Official WMF exploit patch leak



It looks like, the Windows patch (or a beta) for the WMF exploit has been leaked online. It sounds as though Steve Gibson got a hold of a copy and has tested it along side the unofficial patch. All seems to go well. He notes that the build date was December 28th. So, they have been on it since very early on. That’s reassuring. It would be nice if their testing process could be a bit streamlined though.


I do wonder about the “leaking” of the patch – Microsoft officialy recommends against trying it. (I would too – stick with the unofficial patch until the new update is ready.) I wonder a) what kind of testing structure they’re putting it through and b) what the harm would be after doing initial testing to make sure it didn’t cause crash/burning/”oh the humanity” release an early version through a registered hotfix download. (Let people give contact information, receive a download link and then follow up with did it work, what problems/etc?) (Of course give appropriate disclaimers as well…)

I’ve heard references that it might come out earlier than Tuesday, but I think that was just speculation.

Related Posts

Blog Traffic Exchange Related Posts
  • WMF exploit testing on Windows 98 I had hoped to get in another test of Windows 98 with yet another WMF viewer (tried Kodak imaging, and irfanview). So far I haven't seen a way that the WMF exploits can work on Windows 98 SE. I'm running out of time before I have to run to some......
  • WMF patch from Microsoft expected January 10th The Microsoft security bulletin on the WMF vulnerability has been updated to indicate that Microsoft expects to release an update for the issue in their regular patch release on January 10th. The first couple paragraphs strike me as a bit defensive. Explaining about their immediate mobilization of Incident Response and......
  • More WMF exploit testing on Windows 98 I've spent some more effort on trying to infect Windows 98 SE in a virtual machine with some of the exploit samples I can find. The first attempt was at a website with the .wmf download. No luck infecting the system there. Then, I've loaded up the image and visited......
Blog Traffic Exchange Related Websites
  • Best Registry Cleaner for Windows Xp The search for the best registry cleaner for windows xp might be sometimes difficult because of the numerous options that are currently available on the market. The best thing you can do in order to get informed on the registry cleaners is to browse the internet in search for forums,......
  • Windows Vista SP2: 6 Things You Need to Know Windows Vista Service Pack 2 is set to be released as a public beta version Thursday, Microsoft has confirmed. The program, which has been under limited testing since October, will become available on the Microsoft TechNet site. Here's what you need to know before making the upgrade. Vista Service Pack......
  • Washing Windows 101 Washing windows is one of those household chores that no really looks forward to. But cleaned windows can really give the appearance of your home, both inside and out, a boost. If you've been spraying window cleaner and rubbing away with paper towels, or hosing off those upper floor windows,......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

One Response to “Official WMF exploit patch leak”

  1. The PC Doctor Says:


    Leaked “Official” patch

    Looks like a Microsoft patch for  the WMF exploit has been leaked .  Steve Gibson  alludes to it’s presence on the web.
    On many levels this bothers me – I can see there being an underground explosion in “fake” &#…


Switch to our mobile site