mwinter
Total posts: 4328
1/4/2006 3:48 PM
I'm sure you're all up on the windows vulnerability news but just in case you haven't seen how this whole Metafile vulnerability got started:
"Microsoft first allowed .wmf file extensions to carry executable code at least as far back as Windows 3.0 Websense says. This was to enable Windows to cancel print jobs using the file format and the developers in that simpler era apparently didn't imagine it would be used for anything more malicious.
A layer of backward compatibility folded into modern Windows kept the security hole alive below the surface of the operating system. Now anyone can use WMF files to do anything they want to your system such as copying or destroying data or installing backdoors to allow re-entry later. They can also cancel your print jobs." [linky]
Oscar
Total posts: 1323
1/4/2006 5:26 PM
not my print jobs! [vader]nooooooooooooooooooooo!!![/vader]
SmoovB
Total posts: 1097
1/5/2006 2:32 AM
It's my impression that firefox (and for that matter opera) users are normally immune to this as the default action for wmf files is to ask whether to open them. If you change your default or accept the wmf files well that's your fault.
Even in that case if you're running the noscript extension you're probably safe. Yay firefox!