Microsoft releases patch early for WMF exploit



Microsoft has released the patch for the WMF vulnerability that’s been all over the news early. It was released to http://windowsupdate.microsoft.com ahead of the previously announced January 10th “patch Tuesday”.

Congrats to Microsoft for getting this out the door early. That should go a long ways to blunting the attacks that are making use of this vulnerability.


I’m away from my main PC right now, so I don’t have much other detail and will try to update more as I can.

bulletin from Microsoft here, Patch and details here Sans has installation recommendations here

The security fix is covering as well and Brian did predict MS would release the patch early given all the bad press over waiting until Patch day.

Here’s a walk through of the install suggestions if you have the third party patch and registry work around:

1. Reboot your system to clear any vulnerable files from memory
2. Download and apply the new patch
3. Reboot
4. If you installed one of the unofficial, third-party patches, you may uninstall it by using Add/Remove Programs.
5. Re-register the .dll if you previously unregistered it. To do this:
* Click Start, click Run, type “regsvr32 %windir%system32shimgvw.dll” (without the quotation marks), and then click OK.
* A dialog box appears to confirm that the un-registration process has succeeded. Click OK to close the dialog box.
6. Reboot one more time just for good measure

Looks as though it was released a bit before 5 PM EST this afternoon. Sans has moved the Infocon back down to green for the first time in several days. (I can’t recall how many days straight it’s been at yellow, but it’s the longest stretch at yellow that I can recall.)

Related Posts

Blog Traffic Exchange Related Posts
  • Zero-day ( 0-day) Microsoft Word exploit There was some news on this last night at Incidents.org, today F-secure has some details as well on the trojan that's dropped in this circulating, exploit. It seems as though the initial attack was very targetted against a specific organization. Antivirus packages did not recognize the trojan that the exploit......
  • Adobe Acrobat reader update On the heels of yesterdays massive update day from Microsoft, Adobe has released an update for the free Adobe Reader. The Adobe reader is one of those ALMOST essential applications that MOST everyone has installed. So, this will be of particular interest to MOST computer users. A SERIOUS security flaw......
  • Firefox zero-day vulnerability (or is it?) I saw a comment somewhere else that zero-day was overused and in essense ANY previously unknown vulnerability in open source software is technically zero day... the intent here though is to use the word in this context.... "vulnerability has been released without giving the vendor an opportunity to patch..." Yes,......
Blog Traffic Exchange Related Websites
  • Indiana 9th District House Race Updates: Barron Hill and Todd Young To view other TCJ Research Polls released today, click HERE. To read our full analysis of how and why Republicans will take the Senate, click HERE. Republican Todd Young faces off against Democrat Barron Hill in this highly contested house race.  Incumbent Hill has been under fire recently for his comments at......
  • Remote reboot from MMC Have you ever needed to reboot a machine remotely? This is easy to do via MMC, the Microsoft Management Console. In XP, do the following. 1) Right click the My Computer icon and choose manage to bring up the MMC. 2) From there, go to the Action menu and choose......
  • Paying Debt Collection The FTC had over seventy thousand complaints in 2007 leveled against debt collectors, third party agencies that collect debts for various businesses and banks. It can go without saying that not all debt collectors follow the rules. Here is some info that can help you to deal with (or not......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site