| Microsoft Releases WMF Patch Early |
|
| Thursday, 05 January 2006 | |
|
Microsoft has officially released the patch for the WMF vulnerability. This patch had been
expected next Tuesday during their regular security update.
If you have automatic updates set, you should see the typical update icon in your system tray. If you dont have automatic updates, use the Windows Update item on your Start Menu or Internet Explorer If you installed the unofficial patch, SANS is suggesting you do the following steps: 1. Reboot your system to clear any vulnerable files from memory. 2. Download and apply the new Microsoft patch. 3. Reboot your PC. 4. Uninstall the unofficial patch, by using Add/Remove Programs on single systems. This will show as Windows WMF Metafile Vulnerability Hotfix. 5. Re-register the shimgvw.dll if you previously unregistered it. 6. Reboot one more time just for good measure 1. From the Start menu, select Run 2. In the Run dialog, enter in the line below 3. Click OK. You should get a RegSvr32 message saying the registration succeeded. 4. Reboot. Additional Resources SANS Notice of Patch Release and
Steps |
