PermaLink MS Windows WMF Security Hole Workaround01/03/2006 04:14 PM
Finally, a way to disable the WMF security hole (it's a design flaw, so MS hasn't released a fix for it yet and antivirus writers can't either). The suggested MS workaround is to disable shell preview by unregistering the shimgvw.dll DLL.  However, this leaves applications such as Lotus Notes and Firefox that use the WMF Windows APIs vulnerable.  A clever developer named Ilfak Guilfanov has done what MS should have released immediately...something that patches all the Windows DLLs and disables the WMF callbacks so customers can secure their systems as much as possible unless they find that it disables software they need to work (probably only graphics programs).

For a Lotus Notes-specific workaround (but this doesn't prevent other programs from using WMF files),
Julian Robichaux has put up a way to edit the KeyView.ini file to disable previewing of the WMF file format.  Keep in mind that Ilfak's technique covers the security hole for *all* programs.

Update: MS finally released their patch.
Comments :v
No comments.
Start Pages
RSS News Feed RSS Comments Feed CoComment Integrated
The BlogRoll
Calendar
December 2024
Su
Mo
Tu
We
Th
Fr
Sa
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
Search
Contact Me
About Ken
Full-stack developer (consultant) working with .Net, Java, Android, Javascript (jQuery, Meteor.js, AngularJS), Lotus Domino