Tuesday, January 03, 2006

PROTECT YOURSELF FROM AN 'EXTREMELY CRITICAL' WINDOWS FLAW
From the KIM KOMANDO website


Code that exploits a hole in Windows XP is circulating on the Internet.
Security companies are calling the flaw extremely critical.

The vulnerability involves the way Windows handles image files. A
malicious Windows Metafile (.WMF) image could allow attackers to take
control of your computer. The file extension may be changed to .JPG,
.GIF, .PNG or .TIF. The problem is particularly serious because
pictures load automatically in Web browsers.

Microsoft is investigating the flaw and has not issued a fix. You
should keep security software updated. Also, don't open files from
unknown or untrusted sources.


The only known way to protect your computer is to disable a .DLL file
that is needed to run the malicious code. Click Start>>Run. At the
prompt, enter regsvr32 /u shimgvw.dll and click OK twice.

That disables the Microsoft Picture and Fax Viewer. Most people use
that to open pictures. So, to open a picture file, right-click it and
select Open With. Pick another program to open pictures. Among those
that will work are Paint, your Web browser and Windows Media Player.

Eventually, Microsoft will issue a fix for this flaw. When that
happens, you should re-register the .DLL. To do that, click Start>>Run.
Enter regsvr32 shimgvw.dll and click OK twice.

No comments: