vml exploit (internet explorer) and workaround
From F-Secure:
Once again there is a browser vulnerability that allows for the remote execution of code. And the only action necessary to become infected is to view a malicious webpage using Internet Explorer or an HTML formatted e-mail.They also list a workaround, which is to unregister vgx.dll. Like the Windows WMF Vulnerability from the beginning of this year, I guess I’ll write another batch file to silently unregister the DLL, use Group Policy to enforce it, then start rebooting all the computers in our building…It was discovered in the wild by Sunbelt. Microsoft published Microsoft Security Advisory (925568) yesterday regarding the issue. The update is currently scheduled for October 10th - the next regular patch Tuesday. [ Read More... ]
Hmm, guess I should go ahead and reboot the laptop into Windows and do that. At least I can be comfortable laying here on the couch while I’m doing it. sigh
Related Posts:
bitacle.org:
Bitacle Blog Search Archive - VML Exploit (Internet Explorer) and Workaround
[...] VML Exploit (Internet Explorer) and Workaround From F-Secure: Once again there is a browser. [...]
September 21, 2006, 12:12 am