WMF unofficial patch updated



There’s been an update to the unofficial patch for the WMF (Windows MetaFile) vulnerability. The main change appears to be some options to allow for quiet installation (unattended) to help administrators in large environments try to roll the patch out in automated login scripts/etc.

It can be found here or at the incidents.org site.


My biggest question at this point is how long before Microsoft releases a patch and how similar it will be to the unofficial patch. I’m sure they want to do some quality control testing on anything they release so it’s thoroughly tested, but…. I would have thought with a severe problem they might have published a “this should solve the problem but it may have other unintended consequences” stopgap.

Hopefully there will be an official patch this week, but don’t hold your breath.

I saw someone comment that Microsoft should pay the “unofficial patcher…” to incorporate his fix into theirs. You would think that his work would make what they’re trying to do easier. One thing though, Microsoft has traditionally seemed slow to swallow it’s pride and accept anything from outside their walls as a good thing. It’s going to be an interesting week or two, no doubt….

Related Posts

Blog Traffic Exchange Related Posts
  • Windows XP Unable to Login After Cleaning Out Rogue Antivirus This article may come in handy if you are out there battling the latest rogue du jour. Occasionally I have been through a cleaning process for these rogues and got to a point where the scanner had run and cleaned things out (whether it was malwarebytes antimalware or superantispyware.) It......
  • WMF patch from Microsoft expected January 10th The Microsoft security bulletin on the WMF vulnerability has been updated to indicate that Microsoft expects to release an update for the issue in their regular patch release on January 10th. The first couple paragraphs strike me as a bit defensive. Explaining about their immediate mobilization of Incident Response and......
  • Microsoft's speed to get security patches out Brian Krebs at the Security Fix has done an interesting study related to how long it takes Microsoft to release a security fix for a problem, starting from the time they are notified of the security vulnerability. For the most part, 134.5 days has been the window between notification and......
Blog Traffic Exchange Related Websites
  • When Operating your Side Business Remember to Value ‘You’ As I have talked about I have a small trusts and estate law practice (read: really small, just a handful of clients) as a sort of side business to supplement, not supplant, my day job.  When I met with one of my first clients I told him the fee......
  • Windows 7 Sales Spike to Overtake Mac OS X [/caption]Proving there is no accounting for taste Microsoft’s latest attempt at a decent operating system, Windows 7, is now running on 5% of the computers online.  The daily average of online users as measured by Internet metrics company Net Applications showed that an increase last week put Windows 7 above......
  • Another Great Week Reading My Fellow PF Bloggers Pinyo at Moolanomy (where I also frequent the Answers section) published What Is Your Credit Card Philosophy? where he discussed the different aspects of credit card that you should pay attention to, and his philosophy on cards which pretty much mirrors my own. Johnathan Mead who is the person behind......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site