Become a part of the TranceAddict community!Frequently Asked Questions - Please read this if you haven'tSearch the forums
TranceAddict Forums > Local Scene Info / Discussion / EDM Event Listings > Canada > Canada - Toronto & Southern Ont. > URGENT: Windows Vulnerability Alert
Pages (2): [1] 2 »   Last Thread   Next Thread
Share
Author
Thread    Post A Reply
DigitalMP
W.T.F., mate?



Registered: Jul 2003
Location:
URGENT: Windows Vulnerability Alert

I won't get into great detail to explain what the issue is, but a Windows Security hole that actually existed in its primary releases in the early 90s was exploited in late December, and is now circulating around the internet.

What it means to you:
This is similar to living in the ghetto and you having left a window opened for 15 years, and everyone has just found out about it.

Why you have to be concerned:
It is very possible for someone to "break in through that window and set your house on fire".

What can happen:
You may lose nothing, or you may lose everything. Decide whether or not you want to take the chance.

When you need not be concerned:
When all of your data is backed up or you do not care to lose all of your data, images, etc.

What you must do:
Download the patch from here (choose one on that page) or here (direct file), then install it. It's just an .exe file that you have to run, nothing that is very involved.


Quoted from Ilfak Guilfanov, the guy who wrote the above patch:
Microsoft will certainly come up with a thouroughly tested fix for it in the future, but meanwhile I developed a temporary fix - I badly needed it.

The fix does not remove any functionality from the system, all pictures will continue to be visible

If for some reason the patch does not work for you, please uninstall it. It will be in the list of installed programs as "Windows WMF Metafile Vulnerability HotFix".

I recommend you to uninstall this fix and use the official patch from Microsoft as soon as it is available.


Quoted from here:
"You cannot wait for the official MS patch, you cannot block this one at the border, and you cannot leave your systems unprotected," Liston writes.

In the diary, ISC provides a link to the version of the patch it has examined, including a version designed for unattended installation on corporate systems.

While ISC recognises that corporate users will find it unacceptable to install an unofficial patch, "Acceptable or not, folks, you have to trust someone in this situation," Liston writes.


Quoted from here:
It is worth remembering that due to this vulnerability, the simple act of visiting a website could infect computers, if it contains a malicious WMF, opening the door to Trojans, worms and all types of threats. This vulnerability lies in the way Windows handles WMF (Windows Meta File), so all programs that can process this type of file are affected. These include Internet Explorer, Outlook and Windows Picture and Fax viewer.

In order to protect computers from this threat, as well as ensuring that a malware solution capable of blocking code that can exploit this vulnerability is installed, it is advisable to un-register the DLL associated to this attack, as described at Microsoft.com.

Similarly, although it is not usually recommended to install patches that are not released by the manufacturer of the product, users might want to install the patch released by Ilfak Guilfanov, a prestigious expert in Windows systems, until the Microsoft patch is available. This patch has been tested and recommended by SANS Internet Storm Center, and is available at: this link and this link.


Microsoft's release of the vulnerability

Here is where I initially discovered this.

Old Post Jan-03-2006 16:56  United States
Click Here to See the Profile for DigitalMP Click here to Send DigitalMP a Private Message Visit DigitalMP's homepage! Add DigitalMP to your buddy list Report this Post Reply w/Quote Edit/Delete Message
harcourt
Listening to the sounds



Registered: Mar 2001
Location: Toronto

I've run into this problem this week, it executed and installed trojans that were a royal pain to remove.

Up to date AVG anti-virus won't help you, Ad-Aware won't help you, Spybot didn't help, nor did MS Antispyware help in finding the trojans that this exploit installed. I went hunting for a specific removal tool for the trojans. Install this temp patch.

Last edited by harcourt on Jan-03-2006 at 17:12

Old Post Jan-03-2006 16:59 
Click Here to See the Profile for harcourt Click here to Send harcourt a Private Message Add harcourt to your buddy list Report this Post Reply w/Quote Edit/Delete Message
neuromancer
solving the riddle



Registered: Nov 2005
Location: Toronto, Canada

The official WMF patch from Microsoft will be released Jan 10.

http://www.microsoft.com/technet/se...ory/912840.mspx


___________________
"Are you-are you sad?"
-No.
"But your-your songs are sad."
-My songs are of time and distance. The sadness is in you. Watch my arms. There is only the dance. These things you treasure are shells.
"I-I knew that. Once."

Old Post Jan-03-2006 17:01 
Click Here to See the Profile for neuromancer Click here to Send neuromancer a Private Message Visit neuromancer's homepage! Add neuromancer to your buddy list Report this Post Reply w/Quote Edit/Delete Message
DigitalMP
W.T.F., mate?



Registered: Jul 2003
Location:

Thanks, but I don't recommend waiting.

quote:

It is worth remembering that due to this vulnerability, the simple act of visiting a website could infect computers, if it contains a malicious WMF, opening the door to Trojans, worms and all types of threats.


Uninstall the temp patch when MS makes theirs available.

Old Post Jan-03-2006 17:04  United States
Click Here to See the Profile for DigitalMP Click here to Send DigitalMP a Private Message Visit DigitalMP's homepage! Add DigitalMP to your buddy list Report this Post Reply w/Quote Edit/Delete Message
StereoPrincess
sassy one-piece



Registered: May 2001
Location: SPFRI

thanks for the info.

the website you link to download the file doesn't work but the direct link works.

i wanted to read up from the download site first before directly downloading.

Old Post Jan-03-2006 17:05  Poland
Click Here to See the Profile for StereoPrincess Click here to Send StereoPrincess a Private Message Add StereoPrincess to your buddy list Report this Post Reply w/Quote Edit/Delete Message
DigitalMP
W.T.F., mate?



Registered: Jul 2003
Location:

quote:
Originally posted by StereoPrincess
thanks for the info.

the website you link to download the file doesn't work but the direct link works.

i wanted to read up from the download site first before directly downloading.


I guess their server is pretty busy. All that page does anyways is list three alternate download links, and gives a link for others to inquire who are interested in hosting the file.

If you read the other quote links, they have wording straight from Guilfanov.

Old Post Jan-03-2006 17:11  United States
Click Here to See the Profile for DigitalMP Click here to Send DigitalMP a Private Message Visit DigitalMP's homepage! Add DigitalMP to your buddy list Report this Post Reply w/Quote Edit/Delete Message
rabbitjoker
aural sadist



Registered: Aug 2002
Location: Toronto, ON, CANADA

Which Windows versions does this effect?


___________________
- rabbit.joker [funny¿rabbit] | www.rabbitjoker.com |www.ddtt.org

Dark Dirty Tech Tribal. | Hands in air (trance) and feet on the floor (house).

Old Post Jan-03-2006 17:32  Canada
Click Here to See the Profile for rabbitjoker Click here to Send rabbitjoker a Private Message Visit rabbitjoker's homepage! Add rabbitjoker to your buddy list Report this Post Reply w/Quote Edit/Delete Message
harcourt
Listening to the sounds



Registered: Mar 2001
Location: Toronto

quote:
Originally posted by rabbitjoker
Which Windows versions does this effect?


Pretty much all of them, the 'Windows Platform'.

Old Post Jan-03-2006 17:34 
Click Here to See the Profile for harcourt Click here to Send harcourt a Private Message Add harcourt to your buddy list Report this Post Reply w/Quote Edit/Delete Message
rabbitjoker
aural sadist



Registered: Aug 2002
Location: Toronto, ON, CANADA

quote:
Originally posted by tw1tch
Pretty much all of them, the 'Windows Platform'.


Bojangles.


___________________
- rabbit.joker [funny¿rabbit] | www.rabbitjoker.com |www.ddtt.org

Dark Dirty Tech Tribal. | Hands in air (trance) and feet on the floor (house).

Old Post Jan-03-2006 17:35  Canada
Click Here to See the Profile for rabbitjoker Click here to Send rabbitjoker a Private Message Visit rabbitjoker's homepage! Add rabbitjoker to your buddy list Report this Post Reply w/Quote Edit/Delete Message
CategoryZd
tranceaddict



Registered: Nov 2005
Location: Whitby, Canada

Huh.

maybe that's why my Win2k system barely runs anymore.

Maybe that's why when I run netstat to see whats eating up my bandwidth it just spits out garbage.

...or maybe I should just lay off the sketchy porno sites...

Old Post Jan-03-2006 17:52  Canada
Click Here to See the Profile for CategoryZd Click here to Send CategoryZd a Private Message Add CategoryZd to your buddy list Report this Post Reply w/Quote Edit/Delete Message
VERTiG0
cunning linguist.



Registered: Dec 2003
Location: no longer Cambridge, Ontario, Canada

quote:
Originally posted by rabbitjoker
Which Windows versions does this effect?


Everything from 3.0 up

Old Post Jan-03-2006 18:44  Canada
Click Here to See the Profile for VERTiG0 Click here to Send VERTiG0 a Private Message Add VERTiG0 to your buddy list Report this Post Reply w/Quote Edit/Delete Message
Orko
Digital Hippie



Registered: Nov 2002
Location: Toronto, Ontario, Canada

quote:
Originally posted by tw1tch
Pretty much all of them, the 'Windows Platform'.


You gotta love how MS nolonger provides updates for the other systems either. So if you are running anything other than XP, you are screwed.

I would still be running Win2000 if i had my choice. But I cant because of the lack of updates and game support

Old Post Jan-03-2006 18:59  India
Click Here to See the Profile for Orko Click here to Send Orko a Private Message Add Orko to your buddy list Report this Post Reply w/Quote Edit/Delete Message

TranceAddict Forums > Local Scene Info / Discussion / EDM Event Listings > Canada > Canada - Toronto & Southern Ont. > URGENT: Windows Vulnerability Alert
Post New Thread    Post A Reply

Pages (2): [1] 2 »  
Last Thread   Next Thread
Click here to listen to the sample!Pause playbackplayed by tiesto... please ID [2005] [2]

Click here to listen to the sample!Pause playbackDJ Dean - Ballanation [2002]

Show Printable Version | Subscribe to this Thread
Forum Jump:

All times are GMT. The time now is 16:27.

Forum Rules:
You may not post new threads
You may not post replies
You may not edit your posts
HTML code is ON
vB code is ON
[IMG] code is ON
 
Search this Thread:

 
Contact Us - return to tranceaddict

Powered by: Trance Music & vBulletin Forums
Copyright ©2000-2026, Jelsoft Enterprises Ltd.
Privacy Statement / DMCA
Support TA!