Windows zero day nightmare exploited

By byte
in Back Page News

 Share

Recommended Posts

Apprentice

Havin_it

Posted
Posted

I looked back at Steve Gibson's site and he now has this to say about Win9x:

Windows 98/SE/ME users: Microsoft's original advice to "unregister the shimgvw.dll" (shell image viewer) was never correct or useful on those platforms. The good news is that all current WMF exploits appear to be non-functional on the older Win9x vintage platforms . . . so you will likely be okay until Microsoft has updated your system with the next security patches. There is no short-term workaround for Windows 9x users.

That would explain why the WMF-checker gives my GF's WinME machine the all-clear (I haven't used the path on it, obviously). Other findings:

- WMF files render automatically in IE, both embedded (in IMG tag) and via hyperlinks.

- WMF renamed as JPG do not render (red X in both the above scenarios).

- Thumbnail display isn't affected by unregistering the DLL (nor are the IE scenarios).

Too bad Steve doesn't go further about the apparent non-functioning of the current exploits. Could it be that their payloads (rather than the exploit itself) simply aren't coded for Win9x...? If so, it's only a matter of time.

Grand Master

The_Decryptor Veteran

Posted
  • Veteran
Posted

Too bad Steve doesn't go further about the apparent non-functioning of the current exploits. Could it be that their payloads (rather than the exploit itself) simply aren't coded for Win9x...? If so, it's only a matter of time.

yeah, they just wouldn't be coded for Win 9x, this "Feature" (was actually added by ms when they were designing WMF) exists as far back as Windows 3.0 apparently.

Grand Master

exotoxic

Posted
Posted

i havnt seen anyone mention this (i didnt read all the threads about this)

assoc .wmf=txtfile

anyone know if this would protect against it?? as it would be opening the file in notepad instead of image viewer

EIDT: lol i looked 2 pages back and it was discussed... ah well :(

Grand Master

exotoxic

Posted
Posted

hey is there away so that there isnt a blue background on my icons ?I want it back to what it was before when I could see thru their names

system properties --> advanced --> performance --> check the use drop shadows for icon labels on the desktop

:)

Mentor

tkyoshi

Posted
Posted

system properties --> advanced --> performance --> check the use drop shadows for icon labels on the desktop

:)

Actually most of the time i don't this this will work after you get infected.

Try This: http://www.greyknight17.com/spy/RepairDesktop.reg it worked on the couple systems i repaired.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Microsoft releases major feature updates for stock Windows 11 apps

      By PurSpyk · Posted

      Anyway to download these versions without being on the Experimental builds?
    • Microsoft about to radically change how often your Edge browser updates

      By testman · Posted

      Nothing is stopping you from continuing with your testing cadence. If updates are released every 2 weeks instead of 4, and you test once every 4 weeks, the exact same amount of patches will still be available for you in those 4 weeks. For example: Before 4th week - patch 1, 2, 3, 4 After 2nd week - patch 1 and 2 4th week - patch 3 and 4 Still the same amount after 4.
    • Microsoft about to radically change how often your Edge browser updates

      By testman · Posted

      Everyone else has said it. I'm gonna say it - you don't know what you're talking about. I do. I have two laptops. One work, one personal. I have access to two more laptops - both personal. At home I manually update my personal laptop when I see on Neowin that there is an update - I carry on and only apply the updates when I am ready. My work one only updates when my workplace decides to send it - I carry on and only apply the updates (when they actually arrive, which is usually days after the release) when I switch off the laptop at the end of the day as usual. The two other personal laptops only get updated when I get to it which is rarely - the people who own them carry on using them until I get to it and update them. All of the browsers on all laptops are configured to restore the tabs when launched. Google and Microsoft have changed from 6 weeks to 4, and it looks like it's going to move to 2. None of these changes affect how any of these browsers on the laptops are used. Not one jot. My advice to you is stop panicking whenever you see an update. Just carry on with what you're doing. This even benefits you in a way - from your comment you sound like you don't like the changes or the frivolous new features - great - then carry on as before!
    • Lethal fake phone chargers are still being sold on Amazon and eBay, UK watchdog warns

      By Brian Miller · Posted

      AMAZON needs to take total accountability for this.
    • Windows Server gets DNS over HTTPS (DoH) support

      By binaryzero · Posted

      Server Summit had a heap of announcements, ADCS changes are baller.

  • Recent Achievements

    • Week One Done
      Jeroen Wilms earned a badge
      Week One Done
    • Week One Done
      rolfus earned a badge
      Week One Done
    • One Month Later
      Leroy Jethro Gibbs earned a badge
      One Month Later
    • Conversation Starter
      flexorcist earned a badge
      Conversation Starter
    • One Month Later
      AndreaB earned a badge
      One Month Later

  • Popular Contributors

    1. 1
      +primortal
      509
    2. 2
      +Edouard
      198
    3. 3
      PsYcHoKiLLa
      138
    4. 4
      ATLien_0
      90
    5. 5
      Steven P.
      81
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!