WMF patch from Microsoft expected January 10th



The Microsoft security bulletin on the WMF vulnerability has been updated to indicate that Microsoft expects to release an update for the issue in their regular patch release on January 10th. The first couple paragraphs strike me as a bit defensive. Explaining about their immediate mobilization of Incident Response and immediate work on a patch, in addition to the explanation of extensive testing of the patch in 23 languages….


I didnt’ see any reference to the unofficial patch, and didn’t really expect to. There was text to indicate a somewhat downplaying of the current threat. (In my view). Hopefully the patch will be out before it’s use is “widespread” in Microsoft’s view.

–update 1/4/06–
The SecurityFix is reporting on this today. With a suggestion that MS may release a patch sooner than announced given the bad press they’re getting from the announcement. Also, Windows 98 patch outlook does not appear to be good.

Related Posts

Blog Traffic Exchange Related Posts
  • Lawsuit to block the release of Windows Vista? Betanews.com is reporting on a move by a public interest lawyer (who is running as a Republican for the Governors Office of Illinois) who is attempting to block the distribution of Windows Vista. He intends to ask Microsoft for an unconditional warranty that the operating system is free from major......
  • Fasten your seatbelts - Browser vulnerability a day to be announced in July I hope there aren't too many browser developers that have planned on taking July off..... I ran across browserfun.blogspot.com where it is planned to release information on a web browser vulnerability EACH DAY for the month of July. This comes to us from HD Moore of Metasploit. Judging from This......
  • Lotus Notes WMF vulnerability This is really the same zero-day wmf vulnerability, but there is a twist. It's been found that Lotus Notes v. 6.x and up are vulnerable to the Windows Meta File (WMF) exploit that's making the rounds. Probably not surprising given that there are reports of many vectors of attack, not......
Blog Traffic Exchange Related Websites
  • Updating Daylight Savings Time (Microsoft "Cancel or Allow") I just woke up and remembered that it was the new updated daylight savings time. Since I'm Lazy, I didn't install the patch on my computers for the daylight savings headache. I thought it would be a quick and easy download. I should have known better. I was given the......
  • Microsoft to Improve User Access Control in Windows 7 I was just reading a Slashdot article about Microsoft improving User Access Control (UAC) in Windows 7. In the cited PC Pro article, Microsoft engineer Ben Fathi says: We've heard loud and clear that you are frustrated. You find the prompts too frequent, annoying, and confusing. We still want to......
  • Download Windows Server 2008 & Vista SP2 Microsoft released Windows Server 2008 and Windows Vista: Service Pack 2 on 26th May. I earlier had Windows Vista Ultimate: Service Pack 1 on my Dell Lappy. I upgraded it to SP2. Here's a screeny: Before installing, here are few things you need to know: Prerequisites If you have any......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site