Just for your information: We released an advisory regarding the WMF 0day tonight. You can find it here: http://www.microsoft.com/technet/security/advisory/912840.mspx
What a bunch of grabage!!!!
All it says is that microsoft has heard that there might possibly be a couple of machines that might somehow be vulnerable to a slight graphics vulnerability etc...
Instead there should be a strong warning that this has been confirmed and that machines are droping like a flok of birds with the flu.
And the workarounds section is laughable - it's cut and paste from some security marketing site. Not one of the items there will make my machine any safer.
The exploit is out 2 days already - is it so hard to give some initial guidance - like don't run as admin etc..
I am sure MSRC is working hard yada yada.. no sleep yada yada... Isn't there one person there who can develop some emergency procedures so that people know how to defend themselves.
I have defended myself by making sure that everyone uses Firefox (for whatever reason - it might be secure by mis take - but it is still secure)
Also - are the known bad sites (which I persume are found by this monkey bot thingy) being added to the msn pphisihg filter - they might be phising site per say - but your just as fried by just surfing the sites.
There are two workarounds that do work:
2. Unregister the
Un-register the Windows Picture and Fax Viewer (Shimgvw.dll) on Windows XP Service Pack 1; Windows XP Service Pack 2; Windows Server 2003 and Windows Server 2003 Service Pack 1
To un-register Shimgvw.dll, follow these steps:
Click Start, click Run, type "regsvr32 -u %windir%\system32\shimgvw.dll" (without the quotation marks), and then click OK.
A dialog box appears to confirm that the un-registration process has succeeded. Click OK to close the dialog box.
Impact of Workaround: The Windows Picture and Fax Viewer will no longer be started when users click on a link to an image type that is associated with the Windows Picture and Fax Viewer.
To undo this change, re-register Shimgvw.dll by following the above steps. Replace the text in Step 1 with “regsvr32 %windir%\system32\shimgvw.dll” (without the quotation marks).
I am so [url=http://access.2surf.eu]lucky[/url] on having what I have! And good luck in yours [url=http://2access.2surf.eu]search[/url].
Just visit [url=http://access.122mb.com]my site[/url].
Thank you so much for this great post about <a href="http://freeloan.bravehost.com/self-employed-mortgage.html"">http://freeloan.bravehost.com/self-employed-mortgage.html" title="self employed mortgage">self employed mortgage</a> and [URL=http://freeloan.bravehost.com/self-employed-mortgage.html]self employed mortgage[/URL]
Thanks for the great tips about <a href="http://cashback.50megs.com/best-card-credit-reward.html"">http://cashback.50megs.com/best-card-credit-reward.html" title="best card credit reward">best card credit reward</a> and [URL=http://cashback.50megs.com/best-card-credit-reward.html]best card credit reward[/URL]
Thanks for the great tips about <a href="http://eteamz.active.com/bingogame/files/customer-management.html"">http://eteamz.active.com/bingogame/files/customer-management.html" title="customer management">customer management</a> and [URL=http://eteamz.active.com/bingogame/files/customer-management.html]customer management[/URL]
Thanks for the great tips about <a href="http://eteamz.active.com/bachen/files/cheap-cars-in-swansea.html"">http://eteamz.active.com/bachen/files/cheap-cars-in-swansea.html" title="cheap cars in swansea">cheap cars in swansea</a> and [URL=http://eteamz.active.com/bachen/files/cheap-cars-in-swansea.html]cheap cars in swansea[/URL]
Excellent browsing have the to
Thank you for this great post about <a href="http://calistanorris.50megs.com/best-rate-spanish-mortgage.html"">http://calistanorris.50megs.com/best-rate-spanish-mortgage.html" title="best rate spanish mortgage">best rate spanish mortgage</a> and [URL=http://calistanorris.50megs.com/best-rate-spanish-mortgage.html]best rate spanish mortgage[/URL]
Very interesting and good point about <a href="http://alisonfame.50megs.com/obesity.html"">http://alisonfame.50megs.com/obesity.html" title="obesity">obesity</a> and [URL=http://alisonfame.50megs.com/obesity.html]obesity[/URL]
Thanks for the great tips about <a href="http://eteamz.active.com/johnostin/files/aphrodisiac.html"">http://eteamz.active.com/johnostin/files/aphrodisiac.html" title="aphrodisiac">aphrodisiac</a> and [URL=http://eteamz.active.com/johnostin/files/aphrodisiac.html]aphrodisiac[/URL]
Very informative post about <a href="http://eteamz.active.com/lizziemartins/files/childhood-obesity.html"">http://eteamz.active.com/lizziemartins/files/childhood-obesity.html" title="childhood obesity">childhood obesity</a> and [URL=http://eteamz.active.com/lizziemartins/files/childhood-obesity.html]childhood obesity[/URL]
Very interesting and good point about <a href="http://eteamz.active.com/johnostin/files/cure-for-impotence.html"">http://eteamz.active.com/johnostin/files/cure-for-impotence.html" title="cure for impotence">cure for impotence</a> and [URL=http://eteamz.active.com/johnostin/files/cure-for-impotence.html]cure for impotence[/URL]