Re: A Very Dangerous Worm in Windows Metafile Images (WMF)



Winfield Hill wrote:

> Pooh Bear wrote...
> >
> > Winfield Hill wrote:
> >
> >> Most of us don't visit malicious web pages.
> >
> > It's easy to redirect you there.
>
> Right, but I can be fairly confident NSC and Linear Technology
> aren't going to do that. And I won't be visiting Porn-R-Us or
> Internet-Gambling-Winner-Now, etc.

If you're a 'safe surfer' I'm sure that's true. I never fail to be
amazed by the pop-ups that some 'serious' sites have though.


> >> And hopefully
> >> by now most of us have our email program set not to display
> >> email links or images. Wait, I don't know, is that feature
> >> available yet in Microsoft's Outlook and Outlook Express?
> >
> > I've just been looking and can't find anything relevant to
> > turn on/off.
>
> That could mean you don't have it.

I suspect that's the case. My Windoze ( 98SE ) is fully patched and up
to date with all the Microsoft security issue fixes installed.

I 'passed' the current online test for this exploit btw. It's not
*guaranteed* but helps put my mind at rest.

> Mozilla's Thunderbird email
> program has its shields up by default, which is easily seen as
> your email displays with empty boxes where images are intended,
> along with a "show images" button, which you can activate once
> you're completely confident that specific email is from a safe
> source. The next email you examine once again has block images.
>
> >> Hmm, wait, what about web-based email programs, do they let
> >> you set a default to preview the contents of a spam email
> >> without showing the embedded images?
> >
> > Dunno mate. Good luck. Put a condom on your PC ! ;-)
>
> Indeed.

Btw - I finally installed Opera as my default browser ( after
seemingly years of being told by my IT friends that it's the 'dog's
bollocks' ) because it's unaffected by this issue. . I'd recommend it
! Page rendering is way faster than IE for starters. I don't think
I'll be going back.

Graham

.