cocoruder exposed 2 more MWF flaws
New vulnerabilities were posted to the Bugtraq security mailing list on Monday by a hacker going by the name of "cocoruder."
All three flaws concern the way Windows renders images in the Windows Metafile (WMF) format used by some CAD (computer-aided design) applications, but these latest flaws are far less serious than the vulnerability that Microsoft patched last week, according to security experts. That vulnerability was serious enough to cause Microsoft to take the unusual step of releasing an early patch to the problem, ahead of its monthly security software update.
Via :Robert McMillan
Solution:
Microsoft has not develop the patch,please unregister the Windows Picture and Fax Viewer (Shimgvw.dll)(see MS06-001)
Comments