|
[Previous entry: "Dig deep brothers and sisters."] [Main Index] [Next entry: "18 body hacks."] 01/01/2006 Entry: "New windows vulnerability is looking pretty bad." New windows vulnerability is looking pretty bad. Someone found out how to execute code using WMF files. Its being spread via email, IM, and the web. Whats a WMF file you ask? It doesn't matter. You can rename a WMF into a jpg, gif, or whatever. Until Microsoft releases a fix you can disable the service that executes wmf like so: Disable: Start > Run > regsvr32 /u shimgvw.dll Cavaet: this will break thumbnail view of images in windows. After MS releases a patch you can restart it like so: Enable: Start > Run > regsvr32 shimgvw.dll Also: Official MS advisory here. And third-party patch. FWIW, I've unregistered the dll and installed the third-party patch to be extra careful.
|
