The growing flap over Windows Metafile (WMF)

By Ellen Messmer, NetworkWorld.com, 01/04/06

The year 2006 is starting off heavy in security woes with the Microsoft Windows Metafile (WMF) exploit front and center as attackers take advantage of a newly discovered hole in Microsoft's image-rendering engine to punch their way into many a desktop computer.

Microsoft says it's working on a patch for the problem, which impacts Wndows 2000 Service Pack 4, XP, Microsoft Server 2003, and even the almost-antique Windows 98 and Millenium Edition.

This hole can be patched, but Microsoft doesn't expect to get the patch for the WMF flaw ready until next Tuesday.

That has security organization SANS Institute so concerned it took the unusual step of offering its own Windows patch.

Microsoft isn't too keen on the idea that users are turning to an outside organization for their Windows patching needs, but says adding the SANS patch doesn't void contractual agreements.

Attacks based on the WMF exploit have been known to be occurring since Dec. 27 but most anti-virus vendors say they don't see widespread problems -- as least yet. The purpose of the WMF-based attacks, and their exact methods vary from Web-based downloads to e-mail, but one thing McAfee has noticed, it says, is that they're being used to spread adware and spyware. But some computer users report their computers are simply being violently seized by an unseen hand that reached in via the WMF flaw.

Back to Security Notes

Comments

Not surprising that the WMF vulnerability is being exploited to install spyware and adware. The most active elements of the black hat world are those going after profits. It takes longer for the virus/worm writers to get into the act. That is coming I am sure.

Posted by: Stiennon on January 5, 2006 09:05 AM

Post a comment

Name:


E-mail address:


URL:


Comments:


Remember info?