Another trojan using WMF exploit in SPAM

Wednesday, January 4th, 2006

F-Secure is reporting on another SPAM attack that tries to get people to click on a link to a site with an exploit-crafted WMF file. The message is along the lines of a claimed Professor at Yale announcing the unfortunate vandalism over the New Year holiday, the link purports to be pictures of the act [...]

WMF vulnerability checker

Sunday, January 1st, 2006

The same person that has given the New Year’s gift of an unofficial patch for the WMF exploit circulating has also provided a WMF vulnerability checker, download and install, it will tell if you’re vulnerable. Post is available here. According to the first comment it seems as though the vulnerability checker is triggering Norton’s auto-protect. [...]

Workaround for the critical WMF zero-day exploit

Wednesday, December 28th, 2005

The Windows Meta File (WMF) zero-day (0-day) exploit is apparently, VERY nasty, no user intervention required (unless running firefox or opera). Just VISITING a malicous site (viewing a malicious email with image…) would be enough to get the system owned. It sounds as though a FULL reinstall is the best solution. Sunbelt has had some [...]

Merry Christmas and a Happy New Year

Saturday, December 24th, 2005

For those that read this I’d like to wish you all a Merry Christmas and a Happy New Year. I have several posts scheduled to come out each day through the 1st of the New Year, but will likely not be adding to that unless something big happens. I’ll also be taking the week away [...]

Google
 
Web www.averyjparker.com

Switch to our mobile site