Results 1 to 15 of 74

Thread: New Windows Exploit found, please read this and take appropriate precautions.

Threaded View

Cosmic New Windows Exploit found,... 4th-January-2006, 18:40
Guest wow. thats kinda scary. i... 4th-January-2006, 19:15
Evans Rep the guy, guys. ;) I'm... 4th-January-2006, 19:16
Guest i just repped him. good move... 4th-January-2006, 19:20
JoPrk Whats wrong with Opera it is... 5th-January-2006, 03:02
legoman woot opera woot, again... 5th-January-2006, 23:40
malice2501 there was just an update... 6th-January-2006, 00:15
Cosmic Thanks for the rep, guys. :)... 4th-January-2006, 19:41
polobunny That's what you get when... 4th-January-2006, 20:02
Cyberxion I got an email about this... 5th-January-2006, 03:11
Vivi Linux for the win :P. 5th-January-2006, 03:13
Kazuya I've been switching between... 5th-January-2006, 03:43
Evans That. ;) 5th-January-2006, 03:53
Kazuya Okay, so getting a prompt... 5th-January-2006, 03:57
Vivi not to mention it's a M$... 5th-January-2006, 03:58
Anonymous ass. 5th-January-2006, 03:50
polobunny It's not a common download,... 5th-January-2006, 04:01
Kazuya By default, Internet Explorer... 5th-January-2006, 04:09
malice2501 Aight, since all of that tech... 5th-January-2006, 06:54
polobunny This cmd line will also... 5th-January-2006, 04:34
Fer! So, Maxthon(MyIE2) can be of... 5th-January-2006, 04:46
polobunny Just patch the damn thing and... 5th-January-2006, 04:50
Fer! I have now realized how... 5th-January-2006, 06:04
Evans You can be infected by any... 5th-January-2006, 07:00
malice2501 ah, guess ill stay away from... 5th-January-2006, 07:04
Evans Yeah, I know. :P Also,... 5th-January-2006, 07:08
malice2501 I actually think ive been hit... 5th-January-2006, 07:20
pkt-zer0 What the heck? Why should an... 5th-January-2006, 07:20
malice2501 from what i understand, which... 5th-January-2006, 07:21
polobunny Ha it would be damn ironic to... 5th-January-2006, 07:22
pkt-zer0 Yeah, I get it, but there is... 5th-January-2006, 07:39
Evans Does this problem occur with... 5th-January-2006, 07:41
pkt-zer0 Like, BMP? :P Nope, not... 5th-January-2006, 07:44
Evans I got the idea that images... 5th-January-2006, 07:47
Lag So is this in some way... 5th-January-2006, 08:02
Evans Why would you come and ask... 5th-January-2006, 08:03
Lag Another Lag question... 5th-January-2006, 08:13
Evans Nope, you have to either stop... 5th-January-2006, 08:17
Lag Bah... I don't use IE anyway.... 5th-January-2006, 08:19
pkt-zer0 You might still get screwed... 5th-January-2006, 08:24
Lag But my mom always tells me... 5th-January-2006, 08:26
Evans Firefox is protection enough.... 5th-January-2006, 08:25
Evans My God. Lag, read the first... 5th-January-2006, 08:31
Lag I was too lazy to go past the... 5th-January-2006, 08:34
DarkCyntax Microsoft uploads the fix... 5th-January-2006, 10:54
Guest i just installed the patch.... 5th-January-2006, 12:27
Josh Here is a file that I found... 5th-January-2006, 13:06
Ahkei Lies. That's one of them... 5th-January-2006, 13:23
pkt-zer0 Fear not, Firefox wouldn't... 5th-January-2006, 13:25
Guest the man speaks the truth.... 5th-January-2006, 13:40
polobunny http://www.microsoft.com/techn... 5th-January-2006, 17:05
Guest polo, could you explain all... 5th-January-2006, 17:10
polobunny Here's the test, from... 5th-January-2006, 17:15
Guest uh, tha file opened up my... 5th-January-2006, 17:24
polobunny No, it's meant to do that.... 5th-January-2006, 17:34
Guest i did apply the patch. i... 5th-January-2006, 17:39
Fer! I downloaded it last night, I... 5th-January-2006, 17:44
polobunny If the calc didn't open and... 5th-January-2006, 17:55
Guest and that should happen on my... 5th-January-2006, 17:59
Fer! Yeah, if you reboot after... 5th-January-2006, 18:21
Das98 I just installed the patch... 6th-January-2006, 01:56
malice2501 All is right in the world... 11th-January-2006, 14:18
Tosca old news :P 11th-January-2006, 14:19
malice2501 me knows this, since its a... 11th-January-2006, 14:21
Cosmic Well since the issue has been... 11th-January-2006, 18:54
Kazuya Steve Gibson has been working... 14th-January-2006, 01:25
malice2501 sounds like some jerk... 14th-January-2006, 01:30
  1. #1
    Join Date
    Jul 2001
    Posts
    8,276
    Thanks
    6
    Thanked 96 Times in 22 Posts
    EP Points
    205

    Default New Windows Exploit found, please read this and take appropriate precautions.

    Quote Originally Posted by http:/www.securityfocus.com
    Windows 0-day exploit found on Web
    Published: 2005-12-28

    A previously unknown vulnerability in the Microsoft Windows graphics rendering engine is being exploited by several malicious Web sites to infect visitors' systems, security experts said on Wednesday.

    The vulnerability can be triggered remotely and gives the attacker full system privileges, according to technical descriptions of the issue. However, in a security bulletin released late Wednesday, Microsoft maintained that only local user privileges could be gained through the vulnerability. In the last 24 hours, three different Windows Meta Files (WMFs) have been detected trying to use the vulnerability to spread, according to antivirus firm F-Secure.

    "Do note that it's really easy to get burned by this exploit if you're analyzing it under Windows," Mikko Hypp�nen, chief research officer for F-Secure said in a blog posting. "All you need to do is to access an infected web site with IE (Internet Explorer) or view a folder with infected files with the Windows Explorer."

    Increasingly, security and software companies are worried about vulnerabilities that are exploited without any previous warning. Called zero-day exploits, the attacks can compromise systems before software makers issue patches to fix a security issue. Last month, a security researcher attempted to sell a previously unknown vulnerability in Microsoft Excel on eBay. Several companies have marketed defenses against zero-day exploits and Microsoft has created a network of automated Windows systems, known as honeymonkeys, that browse the Web to find malicious code targeted at Internet Explorer.

    Google Desktop users have to be particularly careful as the search giant's software indexes any downloaded image file, an action that will cause the exploit to immediately execute, according to security researchers. A Microsoft spokesperson said the company is currently investigating the reports.
    This primarily affects any website where users can submit their own images... yes, even these forums. Myspace, Wikipedia and eBay are also vulnerable. ALL Windows users stand a chance of being infected and at this time the best course of action is to use FireFox since it prompts you before the file downloads and executes itself. Microsoft claim that a fix will be released on the 10th of January, so in the meantime be vigilant. All it takes is a dodgy 1x1 pixel image on a webpage or email and you're infected. If you have the file in your cache, DO NOT try to delete it. Even highlighting the filename in Windows Explorer can be fatal. I just wanted to give everyone here a heads up since it really is a nasty piece of work and any Windows user stands a chance of being infected.

    EDIT: More information here, and there's also an unofficial patch available. It's been verified by multiple websites, but as always use at your own risk.

    EDIT 2: ...And here's what Microsoft have to say about the situation.
    Last edited by Cosmic; 4th-January-2006 at 19:04.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
About Us

We are the oldest retro gaming forum on the internet. The goal of our community is the complete preservation of all retro video games. Started in 2001 as EmuParadise Forums, our community has grown over the past 18 years into one of the biggest gaming platforms on the internet.

Social