♦ Password
♦ Mailsetup
♦ Info
♦ Workstations
  ♣ Linux
  ♣ MacOS
♦ E-Mail
♦ Chat
♦ Files
♦ Backups
♦ Printers
♦ Network
♦ Statistics
♦ Downloads
♦ Links
♦ Newsletter
♦ Submit
♦ Search
♦ Linux

  WMF Exloit in the Wild
Microsoft Posted by Fabian Wenk on Thursday December 29, @07:38PM
from the only-do-very-very-carefull-internet-surfing dept.
In the last days there were several reports of a WMF exploit going around. Currently this is abused to install a trojan / spyware on every Windows computer which visits a websites which containing such a prepared file.

The file doesn't even need to end with the .wmf file extentions, as for every picture (.gif, .jpg and others) the same subsystem in Windows is doing the work.

There is not yet an update available from Microsoft, just the release of the Microsoft Security Advisory (912840) - Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution. Some of the tips given in there will not really solve the problem.

Some of the anti virus software is able to detect such manipulated files, but don't trust it to much.

Some more information in German are available in the articles WMF-Exploit tarnt sich als Google-Grusskarte and Weitere Details zur WMF-Lücke from Heise Newsticker.

<  |  >


  Related Links
  • Articles on Microsoft
  • Also by Fabian Wenk
  • Contact author
  • The Fine Print: The following comments are owned by whoever posted them.
    ( Reply )

    © 2003 ISG, Departement Physik, ETH Zürich, <>