Linked by Thom Holwerda on Sat 31st Dec 2005 16:55 UTC
Windows Microsoft acknowledged late Wednesday the existence of a zero-day exploit for Windows Metafile images, and said it was looking into ways to better protect its customers. Even worse, by the end of the day nearly 50 variants of the exploit had already appeared. One security company said the possibilities were endless on how the flaw could be exploited. 'This vulnerability can be used to install any type of malicious code, not just Trojans and spyware, but also worms, bots or viruses that can cause irreparable damage to computers,' said Luis Corrons of Panda Software.
Permalink for comment 80446
To read all comments associated with this story, please click here.
RE[2]: Yesh it is...
by ZaNkY on Sat 31st Dec 2005 20:29 UTC in reply to "RE: Yesh it is..."
Member since:

Sorry to go off topic again ;)

I totally agree, there are many safeguards against it, but again, someone who knew how to get around them *could* get it done if it were his goal. Even if it required a rebott, chances are the user would never see it comming anyways. I was merely bringing out the possibility. Remember, Hardware is controlled with software.

And as far as I know, it's not that hard to get a program to run in Ring0, if it is done through Assembly. I have the link somewhere.... I'll look it up ;)

But hey, I'm not here to argue. Again, I doubt that such harmful code would find its way into a wmf exploit. More like some dumb skidy "format c:" or some other dumb trivial thing.

good points sappyvcv.


Reply Parent Score: 1