Previous entries
Next entries

January 3rd, 2006

Microsoft to Release WMF Fix on Patch Tuesday

By Michael Santo
Contributing Writer, RealTechNews

Despite calls from numerous companies, including F-Secure, Sunbelt and Panda for a quicker release, Microsoft is going to wait until next week’s Patch Tuesday to release the fix for the Windows Metafile vulnerability found last week.

The company says it needs time to test the fix and prepare it in 23 different languages for all affected versions of Windows.

“Our goal is to release the update on Tuesday, January 10, 2006, as part of the regular, monthly security update release cycle, although quality is the gating factor,” (Kevin) Kean (from the Microsoft Security Response Center) added.

“Although the issue is serious and the attacks are being attempted, Microsoft’s intelligence sources indicate that the scope of the attacks is limited,” Microsoft said in a statement. “In addition, attacks exploiting the WMF vulnerability are being effectively mitigated by anti-virus companies with up-to-date signatures.” Source: BetaNews

At the same time that Microsoft is encouraging users to wait until Patch Tuesday, researchers at the ISC (Internet Storm Center) is proposing that users take the initiative and install Ilfak Guilfanov’s unofficial patch, which they validated over the weekend.

“We have very carefully scrutinized this patch. It does only what is advertised, it is reversible, and, in our opinion, it is both safe and effective,” Tom Liston wrote in the diary.

“You cannot wait for the official MS patch, you cannot block this one at the border, and you cannot leave your systems unprotected,” Liston wrote. Source: PC World

We Say: By now I assume (hope?) all antivirus (AV) firms have updated their software to cover this vulnerability, as opposed to the results of a few days ago. If you have an up-to-date AV, you are probably safe. Still, if you don’t want to wait until next Patch Tuesday, you can try the unofficial patch above. At any rate, it’s important to be careful and not open suspicious attachments (there are reports of WMF files disguised as JPGs carrying various worms as well as MSN Messenger worms) and make sure your AV protection is up-to-date.

Share and Enjoy:These icons link to social bookmarking sites where readers can share and discover new web pages.
  • del.icio.us
  • digg
  • Fark
  • NewsVine
  • Reddit
  • YahooMyWeb
You can leave a comment, or trackback from your own site. RSS 2.0

3 comments to "Microsoft to Release WMF Fix on Patch Tuesday"

  1. GeeksAreSexy says:

    If anyone is interested, I got a workaround from Shavlik’s website if you guys can’t want for the patch next week.

    http://forum.shavlik.com/viewtopic.php?t=2731&highlight=wmf

    January 3rd, 2006 at 12:37 pm

  2. GeeksAreSexy says:

    Oh yeah, and just look at the content of the batch file, don’t look at the rest.. :)

    January 3rd, 2006 at 12:40 pm

  3. » Temporary WMF Flaw Fix » Blog Archive   Alice Hill’s Real Tech News - Independent Tech says:

    […] Okay, normally, I wouldn’t push a fix for Windows that didn’t come from Microsoft, but the folks at F-Secure are pretty high on the guy who created it. Ilfak Guilfanov has published a temporary fix which does not remove any functionality from the system, it instead revokes WMF’s SETABORT escape sequence. This, of course wouldn’t be necessary if Microsoft would just release the patch now, instead of waiting until Tuesday as Michael had posted. Note: Ilfak said to remove his patch and install Microsoft’s when it does come out. “Right now, the situation is bad, but it could be much worse. The potential for problems is bigger than we have ever seen,” Hypponen said. “We estimate 99 percent of computers worldwide are vulnerable to this attack.” […]

    January 14th, 2007 at 1:08 am

Leave a comment