Microsoft WMF Vulnerability

There's a rather nasty Windows hole called the WMF vulnerability. It's bad since the hole works on all versions of Windows and you can get infect by just looking at a web site or an e-mail. IE is worse than Firefox but you can get it through Firefox as well (but at least it brings up a dialog first). There are exploits already on the web, you are not safe. Remember, you don't have to click on anything and can still get the virus. In fact, if you use outlook and have the message preview open can get it through you e-mail even when you are not at the machine - ouch.
The easy way to remove the vulnerability (besides installing Ubuntu Linux) is to go Start Menu|Run... and type
regsvr32 /u shimgvw.dll
You won't be able to see thumbnails anymore, but that's a small price to pay. It's not a perfect cure since another program could just re-register the dll. Currently, there's no anti-virus company that blocks this exploit and Microsoft doesn't have a patch yet.
See also:

Comments

Post a Comment

Popular posts from this blog

Shortest Sudoku solver in Python

Mark Byer's site has some more Sudoku solvers here's a short one in Python that's only 178 bytes long: def r(a):i=a.find('0');~i or exit(a);[m in[(i-j)%9*(i/9^j/9)*(i/27^j/27|i%9/3^j%9/3)or a[j]for j in range(81)]or r(a[:i]+m+a[i+1:])for m in'%d'%5**18] from sys import*;r(argv[1]) On the site is also shown a longer Perl version at 185 bytes: use integer;sub R{for$i(grep!$A[$_],@x=0..80){%t=map{$_/27-$i/27|$_%9/3-$i%9/3&&amp;amp;amp;$_ /9-$i/9&&($_-$i)%9?0:$A[$_]=>1}@x;R($A[$i]=$_)for grep!$t{$_},1..9;return$A[$i]=0} die@A}@A=split//,<>;R I think the Python version is slightly easier to understand, although they are both quite cryptic. I'm not sure why I find these programs fascinating. I think it reminds me that any program can be written in such a way that it's cryptic, even in Python. In addition, the code is small enough that you should be able to figure out how it works, and may learn something the process. Related is
Read more

Seven Segment Display in Inkscape

Image
Today I got a little sidetracked while working on my key-train (keyboard training) project.  I thought I might spruce it up a little by using a seven segment display for the digits (say for the words per minutes), similar to what kTouch has.  I found an open source font, but it appears to be difficult to just use a ttf font in GTK. So I figured, it's only 10 images, I'll just make them in svg. I vaguely remembered a heathenx inkscape podcast  describing how to make an LCD display and decided to use that at my base. Unfortunately, they didn't provide any source files in the show-notes (as far as I could see) so I had to watch and redo the drawings myself! By naming each of the seven segments I could create the 10 digits simply by deleting a few elements in one template svg file .  I can create the template as beautiful as I like and quickly create the 10 derived images with these programs . Unfortunately, both ImageMagick and GraphicsMagick don't handle
Read more

wny am I happy about the death of some people?

Unfortunately, I'm staring to be happy that certain people have died.  Like Fred Koch and, more recently, Donald Rumsfeld.. Frankly these are both people that should be celebrated for dying and not continuing the evil they perpetrated. More succinctly, they should be remembered for doing more evil than good during their lifetime and it is overall better that they have died than live a minute longer on this earth. These people can't repent but others (like Mitch) should link about their legacy. How many of us will be so happy that they are dead. Donald isn't the worst of them, but should be remembered for all of the evil that they have committed.
Read more