e-0000779e2340.html

Kinda sensationalistic story... but the jist of it is that Microsoft will not release a patch for this vulnerability before the normal patch release date (which will be January 10th), also known as Patch Tuesday. So, in other words, a fix is comming in exactly a week but until that day comes, be careful.

Good advice Exercise caution.