Results 1 to 9 of 9

Thread: Trojan delivers unwanted gift to Windows PCs

  1. #1
    Join Date
    Oct 2005
    Posts
    19
    Rep Power
    0

    Default Trojan delivers unwanted gift to Windows PCs

    A new Trojan horse program,exploits hole in Windows systems to sneak onto computers, then dropping adware or spyware or turning them into zombies, according to several Internet security companies.

    The Trojan, dubbed Exploit-WMF (Windows Meta File) The exploit "is misusing a function in the WMF library in Windows," dropping onto the machine a downloader Trojan "that pulls down its big brother, a more sophisticated Trojan. "Then it might try to pull down adware, spyware or a bot program," that can turn the computer into a zombie to be used for attacking other machines or sending spam, or just leave a hole on the computer through which sensitive data could be stolen

    The WMF vulnerability affects computers running Windows XP with Service Pack 1 and Service Pack 2, as well as Windows Server 2003 with Service Pack 0 and Service Pack 1. It can be exploited when an Internet Explorer user, or Firefox user under certain circumstances, visits a Web site that has malicious code on it or when a user previews .wmf format files with Windows Explorer.

    http://news.com.com/Trojan+delivers+...?tag=sas.email
    "There are only two ways to live your life. One is as though nothing is a miracle. The other is as though everything is a miracle." --A. Einstein

  2. #2
    Join Date
    Apr 2005
    Posts
    1,333
    Rep Power
    0

    Default

    What, how about Opera?????
    The fox was probably right - they could have been sour grapes.

  3. #3
    Join Date
    Apr 2003
    Posts
    13,269
    Rep Power
    34

    Default

    Quote Originally Posted by CyberCat
    What, how about Opera?????
    The browser doesn't matter. As long as your using windows. It's browser independent.

    Here is Microsoft's Security Advisory on it: http://www.microsoft.com/technet/sec...ry/912840.mspx

    The suggested work around is to Un-register the Windows Picture and Fax Viewer (Shimgvw.dll).
    See the MS advisory for the details on the work around.

    This is pretty serious.
    "The best software is the one that fits your needs." - A_A

    Virus free since: date unknown
    Anti-virus free since: August 2008

  4. #4
    Join Date
    Nov 2005
    Posts
    895
    Rep Power
    0

    Default

    And the list just keeps getting longer and longer. Sooner or later we're gonna have to stop using Windows due to the Virus risk.
    AM OUT!!!
    DO ONTO OTHERS BEFORE THEY DO ONTO YOU!!!

  5. #5
    Join Date
    Oct 2004
    Posts
    1,177
    Rep Power
    0

    Default

    Even if evryone started using Linux, hackers will then turn on that.

  6. #6
    Join Date
    Oct 2005
    Posts
    19
    Rep Power
    0

    Default

    Just a note.. Microsoft has something to say

    This is an extract from an eweek article
    Microsoft's WMF Patch Leaks Out

    A cryptographically signed version of Microsoft's WMF patch
    leaks out to a security community site, prompting an updated
    advisory from the software giant. At the same time,
    announcements of third-party patches keep arriving in mailboxes.

    Get the details.
    http://ct.enews.eweek.com/rd/cts?d=1...353898-0-0-0-1
    "There are only two ways to live your life. One is as though nothing is a miracle. The other is as though everything is a miracle." --A. Einstein

  7. #7
    Join Date
    Apr 2003
    Posts
    13,269
    Rep Power
    34

    Default

    I have used the 3rd party patch from Ilfak Guilfanov, that was recommended by Leo Laport and Steve Gibson on thier podcast show called Security Now!

    More information about the podcast show can be found here: http://www.grc.com/SecurityNow.htm

    The Show Notes about this security vulnerabilty and the 3rd party patch can be found here: http://www.grc.com/sn/notes-020.htm

    I trust Leo and if Leo trust Steve Gibson, then I'll trust Steve. And if Steve trust this 3rd party patch from this guy, well, you get the gist.

    Microsoft is releasing a patch for it probably next week.
    "The best software is the one that fits your needs." - A_A

    Virus free since: date unknown
    Anti-virus free since: August 2008

  8. #8
    Join Date
    Apr 2003
    Posts
    13,269
    Rep Power
    34

    Default

    Microsoft has released a patch for this vulnerability. If you haven't yet recieved it via Windows Update, you can get it from thier site: http://www.microsoft.com/technet/sec.../ms06-001.mspx
    "The best software is the one that fits your needs." - A_A

    Virus free since: date unknown
    Anti-virus free since: August 2008

  9. #9
    Join Date
    Nov 2005
    Posts
    2,008
    Rep Power
    0

    Default

    Hmm i just got the fix, but for around over 6 months now or maybe even more, my windows picture and fax viewer doesn't work anymore, and thumbnail view in folders has stopped working also. Any ideas why this would happen all of a sudden and how to get it back working without formatting the HD?
    [AMD Gallardo] [Asus M2N SLI Deluxe] [AMD 5000+ X2 black edition @ 3.2GHZ] [Zalman CNPS9700 LED][ EVGA 8800GT 512MB] [Gskill 2GB x 2 DDR2800] [Seagate 320GB IDE][Seagate 1TB, 750GB, 320GB SATA II][Western Digital 1TB SATA II][XION 600W] [NEC DL DVD-RW] [Antec Nine Hundred MidATX] [19" BenQ FP93GX LCD][40" Samsung LNA500LCD HDTV 1080p][Logitech X-230 2.1]

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •