All the latest UK technology news, reviews and analysis

Windows WMF patch promised for next week

by Paul Briggs

04 Jan 2006

Comment: 1

  • Tweet this
Microsoft
Attackers could use the vulnerability to take control of a computer

Microsoft will issue patch for a widely abused security vulnerability in the Windows operating system next Tuesday as part of its monthly cycle, the company said in an update of the security advisory about the flaw.

Attackers could use the vulnerability to take control of a computer through a specially crafted Windows Metafile (.wmf) image.

Such an image can be used on a website or sent by email or in an instant message. Security vendors have reported that attackers are actively using all these methods in an attempt to infect systems.

Security website Secunia gave the vulnerability its most severe rating of 'extremely critical'.

All versions of Windows are vulnerable, according to security provider F-Secure, but systems running Windows XP or Server 2003 are most at risk.

Microsoft has developed a patch for the security hole and is currently testing it to enable a release next week.

Although Microsoft acknowledged that the flaw is being actively exploited, the company claimed that the scope of the attacks is not widespread.

Antivirus software is blocking most of the attacks through updated signature files, allowing the security software to recognise infected files before they can cause any harm, according to Microsoft.

Russian software engineer Ilfak Guilfanov has already released an unofficial fix which F-Secure has endorsed on its company blog.

Users who choose to install Guilfanov's patch will have to uninstall it before they run next week's Microsoft patch.

Do you agree?

 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.

Poll

The workplace of the future poll - in association with IBM

What will be the biggest change to corporate technology in the future?

89%

6%

1%

3%

1%

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Riso

Colour printing: why the bill keeps outstripping the budget

The wrong printers, for the wrong tasks on the wrong contracts

Qlikview

Magic quadrant for business intelligence platforms

Who leads the BI pack and who should we be watching out for?

Chief, Partner Solutions / Director, Client solutions

Chief, Partner Solution / Director, Client Solutions...

ASP.NET, C# Developer, .NET - MS Gold Partner - Preston

ASP.NET, C# Developer, .NET - MS Gold Partner - Preston...

SQL Server DBA - Ecommerce Brand - Southampton, Hampshire

SQL Server DBA (Database Administrator, Administration...

.NET Developer - Financial Services - Basingstoke, Hampshire

.NET Developer - Financial Services - Basingstoke, Hampshire...

Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.

To send to more than one email address, simply separate each address with a comma.