Results 1 to 10 of 10

Thread: Microsoft *WMF* Patch Today - 01.05.06

  1. #1
    Vood Child hayc59's Avatar
    Join Date
    Jul 2001
    Location
    LSD melts in your mind, not in your hand.
    Posts
    2,355

    Exclamation Microsoft *WMF* Patch Today - 01.05.06

    Microsoft Security Response Center Bulletin Notification
    Issued:
    January 05, 2006

    Summary:
    Important Information for Thursday 5 January 2006
    Microsoft announced that it would release a security update to help
    protect customers from exploitations of a vulnerability in the
    Windows Meta File (WMF) area of code in the Windows operating system
    on Tuesday, January 2, 2006, in response to malicious and criminal
    attacks on computer users that were discovered last week.

    Microsoft will release the update today on Thursday, January 5, 2006,
    earlier than planned.


    Microsoft originally planned to release the update on Tuesday,
    January 10, 2006 as part of its regular monthly release of security
    bulletins, once testing for quality and application compatibility
    was complete. However, testing has been completed earlier than
    anticipated and the update is ready for release.

    In addition, Microsoft is releasing the update early in response to
    strong customer sentiment that the release should be made available
    as soon as possible.

    Microsoft's monitoring of attack data continues to indicate that the
    attacks are limited and are being mitigated both by Microsoft's
    efforts to shut down malicious Web sites and with up-to-date
    signatures form anti-virus companies.

    The security update will be available at 2:00 pm PT as MS06-001.

    Enterprise customers who are using Windows Server Update Services
    will receive the update automatically. In additional the update is
    supported Microsoft Baseline Security Analyzer 2.0, Systems
    Management Server, and Software Update Services. Enterprise
    customers can also manually download the update from the Download
    Center.

    Microsoft will hold a special Web cast on Friday, January 6, 2006,
    to provide technical details on the MS06-001 and to answer questions.
    Registration details will be available at
    http://www.microsoft.com/technet/security/default.mspx.

    Microsoft will also be releasing additional security updates on
    Tuesday, January 10, 2006
    as part of its regularly scheduled release
    of security updates.

    More Info: MS Security Notification

    r u xprincD

  2. #2
    SG Enthusiast koldchillah's Avatar
    Join Date
    Apr 2002
    Location
    Orlando, FL
    Posts
    4,612
    cool!

    <<<goes off to synch SUS server>>>
    "Nobody's invincible, no plan is foolproof, We all must meet our moment of truth." - Guru

  3. #3
    Vood Child hayc59's Avatar
    Join Date
    Jul 2001
    Location
    LSD melts in your mind, not in your hand.
    Posts
    2,355
    Also Note:
    For those who unregistered the DLL 'regsvr32 shimgvw.dll'
    You will need to manually re-register it after the patch install in order to use windows picture and fax viewer (and thumbnails)

    r u xprincD

  4. #4
    Ft. Couch! morbidpete's Avatar
    Join Date
    Mar 2002
    Location
    W. Warwick RI
    Posts
    7,278
    Quote Originally Posted by hayc59
    Also Note:
    For those who unregistered the DLL 'regsvr32 shimgvw.dll'
    You will need to manually re-register it after the patch install in order to use windows picture and fax viewer (and thumbnails)
    Code:
    regsvr32 "%commonprogramfiles%\Ahead\Lib\MediaLibraryNSE.dll"
    just incase anyone needed it to reregister like hayc said

  5. #5
    Vood Child hayc59's Avatar
    Join Date
    Jul 2001
    Location
    LSD melts in your mind, not in your hand.
    Posts
    2,355
    * Microsoft Patches Released (NEW)
    Published: 2006-01-05,
    Last Updated: 2006-01-05 21:11:22 UTC by Marcus Sachs (Version: 2(click to highlight changes))

    Many of you already know this if you receive advance notification from Microsoft. For everybody else, see their announcement about an early release of the WMF patch. The patch and details about it are available here. If you have installed any of the earlier patches or workarounds, here is our recommendation for updating:

    1. Reboot your system to clear any vulnerable files from memory
    2. Download and apply the new patch
    3. Reboot
    4. Uninstall the unofficial patch, by using Add/Remove Programs on single systems. If you used msi to install the patch on multiple machines you can uninstall it with this:
    msiexec.exe /X{E1CDC5B0-7AFB-11DA-8CD6-0800200C9A66} /qn
    5. Re-register the .dll if you previously unregistered it (use the same command but without the "-u"):
    regsvr32 %windir%\system32\shimgvw.dll
    6. Reboot one more time just for good measure

    I'd like to take this opportunity to thank all of our incident handlers for the endless hours of analysis over the past week. Also, many thanks to the hundreds of readers who sent in analysis and observations. Finally, thanks to the response team at Microsoft for issuing the patch today. We all appreciate the extra internal effort it took to do this out of cycle.

    Marcus H. Sachs
    Director, SANS Internet Storm Center

    r u xprincD

  6. #6
    Certified SG Addict CableDude's Avatar
    Join Date
    Jun 2001
    Posts
    26,784
    I'm not doing this.

  7. #7
    Certified SG Addict CableDude's Avatar
    Join Date
    Jun 2001
    Posts
    26,784
    Quote Originally Posted by Cabledude
    I'm not doing this.
    Ok, I lied. I did one machine late in the day. Install went great, so hopefully no issues.

  8. #8
    I'm White wee96's Avatar
    Join Date
    May 2001
    Location
    Michigan
    Posts
    9,253
    Thanks for the heads up, auto update took alittle while to tell me.

  9. #9
    Vood Child hayc59's Avatar
    Join Date
    Jul 2001
    Location
    LSD melts in your mind, not in your hand.
    Posts
    2,355
    CableDude
    You a funny sum beatch

    r u xprincD

  10. #10
    Certified SG Addict CableDude's Avatar
    Join Date
    Jun 2001
    Posts
    26,784
    Quote Originally Posted by hayc59
    CableDude
    You a funny sum beatch


    I have many machines to do and will wait till next week to do them.

    NOD32 is staying up to date so that's all that matters right now.

Similar Threads

  1. Microsoft Windows Malicious Software Removal Tool!
    By fords8 in forum Software Forum
    Replies: 8
    Last Post: 04-06-15, 09:08 AM
  2. which patch to download
    By Vash the stampede in forum General Broadband Forum
    Replies: 18
    Last Post: 07-05-04, 09:43 AM
  3. Microsoft Security Bulletin MS03-023
    By Shinobi in forum Network Security
    Replies: 3
    Last Post: 07-10-03, 02:41 PM
  4. Super Microsoft Deal
    By Shagster in forum Marketplace - Buy/Sell/Trade/Hot Deals
    Replies: 9
    Last Post: 06-25-03, 10:20 AM
  5. Cable modem nigtmares, connection loss
    By stevesc2 in forum General Broadband Forum
    Replies: 21
    Last Post: 12-29-00, 11:11 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •