New Windows Exploit found, please read this and take appropriate precautions.

[Evans]

Okay, so getting a prompt before downloads helps.
You mean, the website automatically forces a download?
Or is it any download, like one you might want.

I believe it's an automatic, forced download (something like that, I'm not teckie enough to know the correct terms). Since IE doesn't ask for it to be checked by the user, it goes unnoticed. That's what FF checks and prompts you for.

Do you need some popup blocker or extension/plugin?

I dunno.


EDIT: Polo, this link ( http://www.skynet.ie/~caolan/publink/libwmf/libwmf/doc/ ) isn't really clear unless you understand that gibberish.
Anyways, as long as we get that it's automatic in IE, I think it's all that matters. Or not.

[Kazuya]

By default, Internet Explorer automatically opens the vulnerable Windows Picture and Fax Viewer application to display WMF files.

To disable Windows Picture and Fax Viewer, users should click on the Start menu, select Run, then enter "regsvr32 /u shimgvw.dll" and click OK.
-----------------

I've been using Torrents as downloads these past months as well.
So, I'm not that concerned.

[polobunny]

This cmd line will also disable using Windows Picture and Fax Viewer. You won't able to see any thumbnail nor open the images using that application.

[Fer!]

So, Maxthon(MyIE2) can be of any use? Or is just as dangerous as using IE?

Let me know for using the Firefox, even though I don't like it, I don't want a damn virus

[polobunny]

Just patch the damn thing and you should be alright.
I don't think Maxthon will be of any help, it's still on the same engine.

[Fer!]

I have now realized how stupid my post was...currently downloading the patch, and searching the FF in my cd's... I have a 56k...so it's a pain in the ass for downloading things

Thanks polo

[malice2501]

Aight, since all of that tech speak was spanish to me, ill ask for a layman translation. Also, if i dont visit porn and other questionable sites, will i likely catch this new shitstain?

[Evans]

You can be infected by any kind of picture. It's stated clearly in the first post, I think. That is, if you're using IE.
I think mostly only porn sites and other devious crappy ones bolster such hidden shit, so yeah, maybe.

As for those MTF files or whatever, they're just a way for malicious people to infect your machine with hidden lines of coding. Since FF prompts you with a window about such files or exes, whichever the case may be, it's safer.

That's the gyst of it.

[malice2501]

ah, guess ill stay away from my porn then. Thanks. (cant give any more rep atm)

[Evans]

Yeah, I know.


Also, it was said, by Cosmic I believe, that you could get infected by this site aswell. Don't get overconfident.

[malice2501]

I actually think ive been hit with this crap already. I was searching for some info (not porn) and i got to a site that just hit me with some shit. I had my firewall up and my spyware blockers. A quick system restore solved the problem, but i formatted my C drive just to be safe. I dont mind formatting or restoring, so i can wait till the 10th. Free rep for everyone! (except polo, he would become godly from all the rep i give him )

[pkt-zer0]

What the heck? Why should an image format (To my understanding, that's just what WMF is) be able to execute malicious code? Or any kind of code, for that matter. That just... sucks.

[malice2501]

from what i understand, which is little btw, when you go to a page, the images auto-load. So the crap just rides in with it.

[polobunny]

Ha it would be damn ironic to post one of these pics right there. People read what Cosmic posted, and theyre already infected. Im going to do this later.

Edit: pkt-zer0, don't you know about PSP and pngs?
It's not really "meant" to do that, that format is only meant to draw an image. Call it hi-jacking.

[Ahkei]

http://www.skynet.ie/~caolan/publink/libwmf/libwmf/doc/ isn't really clear unless you understand that gibberish.

Polygon, Rectangle, etc.

Are the big words hurting your brain, Evans?