Page 2 of 17 FirstFirst 123412 ... LastLast
Results 11 to 20 of 165

Thread: ** HEADS UP ** IE vulnerability. EXTREMELY CRITICAL.

  1. #11

  2. #12
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    Pffft. Easy work around tested by yours truly.

    1. Click on the Start button on the taskbar.
    2. Click on Run...
    3. Type "regsvr32 /u shimgvw.dll" to disable.
    4. Click ok when the change dialog appears.
    When a patch is available, re-register the shimgvw.dll (regsvr32 shimgvw.dll).

    Also, all you firefox users, you too can be hosed by this exploit. If you have the google toolbar installed you will be autopwn3d. I'm going to step through it in meh lab in the mornin.

    --TH13
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  3. #13
    Hoopy Frood
    Join Date
    Jun 2004
    Posts
    662
    Originally posted here by thehorse13
    Pffft. Easy work around tested by yours truly.

    1. Click on the Start button on the taskbar.
    2. Click on Run...
    3. Type "regsvr32 /u shimgvw.dll" to disable.
    4. Click ok when the change dialog appears.
    When a patch is available, re-register the shimgvw.dll (regsvr32 shimgvw.dll).

    Also, all you firefox users, you too can be hosed by this exploit. If you have the google toolbar installed you will be autopwn3d. I'm going to step through it in meh lab in the mornin.

    --TH13
    If I understand this correctly, this unregisters the shimgvw.dll as a command component from the registry, which will prevent Windows from using it. Not being able to use it, it won't be able to display pictures or faxes.

    Will it still display icons, though? Basically, what does it break and how badly?

    - X
    "Personality is only ripe when a man has made the truth his own."

    -- Søren Kierkegaard

  4. #14
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    Will it still display icons, though? Basically, what does it break and how badly?
    shimgvw.dll is a library which contains COM functions used for image rendering. It's used when displaying images and/or faxes. If shimgvw.dll is unavailable, windows may not be able to display faxes or images. If this is not a problem for you, you can safely remove this file.
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  5. #15
    Hoopy Frood
    Join Date
    Jun 2004
    Posts
    662
    Originally posted here by thehorse13
    shimgvw.dll is a library which contains COM functions used for image rendering. It's used when displaying images and/or faxes. If shimgvw.dll is unavailable, windows may not be able to display faxes or images. If this is not a problem for you, you can safely remove this file.
    Hmmmm. That seems like it would break quite a bit, as the all your icons are image files, your system tray has image files, etc.

    - X
    "Personality is only ripe when a man has made the truth his own."

    -- Søren Kierkegaard

  6. #16
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,885
    It will not hurt your desktop icons, however, if you are a pr0n hound, you won't want to do this because you can't render image files.
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  7. #17
    Hoopy Frood
    Join Date
    Jun 2004
    Posts
    662
    Originally posted here by thehorse13
    It will not hurt your desktop icons, however, if you are a pr0n hound, you won't want to do this because you can't render image files.
    Ok, cool. No problems there.
    "Personality is only ripe when a man has made the truth his own."

    -- Søren Kierkegaard

  8. #18
    AO's MMA Fanatic! Computernerd22's Avatar
    Join Date
    Mar 2003
    Location
    Miami, FL
    Posts
    795
    This also works through the command prompt. I am trying to expoit my 'own' machine for learning purposes so every bit of information helps. Thanks CN22

  9. #19
    Senior Member Deeboe's Avatar
    Join Date
    Nov 2005
    Posts
    185
    Hello,

    I just saw that Microsoft has released thier statement on this:

    Microsoft is investigating new public reports of a possible vulnerability in Windows. Microsoft will continue to investigate the public reports to help provide additional guidance for customers.
    ...
    Customers are encouraged to keep their antivirus software up to date. The Microsoft Windows AntiSpyware (Beta) can also help protect your system from spyware and other potentially unwanted software. We will continue to investigate these public reports.
    ...
    Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This will include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.
    Well, that is reassuring.

    You can find the whole article here: http://www.microsoft.com/technet/sec...ry/912840.mspx

    -Deeboe
    If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If you know neither the enemy nor yourself, you will succumb in every battle.
    - Sun Tzu, The Art of War

    http://tazforum.**********.com/

  10. #20
    Originally posted here by thehorse13
    It will not hurt your desktop icons, however, if you are a pr0n hound, you won't want to do this because you can't render image files.
    Damn...wont be implementing this fix, will go with Soda's.

    Thanks hoss.

    FYI: We started filtering (stripping off) WMF attachments from emails as a precaution.
    (...waits for patch from MS...)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •