Data recovery > Important: Severe Windows Security Flaw. What You Can Do Right Now To Secure Your Data

Important: Severe Windows Security Flaw. What You Can Do Right Now To Secure Your Data

Copyright 2006 Olga Farber Becker

On 28 of December a severe Windows security flaw, WMF Flaw, was detected, in all Windows versions from Win98 to WinXP, no fixing patch exists yet. Using it, anyone can do any malicious action with your computer, steal or even erase your data.

This article will help you understand what it is and how YOU can fix it until Microsoft releases a patch.

By Washington Post: "Computers can be infected simply by visiting one of the Web sites or viewing an infected image in an e-mail through the preview pane [...] even if users did not click on anything or open any files."

"Microsoft said in a statement yesterday that it is investigating the vulnerability and plans to issue a software patch to fix the problem. The company could not say how soon that patch would be available." http://www.washingtonpost.com/wp-dyn/content/article/2005/12/29/AR2005122901456.html

How severe it is: "This vulnerability can be used to install any type of malicious code, not just Trojans and spyware, but also worms, bots or viruses that can cause irreparable damage to computers," said Luis Corrons of Panda Software.

In a security advisory posted on its Web site, Microsoft confirmed the vulnerability and the associated release of exploit code that could compromise PCs, and listed the operating systems at risk. Windows 2000 SP4, Windows XP, Windows Server 2000, Windows 98, and Windows Millennium can be attacked using the newly-discovered vulnerability...

http://www.microsoft.com/technet/security/advisory/912840.mspx

BlogAutoPublisher support expert comments on the situation, advising a cure:

"The vulnerability is in the Microsoft Windows Graphics Rendering Engine, that is why the exploit affects Windows versions from Win98 to WinXP.

Unlike other security vulnerabilities, this one allows a _data file_ to execute arbitrary code upon it being viewed. In other words, a (picture) data file can contain executable code to "help" Windows display it, and Windows will execute it unquestionably.

Your computer can be infected whenever Windows uses its default image viewer to display certain image types.

This means there is a long list of applications that are vulnerable that rely upon the image viewer code. Windows uses this code when previewing images, for example.

*What YOU can do right NOW*, to secure your computer until a patch from Microsoft is released:

Go to Start > Run, paste there the following line: regsvr32 /u shimgvw.dll and press OK.

If everything goes right, you'll see the following message: "DllUnregisterServer in shimgvw.dll succeeded."

It will disable the problematic dll, forcing all other programs to use their own engines, if exist. Keep in mind that this will disable thumbnail previews in Windows Explorer. One may experience problems with opening any image file after unregistering this dll.

(To reactivate this feature: Start > Run > regsvr32 shimgvw.dll)

We will send another update, when the patch from Microsoft is released, with instructions how to apply the patch and re-activate the feature."

And another important thing: since this is such a serious flaw, you may start getting phishing emails pretending to originate at Microsoft, urging you to do something with your computer, apply some "patches". Don't do it.

Find the true information at microsoft.com or wait for the links at microsoft.com we'll publish later.
.

Olga's areas of research are internet marketing, blogs, RSS feeds. Find out 55 ways to use the Marketer's Blogging Software Olga recently released: http://blogautopublisher.com

Important: Severe Windows Security Flaw. What You Can Do Right Now To Secure Your Data

Data recovery > Important: Severe Windows Security Flaw. What You Can Do Right Now To Secure Your Data

Clarium unveils plans to offer new data management software utilizng AI

FORT LAUDERDALE, FL (ContentDesk) July 25, 2004 -- Clarium Corporation (http://www.clarium.com) today unveiled its plans to release a data management product code named "Ambience". The product consolidates information from most databases and data sources, and then compares the information using a proprietary Artificial Intelligence (AI) engine that finds trends in the data. Ambience also accepts information from traditional OLAP tools like COGNOS and SAS. "This is an exciting time for us, this new product will allow clients to take their data a step further. For example, Data Marts have allowed us to "slice and dice" data, but they don't find trends in the information.

Our clients have been asking us to find exceptions that are just impossible with traditional OLAP tools. Ambience will compare the information utilizing various dimensions already built into our code so clients can click on the exceptions as they appear," Dennis...

Clarium unveils plans to offer new data management software utilizng AI

Data recovery > Clarium unveils plans to offer new data management software utilizng AI

The Business Ledger recognizes ZEZAN Data Center

(ContentDesk) April 1, 2006 -- ZEZAN Data Center has been ranked among 14 Web site developers by The Business Ledger in their recent publication of Book of Lists. The Book of Lists is an essential source for area business owners and executives. No other publication offers such comprehensive listings of the major firms in various industries throughout DuPage County, West and Northwest Suburban Cook County and the Fox Valley.'Companies like ZEZAN Data Center are powering our local economic engine and keeping it competitive.' says Sami Siddiqi, Founder and CEO of ZEZAN Global, Inc.' 'We join our fellow businesses in area to express our appreciation of a great community resource and thankful for recognizing ZEZAN' says Sami.ZEZAN Data Center is also among very few local area firms offering online video streaming using ZEZAN proprietary streaming technologies.About ZEZAN Data CenterZEZAN offers server hosting, Web site design and development, multi-media services including video encoding...

The Business Ledger recognizes ZEZAN Data Center

Data recovery > The Business Ledger recognizes ZEZAN Data Center

IT Architect, Evolving Solutions, Wins Prestigious IBM Beacon Award - Sweeps Systems & Technology Category for Best IBM TotalStorage on Demand Solution

Minneapolis, MN (ContentDesk) April 6, 2006 -- http://www.evolvingsol.com Evolving Solutions, a leading data on demand and storage/server virtualization expert, has been named winner of the The Best IBM TotalStorage On Demand Solution award in the annual IBM PartnerWorld Beacon Awards competition, honoring IBM Business Partners for their innovation, customer satisfaction and outstanding achievements in providing on demand business solutions.
In a $3 million deal centered around Storage Virtualization and Information Lifecycle Management, featuring IBM TotalStorage and eServer hardware with Tivoli storage management software, Evolving Solutions was engaged to help design, supply and implement a customized system infrastructure at a local hospital.
The data on demand environment was configured for optimal performance and enabled continued system performance monitoring.
The successful design and implementation...

IT Architect, Evolving Solutions, Wins Prestigious IBM Beacon Award - Sweeps Systems & Technology Category for Best IBM TotalStorage on Demand Solution

Data recovery > IT Architect, Evolving Solutions, Wins Prestigious IBM Beacon Award - Sweeps Systems & Technology Category for Best IBM TotalStorage on Demand Solution

Spyware

How to Modify Your Landscaping to Protect Your House from Burglars

Believe it or not, landscaping can be an important part of a good home security plan. A burglar who is "casing the joint" from the street will choose the house with tall shrubs and trees that provide hiding places. Homes with little or no outdoor lighting are preferred targets as well.So, how can you landscape to protect against burglars while still creating an aesthetically pleasing yard? Here are a few tips:You don't need to eliminate trees, but keep them trimmed back from your house; tree branches...

ladders Data recovery Important: Severe Windows Security Flaw. What You Can Do Right Now To Secure Your Data

Data recovery > How to Modify Your Landscaping to Protect Your House from Burglars

hdtv Data recovery

St. Louis Production Company Releases New DVD

DreamWelder Productions, a television and motion picture production company based in St. Louis MO, is launching a series of artistic environment videos, beginning with Fire Volume 1. Fire is a compilation of sequences that include a traditional hearth fire and several artistic close-up views of wood fires in varying stages. Produced with today's cutting edge technology, the image quality is well-suited to bring out the qualities of premium video screens.In addition to the flickering amber and...

plasma tv Data recovery Important: Severe Windows Security Flaw. What You Can Do Right Now To Secure Your Data St. Louis Production Company Releases New DVD

Data recovery > St. Louis Production Company Releases New DVD