Sites exploit Windows image flaw

[-Art- (not Art)]

Computer users are being alerted to a new flaw in Microsoft Windows
which can be used to attack a PC.

The US net watchdog, the Computer Emergency Response Center (Cert), and
security firms have issued warnings about certain types of image files
called Windows Metafiles.

Experts said numerous websites were taking advantage of the flaw to
sneak into computers and install spyware.

Microsoft has said it is looking into the issue.

More on the report here:
http://news.bbc.co.uk/2/hi/technology/4566504.stm

-Art-

 

[alexmoskovitz]

Question:

Is it possible to generate a warning sign on XP when trying to open a
..WMF?
(Let's say you don't know you are about to open it, and when you do a
message pops up asking you if you want to really open it)

Alex

 

[Eric Huebner]

Am 29 Dec 2005 04:42:40 -0800 schrieb -Art- (not Art):

Computer users are being alerted to a new flaw in Microsoft Windows
which can be used to attack a PC.

The US net watchdog, the Computer Emergency Response Center (Cert), and
security firms have issued warnings about certain types of image files
called Windows Metafiles.

Experts said numerous websites were taking advantage of the flaw to
sneak into computers and install spyware.

Microsoft has said it is looking into the issue.

More on the report here:
http://news.bbc.co.uk/2/hi/technology/4566504.stm

-Art-

while waiting for microsoft you can use this workaround solution:

regsvr32 -u %windir%\system32\shimgvw.dll
reboot

(maybe some apps won't work after this. it can be undone by
regsvr32 %windir%\system32\shimgvw.dll)

source:
<http://www.heise.de/newsticker/meldung/67814>