Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

* VML Update Released

Published: 2006-09-26
Last Updated: 2006-09-26 20:09:21 UTC
by Robert Danford (Version: 4)
0 comment(s)
Microsoft has just released an update to address the VML (VGX) issue

The update can currently be found on Microsoft Update and is titled
Security Update for Windows XP (KB925486)
http://www.microsoft.com/technet/security/Bulletin/MS06-055.mspx


It is recommended that the patch be applied immediately (after testing) unless a suitable mitigation strategy is in place.

Update: Also, note that if you applied the ACL mitigation (removing Everyone Read access from the DLL), you will need to undo that before this update will apply successfully. 

Thanks to everyone that submitted analysis, news, samples, malicious website reports, etc

More info:
http://isc.sans.org/diary.php?storyid=1727
http://blogs.technet.com/msrc/archive/2006/09/26/459194.aspx

Keywords:
0 comment(s)
Diary Archives