PDA

View Full Version : Unofficial patch for WMF exploit available


Bob Dole
01-04-2006, 06:59 AM
Since someone PMed Bob Dole with the "news" about 12 hours after Bob Dole posted it in Geeksplanet, Bob Dole thought it might be worth mentioning here.

There is an unofficial patch available for those of you who don't want to wait for Mickeysoft to release the official fix on January 10.

Microsoft has not yet released a patch. An unofficial patch was made available by Ilfak Guilfanov. Our own Tom Liston reviewed the patch and we tested it. The reviewed and tested version is available here (http://handlers.sans.org/tliston/wmffix_hexblog14.exe) (now at v1.4, MD5: 15f0a36ea33f39c1bcf5a98e51d4f4f6), PGP signature (signed with ISC key) here (http://handlers.sans.org/tliston/wmffix_hexblog14.exe.asc). THANKS to Ilfak Guilfanov for providing the patch!!

Source (http://isc.sans.org/diary.php)

We rolled out the .msi package at the office yesterday afternoon and have had no reported problems, so it appears to be safe.

Bob Dole
01-04-2006, 09:06 AM
Apparently the download site is experiencing extremely high traffic at the moment. Bob Dole is trying to chase down the original .msi download and will be happy to email it to folks if and when he can find it.

wilas101
01-04-2006, 10:18 AM
After repeated attempts I managed to get the installer downloaded. I don't know if traffic slowed down or I just got lucky and hit a lull.

You don't have to keep hunting it on my account now. I do appreciate the effort though.

Bob Dole
01-04-2006, 10:34 AM
After repeated attempts I managed to get the installer downloaded. I don't know if traffic slowed down or I just got lucky and hit a lull.

You don't have to keep hunting it on my account now. I do appreciate the effort though.

Bob Dole got sidetracked. Here is the .msi zipped if anyone wants/needs it.

patteeu
01-04-2006, 11:09 AM
Does this mean that we should post political news here if we don't think everyone has made it over to DC to read about it in a timely manner? :p