WMF vulnerability advisory update
Microsoft has updated their security bulletin on the WMF vulnerability to note a couple things. One, they acknowledge that embedded images within a document can trigger the exploit. Previously they said this needed further investigation. Second, they are seconding what I’ve been finding that Windows 98 and other pre-XP systems are not as critically at risk for this vulnerability….
Although Windows 98, Windows 98 Second Edition, and Windows Millennium Edition do contain the affected component, at this point in the investigation, an exploitable attack vector has not been identified that would yield a Critical severity rating for these versions. Per the support life cycle of these versions, only vulnerabilities of Critical severity would receive security updates. For more information about the security update support policy for these versions of Windows, visit the following Web site.
Unfortunately it’s their reason for not issuing a fix for those platforms, which mens the second unofficial patch mentioned earlier today from an antivirurs company may be the only patch those systems get.
It’s not comforting that they will not release an update because it’s not critical. If you recall there was a recent 0-day explorer exploit that was a variation on an earlier known vulnerability that originally was not deemed critical.
Popularity: 1% [?]
Related Posts - System patching 0-days and ancient-day vulnerabilities There's a good article at Michael Sutton's Blog which points out something that really makes sense and I think many people are aware of, but with all the buzz that a new previously undisclosed vulnerability has, we forget. The point is this, there are plenty of machines online vulnerable to......
- Mac Wireless driver Security vulnerability revisited A couple weeks ago the hot story was about the demonstration of a vulnerability in a 3rd party wireless card driver on a Mac. The individuals that demonstrated the vulnerability (in a video taped presentation) also claimed that many wireless drivers were vulnerable to this same flaw and it included......
- How to Remove Cyber Protection Center | Removal Guide Cyber Protection Center is related to Cyber Security (see how to remove cyber security). These are rogue antivirus applications that will generate many warnings and error messages on your system claiming (falsely) that your system is infected with countless virus and trojan infected files. In reality, Cyber Protection Center may......
Related Websites - Still don't know what's the best hosting solution for you? Alrighty, last month I wrote an article regarding a low cost, high quality hosting solution. That said, there is not a single solution that is a perfect fit for everyone. After all, we have varying needs of varying complexity, not to mention varying budgets! So in this article, I want......
- How to Install a Home Security System: Most Common Pitfalls Installing a home security system might seem easy. To be sure, it’s a lot easier to install one today than it was just a decade ago. Inexpensive consumer electronics components combined with robust wireless technology means that even an amateur can put in a decent system. Just because it’s easy,......
- Determining the Best Age to Start Social Security Many baby boomers are in the home stretch toward retirement and thinking about what will be the best age for them to claim Social Security retirement benefits. I have already written about this issue from several different angles but I thought it would make sense to pull all of that......
Similar Posts
- Windows 98 WMF patch
- Microsoft updates for May
- Big Windows June update day
- Exploit for Unpatched Internet Explorer vulnerability
- Microsoft August Updates