« 10 Years (and Counting) | Main | Some Holiday Photos »

January 02, 2006

If you are on a Windows computer, beware the WMF vulnerability.

This is a warning for everyone out there using a Microsoft Operating System. . .

If I were you, I'd unplug your modem for the next week or 2. Many people don't know, but a huge vulnerability has recently been discovered in the Windows platform, one that will allow malicious hackers to execute code on your machine and install horrible spyware software. . . and you don't even have to accept or open a file. It happens automatically, just from using your email, using intant messenger, or browsing the web.

Microsoft has known about it for 4 weeks, but no patch has been released yet.

Here's some background on it.

The way it works is with a graphic file called a "WMF," which the operating system is trained to accept without question, and which. . . for some strange reason. . . can execute code on an administrator level. .. and screw everything up. And just filtering for "WMF"s won't work because they can be disguised as a JPEG or a GIF or any other image file.

So there is your warning. There is an unofficial 3rd party patch that some nice fellow put out that might protect you. (How some individual coder can put out a patch while MS twidles its collective thumbs is beyond me). Microsoft advises that you disable some dll files, but apparently that isn't really going to protect you very well.

But really, I would just unplug your modem and wait this thing out until MS releases the patch.

Oh. . . cough cough. . .by the way. . . cough cough. . . Apple and Linux computers are completely unaffected by this problem.

Posted by jason on January 2, 2006 03:33 PM

Comments

I can't uplug my modem, I don't have a way to check The Look Machine site then!

Posted by: Jack on January 2, 2006 03:53 PM

We would be willing to mimeograph all posts and comments and carrier pigeon them to you daily.

Posted by: Jason – Band Member [TypeKey Profile Page] on January 2, 2006 04:06 PM

WARNING: Subliminal message ahead...mac mac mac

Posted by: Collin - band member on January 2, 2006 04:15 PM

WMF?
Windows is a Mother &@$#%@

?

Posted by: Anonymous on January 2, 2006 08:39 PM

. . . unplug my internet? I'd rather die.

Posted by: Xerxes [TypeKey Profile Page] on January 2, 2006 11:29 PM

Warning to all microsoft users. Your system is inferior. You need to update to mac or linux immediately.

Posted by: Ian on January 3, 2006 12:32 AM

psht let the viruses and all those damaging things come....I have a mac but i rather use this computer....which is windows.

well if someone has a firewall and all those protective things wouldnt they be fine?

Posted by: Poncho on January 3, 2006 12:55 AM

Nope

Posted by: Collin - band member on January 3, 2006 09:20 AM

only if your firewall and virus software block jpegs, gifs, and all other image files. .. which would kind of make surfing the web pretty pointless and frustrating.

if you want to be more secure, turn off google desktop, use firefox for browsing, don't allow your IM to accept images, don't use a microsoft email program. . .

And probably download that patch. From everything I've read, it works.

Posted by: jason on January 3, 2006 10:07 AM

ok got it thanks jase!

Posted by: Poncho on January 3, 2006 05:07 PM

I ust got a Mac Mini.

Posted by: Shane on January 4, 2006 05:02 PM

Post a comment




Remember Me?

(you may use HTML tags for style)