Re: Microsoft Security Advisory (912840): Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
- From: "Kerry Brown" <kerry@xxxxxxxxxxxxxxxxxxx*a*m>
- Date: Thu, 29 Dec 2005 08:11:33 -0800
PA Bear wrote:
> X-post to Security, Security.Homeusers, IE6 & WinXP General
> newsgroups. Followup set to microsoft.public.security.
>
> Microsoft Security Advisory (912840): Vulnerability in Graphics
> Rendering Engine Could Allow Remote Code Execution
> http://www.microsoft.com/technet/security/advisory/912840.mspx
>
> Welcome to the Microsoft Security Response Center Blog!
> New Security Advisory for Possible Windows Vulnerability
> http://blogs.technet.com/msrc/archive/2005/12/29/416569.aspx
As an addendum. This exploit is being used right now. I just received a
customer's computer that was infected with Spy Sherriff by this method. The
exploit was in a spam email. Turn off the preview pane in OE (always a good
idea) and turn off the Windows picture and fax viewer until Microsoft has a
fix.
Kerry
.
- Follow-Ups:
- Prev by Date: Re: Microsoft Security Advisory (912840): Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
- Next by Date: Call for Papers: June 26 - 29 - Special Track on Wireless Technologies and Digital Cities - SAM'06
- Previous by thread: Re: Microsoft Security Advisory (912840): Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
- Next by thread: Re: Microsoft Security Advisory (912840): Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
- Index(es):
Relevant Pages
|
