Help
MSN Messenger worm utilizing the WMF exploit are being spotted in the Netherlands.A new worm is spreading using MSN Messenger that so far have been localized to the Netherlands. This worm will prompt you to open a link that contains a link to the image xmas-2006 FUNNY.jpg.
The image is actually an HTML file that will load a malformed WMF file which will ultimately install other backdoor worms and other malware.
Keep a lookout when opening any image as we move into the New Year.
Do not forget to unregister your shimgvw.dll to help reduce your risks of being infected by one of these WMF files.
Link: Windows Metafile Exploit Mitigation By Unregistering Shimgvw.dll Link: Microsoft WMF Exploit Advisory Link: SANS Report of WMF Worm
Lawrence Abrams
Circle BleepingComputer on Google+!
Become a BleepingComputer fan: Facebook
Follow us on Twitter!
How to detect vulnerable programs using Secunia Personal Software Inspector <- Everyone should do this!
Circle BleepingComputer on Google+!
Become a BleepingComputer fan: Facebook
Follow us on Twitter!
How to detect vulnerable programs using Secunia Personal Software Inspector <- Everyone should do this!
Back to top
