12/28/2005

Extremely critical Flaw In Windows WMF And IE

Filed under: — By Aviran Mordo @ 7:50 am

A vulnerability has been discovered in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system.

Security web site Secunia rates this flaw as Extremely Critical, the highest rating possible.

The vulnerability is caused due to an error in the handling of corrupted Windows Metafile files (”.wmf”). This can be exploited to execute arbitrary code by tricking a user into opening a malicious “.wmf” file in “Windows Picture and Fax Viewer” or previewing a malicious “.wmf” file in explorer (i.e. selecting the file). This can also be exploited automatically when a user visits a malicious web site using Microsoft Internet Explorer.

The vulnerability has been confirmed on a fully patched system running Microsoft Windows XP SP2. Microsoft Windows XP SP1 and Microsoft Windows Server 2003 SP0 / SP1 are reportedly also affected. Other platforms may also be affected.

French Security Incident Response Team published the exploit code and is being exploited in the wild.

To protect yourself from this flaw, do not open or preview untrusted “.wmf” files and set security level to “High” in Microsoft Internet Explorer.

 

Leave a Reply

You must have Javascript enabled in order to submit comments.

All fields are optional (except comment).
Some comments may be held for moderation (depends on spam filter) and not show up immediately.
Links will automatically get rel="nofollow" attribute to deter spammers.

Powered by WordPress