Microsoft Security Bulletin - WMF Security Patch

Nomad559

(1000+ posts) Send PM | Profile | Ignore

Thu Jan-05-06 08:19 PM
Original message

Microsoft Security Bulletin - WMF Security Patch

Microsoft Security Bulletin MS06-001

Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution

http://www.microsoft.com/technet/security/bulletin/MS06-001.mspx

:)

Printer Friendly | Permalink | | Top

bluestateguy

(1000+ posts) Send PM | Profile | Ignore

Thu Jan-05-06 08:33 PM
Response to Original message

1. I got it

I got and loaded it this afternoon. Had it not been for DU, I would not have known about it until later.

Now I wonder if it will work for Windows 98. My father has a dialup machine with Win. 98, and I told him that the patch likely woudl not work for him, and that he should upgrade. That seemed to fall on deaf ears, though. My parents will spend $7,000 to put a new carpet in the house, but spending $100 for the computer always seems to be "too expensive".

Printer Friendly | Permalink | | Top

Johnny Noshoes

(1000+ posts) Send PM | Profile | Ignore

Thu Jan-05-06 08:41 PM
Response to Reply #1

3. Theres a hack that MIGHT work for your dad.

I found it here on DU. This is it:

According to iDefense, Windows users can disable the rendering of WMF files using the following hack:

1. Click on the Start button on the taskbar.
2. Click on Run...
3. Type "regsvr32 /u shimgvw.dll" to disable.
4. Click ok when the change dialog appears.

iDefense notes that this workaround may interfere with certain thumbnail images loading correctly, though I have used the hack on my machine and haven't had any problems yet. The company notes that once Microsoft issues a patch, the WMF feature may be enabled again by entering the command "regsvr32 shimgvw.dll" in step three above.

I don't know if this works for Win 98 someone else more tech savy than me might know.

Printer Friendly | Permalink | | Top

Johnny Noshoes

(1000+ posts) Send PM | Profile | Ignore

Thu Jan-05-06 08:37 PM
Response to Original message

2. I just got it done.

I heard about the problem here on DU. I love this place - I've found some great NON political sites via DU too.

Memo to the Supreme Court:
Never send a boy to do a President's job

Printer Friendly | Permalink | | Top

madfloridian

(1000+ posts) Send PM | Profile | Ignore

Thu Jan-05-06 08:42 PM
Response to Original message

4. Thanks, got it done on all my computers.

I had not heard anything, so glad you mentioned it. None of my lists had said a word yet.

I feel secure now, until the next time. :evilgrin:

Printer Friendly | Permalink | | Top

cosmicdot

(1000+ posts) Send PM | Profile | Ignore

Thu Jan-05-06 08:44 PM
Response to Original message

5. Questions

Edited on Thu Jan-05-06 09:03 PM by cosmicdot

do we re-register shimgvw.dll before downloading the patch?
what if we downloaded the temp fix wmffix_hexblog14.exe ... should that be deinstalled first?

I wouldn't have known about this problem either had it not been for DU.

edited:
I see now at hexblog.com that the temp fix "can be uninstalled before or after applying the official patch."

Castlecop's admin says the re-registering the .dll can be done post-patch.

Printer Friendly | Permalink | | Top

DU AdBot (1000+ posts)

Fri Apr 19th 2024, 10:28 AM
Response to Original message

Advertisements [?]

Top

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators

Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.