Win98, SE & ME Users and the WMF Security Vunerability Issue

OK - I know you're tired of me and the Windows crap, but some users might need this, so please bare with me.

Next, and I don't mean to sound catty, but could we keep this thread as unaccusatory as possible? By that I mean, no statements like; "Get a Mac" or "Linux is better", etc.?

Some of us simply can't afford to upgrade in any form, and this information is for them, even if they may be in better shape than the rest of us were. {Note: The OFFICIAL MS patch is NOW available for the rest of us. - Go GET IT installed!}

I'm no computer geek by any means, so I can only share what I've learned. Please feel free to input any information you have that will help benefit users of Windows98, Windows 98 SE, or Windows ME.

First, this is what Microsoft says:
(Click the General Information/FAQ link)



In perusing the new http://castlecops.com/f212-Hexblog.html">Ilfak Guilfanov Forum/Blog the How about win98 thread shares http://blog.ziffdavis.com/seltzer/archive/2006/01/03/39684.aspx">this article:



A "vunerable default handler" is another program that you've set up to open WMF files, that is not Windows-based. Some commentors took issue with his post, and he clarified with the following:



So my conclusion is that if you're still running these older OS's (while you might still be vunerable), it's nowhere near what it is/was for those of us on a more up-dated system. Figures, doesn't it?

Anyway, without getting too long-winded here, visit Ilfak's forum occasionally (link above), because it seems to me I read that he was going to work on a hotfix for the older OS's anyway.

Also, keep tabs over at Steve Gibson's GRC site.

Finally, keep up your safe-computing practices. I don't think I need to go over what they are.

Happy computing DU'ers!

:yourock:

Anti-virus manufacturer Esset has released one. Details in article.
http://www.windowsitpro.com/Article/ArticleID/48957/48957.html

I'll check it out. - OK, I just did - sorta. LOL

I don't know who Eset is, but then again I didn't know who Ilfak was either, before all this sh*t hit the fan.

If anyone is concerned about this patch for the older systems and wants to verify it, try posting an inquiry over at Ilfak's forum, or maybe someone here can vouch for Eset. I don't have an older system to try it out on, and even if I did, I wouldn't know what to look for.

Thanks salvorhardin for the catch!

and if I recall correctly, our very own Garbo 2004 vouched for them as well in one of my two threads on this WMF subject.

From your link salvorhardin:



Please note that this patch is apparently endorsed by Windows IT Pro magazine, otherwise I doubt they would have linked to them. And when you link to Eset's site itself (plus Garbo's support] you'll see it's on the up and up.

Remember, as with any patch you install, there is ALWAYS a risk, even from Microsoft or any other reputable company. I just hope you'll keep that in mind.

All these exciting viruses, worms, exploits, and trojan horses. Wow! The stuff of high drama! International hackers rings from Eastern Europe, associated with the Russian Mob! National Security compromises! And even the more mundane searching for a driver that works with your hardware... I get none of that, and it is, well, sort of boring.

:evilgrin:

Wanna switch computers with me when Windows stops supporting my XP at the end of the year? PM me and we'll make arrangements.

;)

I thought that was the most current OS???

Pretty crappy huh? Apparently it won't be the most current OS when they come out with their new one at the end of the year.

Anyway, that's what I've heard on at least one post over at DailyKos, and I've no reason to disbelieve the poster.

Here's antirove's comment. It's a bit long with a few links included, so I'll just post to his/her comment:
http://www.dailykos.com/comments/2006/1/5/184540/3256/6#6

sheesh

...Vista. Hell, they're still supporting NT 4.0, and that opsys is 10 years old.

The link I provided to the dKos comment had other links to support his claim of discontinued security updates after 12/31/06. This is from the first one I read:

http://arstechnica.com/news.ars/post/20060103-5891.html

What a terrible customer service idea.

This will drive people to Linux and Macs!

Go getcherself a nice book of astronomical charts and calculations. You'll find it to be endless fun. Right up yer alley! What's up with astronomer-types and their MACs? NO, do NOT tell me!

Starry Night Pro! Great "planetarium" software.

(Apologizing for being off-topic)
I have Starry Night Bundle Edition 2.1, did not know there was a Pro edition out there. Will go look for it as the one I have is great. Very nice stuff. Thanks,
dumpbush

I think the bundled edition does it all now.

Nice thing about a Mac is that you can run most things that you got years and years ago. I still have a game from 1984 I play.

This thread was mainly directed at Win9x, SE & ME users. :)

cap and move to Linux. It's not that hard. I did it 3 years ago and I'm no computer programmer! This is how Gates will market his new system and drive all the old versions off the net.

Now I can finally get husband's old '98 clunker up-to-date on this.

(I whacked :spank: Ben for ya.)

Thanks for helping out on Ben, but you forgot raysr...

Here ya go ray  :spank:

Now, what sort of non-default image viewer do you have? I have ACDSee, and it displays WMF files juuust fine. I also have WinME. That means I am vulnerable.

One may want to open Start/Control Panel/ Folder Options and click the file associations tab to see if there is a program associated with WMF file types. In my case, I guess I'll get that third party patch mentioned above.

What about EMFs (enhanced metafiles)?

Edit to fix quote

http://www.nod32.ch/en/download/tools.php

Reportedly Microsoft asked ESET USA to remove its link to Paolo Monti's (ESET Italy) patch so as not to potentially conflict with the MS patch. But since MS has not provided a patch for these earlier systems and has not yet asked the overseas ESET affiliates to remove the patch, it's still available.

While these earlier systems have been said to have the underlying system vulnerability, the malware in the wild seemed not to be designed to effectively infect these systems. Which apparently is why MS deigned not to issue a patch for them. (Although recall how MS underplayed the threat to the newer systems, despite proof that active exploits were in the wild.) But considering how many W98 systems are still around worldwide, it's not difficult to figure that the bad guys likely will eventually get around to specifically targeting these older systems.

Additionally, Steve Gibson at GRC.com apparently has said that if he confirms for himself the vulnerability of these older systems he will develop a patch for them. (See Terre's link to his site in the first post above). So that may eventually be another option.

And for fun, eweek article where SANS takes MS to task for not taking the threat seriously:

Jerks.