(no subject)

[tamakun]

For all my techie friends (and non-techies, actually) - there is a serious WMF vunerability running rampant these days, and it can be triggered through several different ways (including indexing services such as Google Desktop, or even simply using "Thumbnail" mode on Windows directories). Also, it is important to note that most virus scanners at this point in time do not have a way of detecting it.

lordshipmayhem alerted me to this vunerability (funny, considering he runs Linux, but I'm glad he did mention it) and I've gone and fixed up my machine. I can't stress enough how dangerous this vunerability is. Actually makes me consider a Mac ('cause Christine's G4 is sa-weet) or Linux (since I have a few friends who I know I can consult - Chris and Gary). I'm getting tired of vunerability reports...

There are several postings/articles on this matter at the ISC/SANS website, but the one you might want to look at is the unofficial (but perfectly safe) patch. They actually recommend un-registering a specific dll, mentioned in the FAQ here. Download the file, install it and restart your computer to protect against this problem.

I wonder if I can add this ("SANS") to my RSS feed...